Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/6fmHCf9hF8wY4101vlNG-vSBYTk.roa
File: 6fmHCf9hF8wY4101vlNG-vSBYTk.roa (raw, json)
Hash identifier: XxdI2G6Kvw0WxFxv0w89HzlvgzczvAPvcxGVWMA/Vb4=
Subject key identifier: E9:F9:87:09:FF:61:17:CC:18:E3:5D:35:BE:53:46:FA:F4:81:61:39
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0EC1
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/6fmHCf9hF8wY4101vlNG-vSBYTk.roa
Signing time: Tue 08 Feb 2022 10:09:14 +0000
ROA not before: Tue 08 Feb 2022 10:09:14 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18419
IP address blocks: 124.218.232.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3777 (0xec1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 8 10:09:14 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=E9F98709FF6117CC18E35D35BE5346FAF4816139
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:98:51:fb:5a:4a:31:78:fd:83:61:5e:25:1f:
96:a5:9b:b8:74:0f:78:aa:f1:5f:ad:f0:87:da:3b:
d1:03:d4:88:fe:ee:63:56:85:b3:4d:3a:f6:61:80:
28:16:af:af:bf:66:e6:bf:ef:84:ce:23:2f:47:5c:
46:a9:92:ca:ae:4c:c3:a2:e8:6d:5b:09:94:f0:e8:
5b:b4:f8:d2:e0:6a:28:13:4b:65:ad:06:f1:24:09:
56:50:9b:be:cc:d1:cb:32:b4:54:5e:dc:78:92:79:
0d:18:a9:42:c3:d2:8a:f5:61:69:9f:74:64:74:52:
54:11:1c:ed:3a:5b:a0:1f:20:30:43:44:b0:82:f5:
d8:fd:f6:22:1d:52:9f:4b:83:3a:fd:58:14:69:09:
f0:75:99:d7:41:cc:53:df:94:c5:3f:dd:11:b8:64:
3d:de:3e:0e:6b:09:26:1b:80:0b:89:eb:2c:72:c4:
4e:4a:17:e7:e1:44:b3:d3:bc:8f:5e:a5:b5:08:f1:
a5:47:cc:c7:0c:9b:e9:00:c6:f0:9e:a6:bb:a1:af:
1d:90:cd:2c:d3:d3:e1:ec:ea:de:f2:cc:50:8e:ff:
61:4e:f6:9e:3f:1c:d4:dc:6b:8e:92:2d:51:cd:c5:
c3:5d:08:e9:33:73:d9:6f:a9:a5:59:d1:02:78:cf:
19:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:F9:87:09:FF:61:17:CC:18:E3:5D:35:BE:53:46:FA:F4:81:61:39
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/6fmHCf9hF8wY4101vlNG-vSBYTk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.218.232.0/21
Signature Algorithm: sha256WithRSAEncryption
94:0b:de:76:06:bc:b0:8c:f5:89:e3:1d:fd:f5:c3:2a:5d:28:
a1:df:56:80:ca:14:7f:69:83:b9:30:23:1d:38:9c:c1:71:45:
0d:e1:8f:40:3b:5d:93:dd:06:f4:d1:2a:0e:7d:b4:9c:82:52:
4f:ac:f0:46:98:c9:7d:35:30:fa:60:f3:26:aa:b1:67:3a:34:
95:af:c4:70:43:a4:00:3e:be:42:9d:67:a6:f5:c6:f3:eb:4d:
72:49:d2:19:ce:10:6a:05:0c:f5:48:67:e2:10:fb:bd:08:68:
c7:d3:46:65:5f:74:53:cd:42:91:84:d1:c1:c5:79:72:d0:92:
5a:fc:56:e8:ce:ed:ea:32:f8:32:b3:80:17:0e:d8:48:2a:b7:
ee:d9:44:6a:d2:34:68:f9:dc:52:91:6c:36:2b:44:c0:98:e9:
80:5d:8e:b3:29:9b:4a:6b:66:ad:9c:fb:34:04:90:25:3c:c7:
0e:4f:b5:93:55:e2:1b:04:c1:61:10:92:99:89:79:4c:fd:fc:
4d:78:27:cf:ee:0f:6b:6f:06:28:f9:1c:ad:c0:08:6d:26:83:
55:49:75:4b:0e:22:a6:9c:a6:d4:19:99:c5:91:69:e6:eb:ee:
65:8f:6a:71:b3:0f:ab:e9:a9:d4:63:0c:ff:59:6f:2f:17:b2:
58:30:4e:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:59:59 2024 by rpki-client on console-ams.rpki-client.org