Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/G0GTUSHTZ_WpLlhHjhpYsetx86o.roa
File: G0GTUSHTZ_WpLlhHjhpYsetx86o.roa (raw, json)
Hash identifier: kJxyybfc5h4oVeeOM86bZsF0Ghd80Xx7bNxtigI/9Co=
Subject key identifier: 1B:41:93:51:21:D3:67:F5:A9:2E:58:47:8E:1A:58:B1:EB:71:F3:AA
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1381
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/G0GTUSHTZ_WpLlhHjhpYsetx86o.roa
Signing time: Tue 07 Nov 2023 05:48:43 +0000
ROA not before: Tue 07 Nov 2023 05:48:43 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9922
IP address blocks: 124.218.178.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4993 (0x1381)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Nov 7 05:48:43 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=1B41935121D367F5A92E58478E1A58B1EB71F3AA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:6b:aa:37:0f:55:f9:b1:1a:d1:01:3a:4d:aa:
70:ec:09:b7:07:ce:2a:8d:0a:80:c5:4c:1f:f0:ff:
d9:c6:8b:1e:5e:35:18:f0:be:82:6d:e1:4a:50:6d:
30:53:f7:4c:fe:f5:46:36:88:6b:7e:72:8f:a6:d0:
ec:48:2a:77:b6:c2:65:55:dd:c9:81:76:3e:3b:6c:
0f:f8:94:0c:fa:a3:ad:68:10:66:e9:49:66:a7:22:
39:21:70:9f:9a:c8:24:07:5f:1f:49:e3:87:d1:e2:
81:ae:36:dc:c8:77:a0:de:1d:99:42:7e:aa:c5:df:
74:8b:89:73:29:ae:85:ed:54:64:be:c0:d2:9f:ed:
00:c7:88:78:01:5a:a0:0a:38:22:b3:9d:02:88:42:
51:55:a9:b8:3b:59:12:18:1e:31:ac:7b:0f:3c:29:
c6:66:ef:79:03:84:03:94:91:ff:d5:4a:37:1f:35:
c5:cc:c7:23:09:e1:c6:54:0a:90:b1:a7:2a:4e:d6:
8c:7d:2d:00:9c:dd:d8:e9:db:ce:93:80:c6:27:74:
3e:99:5b:0b:65:14:e7:4e:91:fb:28:ae:41:43:49:
af:0c:18:e7:69:fb:73:f7:8e:52:cd:67:82:c8:d4:
90:84:89:2b:fd:37:22:53:cc:b9:eb:c0:4e:f7:d4:
2a:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:41:93:51:21:D3:67:F5:A9:2E:58:47:8E:1A:58:B1:EB:71:F3:AA
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/G0GTUSHTZ_WpLlhHjhpYsetx86o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.218.178.0/24
Signature Algorithm: sha256WithRSAEncryption
06:a4:a7:09:4f:39:16:a4:0a:40:01:d2:96:bd:89:08:90:df:
67:77:47:ff:17:11:60:bf:b2:3a:76:d3:df:f3:18:0b:c5:3b:
f1:8b:21:a6:2d:be:00:76:a5:f3:83:7d:9a:a4:04:34:73:5b:
b1:97:bc:99:29:60:88:92:0e:77:7b:be:0c:48:2d:eb:ac:97:
5b:14:34:b4:93:92:cc:77:67:92:37:a6:3a:ce:2c:e5:a8:f6:
80:97:8d:a1:cb:90:bd:3f:84:97:a4:c0:87:e5:40:9e:cd:e6:
af:31:ea:86:ca:27:56:42:c5:5e:f6:a8:57:77:d9:fe:ab:ed:
36:5a:2e:cb:aa:69:12:d1:9a:1d:b6:9a:83:c5:8f:94:c4:c2:
8c:83:a9:e9:71:31:f2:96:3d:10:e9:25:fc:22:82:9c:9c:fb:
d9:9a:81:8e:66:21:54:07:c8:cd:27:46:21:41:aa:79:11:96:
0c:f6:e6:93:d2:d1:32:01:ac:3d:ea:9d:ed:a7:a2:27:e5:59:
2b:e1:3e:bb:9d:3d:af:66:c2:12:d3:5f:e5:8c:8f:51:ad:92:
3d:e3:d1:32:8f:72:8d:48:f1:f9:34:cc:88:e2:16:09:86:d9:
43:bc:8e:6d:4e:e8:37:4b:c3:c8:31:50:fb:6f:9e:da:52:1c:
2e:b3:e9:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 15 22:50:43 2024 by rpki-client on console-fra.rpki-client.org