Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/D8rF_6Fj1gtxvkcVxGRuzSj26M4.roa
File: D8rF_6Fj1gtxvkcVxGRuzSj26M4.roa (raw, json)
Hash identifier: 6Rkq3eZWHyBCPn7kLYogVATJV/PTJgPQlP1DMtwEY2U=
Subject key identifier: 0F:CA:C5:FF:A1:63:D6:0B:71:BE:47:15:C4:64:6E:CD:28:F6:E8:CE
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 133C
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/D8rF_6Fj1gtxvkcVxGRuzSj26M4.roa
Signing time: Tue 19 Sep 2023 09:58:51 +0000
ROA not before: Tue 19 Sep 2023 09:58:51 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18419
IP address blocks: 124.218.120.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4924 (0x133c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 19 09:58:51 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=0FCAC5FFA163D60B71BE4715C4646ECD28F6E8CE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fd:3e:97:4d:87:26:de:b8:da:93:f6:97:21:11:
cd:ce:a7:9c:fc:61:af:3d:e1:38:1a:cc:0f:0b:52:
6f:3f:18:52:49:f8:27:c6:99:0d:e0:6d:9a:1b:7f:
65:3e:5b:ad:46:a8:c8:9f:79:0a:70:ac:05:c6:87:
a7:48:ca:7d:b5:e3:f9:09:71:24:d7:da:00:12:f7:
a4:0d:cb:8f:35:19:a3:da:0b:ea:a0:9d:4a:5d:ec:
59:e3:a4:77:38:0d:5f:1c:04:32:7a:a8:98:65:ab:
63:37:b8:f6:5b:51:d1:b2:f7:74:d0:03:f0:89:16:
65:48:27:2d:a8:15:22:9c:a2:d8:9e:16:79:3b:6e:
f6:23:3a:f4:7f:de:5c:3f:a2:c4:eb:b0:a6:da:f4:
82:c8:2f:5d:50:cd:97:a7:ff:44:ae:81:3f:46:d7:
e6:96:6a:33:91:c2:d8:c3:ff:4c:83:b0:fc:cb:67:
b6:e4:85:f7:3c:c5:bf:14:42:b8:a9:92:d5:02:da:
04:56:55:82:6c:6a:79:b0:96:9b:6a:f9:6b:c8:59:
49:59:ed:4e:68:77:c3:84:9b:3c:d6:e7:9b:2c:5a:
06:e4:27:e6:2d:5d:1c:65:d4:2a:9c:d5:32:6a:ba:
65:4d:8e:5b:7e:68:b7:93:65:17:b5:90:9a:83:15:
3c:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:CA:C5:FF:A1:63:D6:0B:71:BE:47:15:C4:64:6E:CD:28:F6:E8:CE
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/D8rF_6Fj1gtxvkcVxGRuzSj26M4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.218.120.0/21
Signature Algorithm: sha256WithRSAEncryption
b9:3d:5d:90:d8:f6:63:7d:70:85:2f:68:54:d3:29:82:5c:6a:
08:ca:45:c9:a9:5f:e6:c6:8e:01:59:6f:f7:df:4f:f2:c8:ec:
5d:8e:2d:90:b4:e7:d4:ec:01:2b:75:ab:4b:d6:8e:a7:ed:17:
27:fb:11:d3:a0:55:38:92:88:ab:d5:be:c3:71:7f:9d:51:34:
09:91:16:b3:37:4c:f8:9e:8e:76:84:a3:77:7e:3a:88:3a:d0:
b0:28:4a:d3:f1:4c:07:41:27:61:31:57:1d:39:b0:25:25:a9:
cc:9e:86:f9:c1:3a:17:92:6e:2b:e5:65:c0:de:27:ba:98:80:
a0:0d:da:30:c8:d5:6b:e5:29:df:be:4b:06:73:0c:06:ab:48:
30:20:07:de:7b:31:d8:6b:aa:73:fa:2b:5c:75:84:f0:2f:d9:
cc:3e:17:79:cb:34:27:99:a4:b8:8e:6f:b5:ab:a3:02:b5:af:
d7:58:8b:26:3e:d5:5f:f4:83:96:f4:5f:bd:16:e5:32:f7:dd:
e5:ed:8f:6b:08:31:ef:be:d3:4a:6a:b6:75:cb:9c:d6:af:93:
8b:77:ac:74:36:5c:f5:ab:25:1c:66:26:7c:5d:07:0b:66:c3:
9b:c3:a7:1f:d8:ee:34:db:80:4e:84:bf:f0:90:d2:81:8b:c4:
c3:78:0a:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org