Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/FPn2Z6jqP61QGVcg69wFmcleHPw.roa
File: FPn2Z6jqP61QGVcg69wFmcleHPw.roa (raw, json)
Hash identifier: GZHWgZHDp47Mge2N/eK4eplHpzkuTGygXugZBj7xcSI=
Subject key identifier: 14:F9:F6:67:A8:EA:3F:AD:50:19:57:20:EB:DC:05:99:C9:5E:1C:FC
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1363
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/FPn2Z6jqP61QGVcg69wFmcleHPw.roa
Signing time: Tue 07 Nov 2023 04:30:52 +0000
ROA not before: Tue 07 Nov 2023 04:30:52 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9922
IP address blocks: 124.218.172.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4963 (0x1363)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Nov 7 04:30:52 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=14F9F667A8EA3FAD50195720EBDC0599C95E1CFC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:29:0b:9c:f8:e1:cc:5e:70:53:56:87:23:ac:
a3:1a:72:ee:0e:a4:15:3f:0e:31:88:76:f9:30:2a:
b7:e1:7f:42:89:84:16:fd:1f:c2:a3:62:e0:56:cd:
db:29:c4:69:c5:55:1b:02:fa:a0:76:a6:1d:48:fd:
2a:f2:8b:41:0a:9b:da:50:c2:f2:5c:6c:b5:c0:fe:
11:b6:d0:7e:7c:d5:ea:bd:6c:f2:f9:80:0d:69:e5:
15:36:37:f4:fa:49:80:57:3b:f2:5d:f3:a9:fe:32:
0c:b5:c6:76:e0:18:d2:dc:2f:15:da:02:1a:7d:f5:
87:a4:45:c3:24:d0:32:3f:56:6d:03:1b:d2:45:87:
63:c8:66:71:3c:a2:82:74:89:f3:3e:24:4f:85:d3:
59:d4:9b:59:88:2b:0f:64:21:7a:5f:bb:f7:9c:06:
9f:12:7b:68:66:b9:74:3d:64:8b:2b:1c:42:14:ad:
fe:e1:70:79:47:c5:8c:a8:98:98:2e:2a:8c:b4:17:
52:41:f0:6a:3f:c4:e3:15:4c:7c:34:1d:46:27:9d:
b5:23:4e:39:43:b7:d9:d1:1e:e0:79:75:2f:87:ba:
6e:f4:51:46:f8:b7:d4:8e:b0:ba:4d:27:39:b8:e3:
31:e1:24:10:d9:8c:3b:02:b3:77:21:e9:d9:df:b4:
92:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:F9:F6:67:A8:EA:3F:AD:50:19:57:20:EB:DC:05:99:C9:5E:1C:FC
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/FPn2Z6jqP61QGVcg69wFmcleHPw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.218.172.0/24
Signature Algorithm: sha256WithRSAEncryption
89:f3:49:cd:cc:38:d3:83:e5:e9:8d:c4:10:7a:ce:62:1d:3e:
d6:b3:71:30:bf:81:a0:9f:15:a6:4d:4d:07:f0:31:37:11:5d:
6b:d0:7d:59:80:bd:91:c8:68:66:43:70:5d:72:1e:e2:0e:2d:
7b:68:fa:bf:8e:c8:cc:ac:58:7a:0c:8c:27:9f:4f:12:b8:ba:
e2:13:83:67:44:35:4a:3c:3d:83:8a:e0:06:f2:5d:64:24:24:
75:80:2a:3b:8d:cf:60:fb:bd:2b:59:44:98:02:5c:83:57:e1:
69:05:10:ad:7d:5c:22:63:d6:6d:40:6a:4b:a1:1b:62:77:95:
d3:08:bf:d7:27:4b:a0:ff:4a:38:7e:2f:d6:0c:48:8e:f4:3c:
54:e5:58:74:88:fc:5a:db:56:5e:d8:ec:22:29:cb:a4:67:83:
71:aa:72:5e:6e:2d:62:95:34:46:4f:bf:e6:10:77:ef:dd:60:
67:07:e8:fd:a1:bb:45:32:2e:01:02:77:10:8b:db:e5:61:14:
8f:68:9d:12:71:d8:bd:26:c2:6a:8e:ad:74:5f:3c:4a:f7:16:
50:65:56:de:1a:26:72:e6:90:2c:76:1e:83:da:64:31:28:fc:
f5:61:cf:17:b0:c9:1c:6f:c4:14:56:23:ee:d0:1e:6b:3e:39:
0c:7b:67:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 15 22:54:32 2024 by rpki-client on console-ams.rpki-client.org