Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/FO7Uv0F2ORyRkSF65ZRmgl-jPgw.roa
File: FO7Uv0F2ORyRkSF65ZRmgl-jPgw.roa (raw, json)
Hash identifier: gngY5oITbfI33pgCpy/JysqJayuafsqiS/xZ9Yud0Ww=
Subject key identifier: 14:EE:D4:BF:41:76:39:1C:91:91:21:7A:E5:94:66:82:5F:A3:3E:0C
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1260
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/FO7Uv0F2ORyRkSF65ZRmgl-jPgw.roa
Signing time: Fri 01 Sep 2023 08:04:22 +0000
ROA not before: Fri 01 Sep 2023 08:04:22 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18419
IP address blocks: 218.35.128.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4704 (0x1260)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:04:22 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=14EED4BF4176391C9191217AE59466825FA33E0C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:f1:02:36:cf:8b:d7:32:d0:93:96:47:f2:57:
68:56:c7:e7:62:48:14:46:55:ad:3e:7b:36:be:1f:
22:33:f6:dd:c8:86:04:63:85:91:ea:a8:02:8b:82:
70:50:26:56:2b:a2:55:70:b8:7a:a0:60:3b:b6:83:
ed:fa:ab:ff:6d:a3:be:5c:5b:bd:12:b8:c8:eb:61:
fc:d2:bf:33:78:6a:18:4f:18:9d:73:f8:de:55:5b:
9c:e7:97:b0:13:c5:d6:2c:65:eb:d3:25:5e:36:a3:
52:a4:28:70:7e:5a:08:fe:eb:c5:50:ac:f4:af:6d:
09:8e:01:4a:21:99:4f:f9:b5:41:d5:64:e9:c7:a0:
c0:cc:e0:b5:b2:d0:ef:78:11:6c:5b:10:62:9c:3e:
e0:0c:f3:32:f7:71:c8:b5:d2:4b:63:5f:f1:3d:b3:
cf:77:86:1a:f2:75:64:a1:7e:23:72:13:a0:0b:ab:
d0:1e:b0:20:6d:f3:37:ae:33:76:dd:0c:b0:3e:2b:
a5:3c:26:fa:11:1f:24:db:b4:46:b6:f6:50:7d:fc:
92:17:74:85:92:75:00:01:1e:3a:7c:9c:ed:cd:01:
8c:07:32:39:d6:d0:36:7b:ee:3a:89:7a:fb:de:7c:
78:ca:74:18:e1:a1:7f:75:1a:1d:c9:3d:50:17:b0:
fd:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:EE:D4:BF:41:76:39:1C:91:91:21:7A:E5:94:66:82:5F:A3:3E:0C
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/FO7Uv0F2ORyRkSF65ZRmgl-jPgw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.35.128.0/18
Signature Algorithm: sha256WithRSAEncryption
95:fc:09:7f:99:9c:40:ca:b3:e3:32:0b:13:66:a8:9a:5a:57:
28:e3:64:ec:95:2e:66:4f:8c:44:8c:89:f6:58:36:89:1b:66:
ba:dc:b1:6f:65:49:b6:23:fe:98:6b:4d:5a:3a:0f:bc:f3:14:
a4:80:ad:71:b0:34:36:2f:c3:0d:7e:d0:d6:df:e7:42:bb:33:
66:42:a1:17:23:2d:6d:cf:3e:0d:82:c2:6d:25:df:cd:57:50:
c3:6a:7f:b6:00:a5:0c:f8:03:cf:c9:00:5c:c1:51:60:11:0b:
c3:3e:79:57:56:37:e4:8b:2b:2d:10:3f:39:2c:40:df:1e:f1:
af:29:43:6b:24:6d:80:c4:a1:12:61:d3:a1:89:94:41:c2:1f:
ad:2a:22:c3:ad:c3:45:83:8a:73:b8:44:70:13:1f:ba:ed:c4:
52:01:f4:7f:87:f7:8c:36:6d:18:5b:e2:8c:35:b3:04:8c:b0:
53:fe:51:4f:0a:7b:b4:59:09:1d:13:a3:d8:44:eb:c4:c5:01:
e3:ca:f0:2f:07:d1:bb:9b:69:2d:8f:a6:e1:c3:d5:50:27:16:
57:20:14:4c:a4:66:e3:ca:ba:27:12:26:71:2a:e9:7e:4a:51:
4c:4b:c4:55:24:46:73:51:32:e4:9f:d4:d8:7f:71:48:7f:a2:
cf:1e:29:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org