Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/DGGDcR_rxY3SROEPMi1-J9t8jPU.roa
File: DGGDcR_rxY3SROEPMi1-J9t8jPU.roa (raw, json)
Hash identifier: Q1mpWpUDTwgl164oGInBgT9gEaXXMMz7BsdtDG32iOU=
Subject key identifier: 0C:61:83:71:1F:EB:C5:8D:D2:44:E1:0F:32:2D:7E:27:DB:7C:8C:F5
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 12DE
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/DGGDcR_rxY3SROEPMi1-J9t8jPU.roa
Signing time: Fri 01 Sep 2023 08:05:06 +0000
ROA not before: Fri 01 Sep 2023 08:05:06 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18419
IP address blocks: 124.218.232.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4830 (0x12de)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:05:06 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=0C6183711FEBC58DD244E10F322D7E27DB7C8CF5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:40:52:63:61:04:e8:18:bd:ce:13:04:8c:4c:
ac:e7:2a:83:bd:61:c2:27:a2:32:a9:d5:f9:e6:a0:
cb:12:35:47:fc:a1:7f:66:0a:ef:9d:9d:4e:26:4f:
87:4a:40:99:01:90:3e:20:ec:5d:19:a5:28:fd:ce:
0b:0f:a3:09:36:cb:9e:20:3e:9c:53:b7:ad:38:6f:
5d:8d:3b:a0:17:b6:4e:0a:e1:73:7f:7d:3f:b2:a8:
71:af:b8:f9:5f:c8:80:66:2e:d8:3f:27:25:0f:8a:
e9:16:b9:04:72:18:5a:f3:e4:3d:7a:a7:d6:2e:e8:
60:30:ab:82:8f:76:f8:40:a3:33:47:33:bb:9a:aa:
f3:91:10:d7:c2:9f:e1:fd:a8:1f:00:94:69:03:81:
14:93:7c:00:49:7a:67:22:53:21:e7:6b:8c:17:64:
ff:b5:8b:1c:d5:25:f1:3f:df:ad:ae:0b:01:74:e2:
93:26:aa:db:12:3b:c2:e9:10:0a:81:cd:fb:d5:8c:
4f:0c:2c:b6:51:16:40:0b:11:5e:20:6d:0a:bb:67:
23:bf:48:2f:5e:f4:c0:d5:09:70:f2:ef:bb:72:74:
db:40:a0:b3:d7:10:b3:4e:45:0e:2e:96:df:34:be:
a0:4a:fb:fa:21:ff:dd:70:0f:b9:12:82:3b:52:c9:
9e:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:61:83:71:1F:EB:C5:8D:D2:44:E1:0F:32:2D:7E:27:DB:7C:8C:F5
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/DGGDcR_rxY3SROEPMi1-J9t8jPU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.218.232.0/21
Signature Algorithm: sha256WithRSAEncryption
35:2a:6f:69:82:25:ca:f3:55:e3:5e:ac:0b:dc:cb:e7:b6:f1:
69:f1:74:80:6a:ff:3d:ea:34:93:3f:c1:a7:78:7d:68:5a:4a:
c7:58:03:25:6e:0d:bd:49:2e:b1:3f:88:c8:a4:e0:7e:c2:79:
8f:4c:3e:d5:fe:b9:d2:03:c0:89:55:ef:84:27:0a:b8:f6:46:
0b:b7:a1:ba:32:6b:d3:60:3c:e4:d1:cf:3f:1c:ae:a6:f6:97:
ab:ff:3c:bc:79:53:bd:0f:df:f6:49:3f:7e:8a:a1:9c:a7:13:
b6:30:5b:d6:44:11:62:36:6f:47:b2:cb:2a:b7:dd:51:f8:33:
c6:c3:f4:dd:0b:29:3a:aa:f3:67:54:81:46:9e:6e:9c:1c:3d:
21:01:b9:ad:34:00:1e:11:61:49:f7:f8:2f:b3:9d:fa:89:95:
3e:b8:67:5c:51:95:d9:02:4a:17:fe:5d:fc:94:93:c0:7d:86:
67:ab:15:54:1f:9d:c9:5d:91:57:aa:f7:4d:96:55:1e:b3:41:
04:79:bc:ab:8f:d1:ac:b7:39:2e:ac:6e:00:08:cb:68:bf:99:
58:71:3e:07:80:5e:7f:49:80:df:10:ae:37:69:85:75:8a:57:
1b:02:49:69:2e:fb:24:87:dc:c2:83:1c:d4:a6:46:d3:b6:53:
9f:60:76:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:00 2024 by rpki-client on console-ams.rpki-client.org