Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/G0qnJNVKJvHZxX5CIJkwv2ArMZg.roa
File: G0qnJNVKJvHZxX5CIJkwv2ArMZg.roa (raw, json)
Hash identifier: zTcdK1oi6KxHnMGPMwZL19MFMRoGHA6nm2Boy/BcUUw=
Subject key identifier: 1B:4A:A7:24:D5:4A:26:F1:D9:C5:7E:42:20:99:30:BF:60:2B:31:98
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0ECB
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/G0qnJNVKJvHZxX5CIJkwv2ArMZg.roa
Signing time: Wed 16 Feb 2022 01:34:22 +0000
ROA not before: Wed 16 Feb 2022 01:34:22 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9922
IP address blocks: 124.218.72.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3787 (0xecb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 16 01:34:22 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=1B4AA724D54A26F1D9C57E42209930BF602B3198
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:42:3b:24:e5:7d:c7:ed:88:c7:a4:88:1a:6f:
02:f2:b6:d5:db:b0:ea:1d:7f:60:4f:6b:1a:84:53:
5a:ad:be:ef:dc:4d:3e:4b:41:ed:98:14:08:14:68:
49:10:60:1a:62:bf:54:c7:bc:03:14:8b:7e:5e:30:
a3:38:b7:ef:c2:c6:3b:23:b5:16:a4:7a:ef:28:26:
c5:44:46:45:4f:89:33:0b:a1:6c:30:0c:ed:87:98:
9c:0b:e8:64:e3:be:f7:d6:c3:02:69:85:5b:ab:c3:
4b:c5:3e:82:3e:cd:08:e5:ae:3f:e7:3b:28:f2:8b:
09:c3:6e:45:0a:86:e4:60:97:4d:78:4f:a1:71:87:
60:2d:5f:68:c4:20:1a:a0:e2:d0:e8:9a:47:63:aa:
64:04:a4:de:8d:23:b6:31:c0:65:27:d7:77:b0:dd:
e7:25:cf:af:3f:80:f7:4b:51:84:82:55:29:1b:cc:
15:99:05:93:43:59:58:25:a1:a6:30:c4:7a:e1:e8:
ab:34:c4:06:f3:05:ac:3c:87:50:d5:0c:9f:93:18:
f7:f0:c1:9f:5a:08:60:2c:e2:d1:4d:41:85:b7:e6:
58:c5:97:f1:b6:0c:42:32:36:47:c8:42:e5:06:50:
18:ec:3b:4e:24:2b:7f:20:16:09:4c:74:ba:b0:a7:
44:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:4A:A7:24:D5:4A:26:F1:D9:C5:7E:42:20:99:30:BF:60:2B:31:98
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/G0qnJNVKJvHZxX5CIJkwv2ArMZg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.218.72.0/22
Signature Algorithm: sha256WithRSAEncryption
42:52:1b:16:b2:7e:87:87:3a:87:b5:bf:71:e2:f3:f2:c1:58:
19:16:cd:98:f2:69:56:b7:90:f1:b7:ba:e0:75:6f:e6:2c:ea:
f0:55:25:0c:e2:f1:e8:1e:96:4f:4f:30:25:a3:0b:5d:a6:c3:
93:45:da:47:28:4e:bc:7c:da:02:59:0f:c5:c5:0c:34:71:77:
ca:2b:96:cc:23:15:4a:21:e3:e4:6b:5f:a2:84:3b:ea:ce:da:
4d:a7:fb:5b:7e:41:ce:86:a5:b5:84:f5:df:e8:a1:6e:1f:04:
c4:34:eb:a6:0b:39:65:85:ba:e0:7d:58:b8:ee:34:e9:85:5f:
46:05:e0:3c:e3:43:db:34:09:e6:9e:de:3d:85:1a:7d:44:b2:
6c:08:37:2b:c7:1f:d8:3b:28:4c:86:be:9d:15:eb:be:3d:60:
5d:05:9f:aa:f5:26:52:47:71:91:33:68:26:88:ff:cc:de:7b:
66:48:1f:90:27:8e:09:72:bc:f5:10:0a:30:e4:17:c3:0e:13:
b9:6f:69:4a:2e:f6:89:72:d7:93:f9:bf:54:61:b7:3a:40:7e:
a0:4b:06:1f:00:90:6d:b8:a7:a8:f6:9d:2e:ed:67:bf:39:ab:
f1:83:e8:40:49:0f:09:31:5f:df:8c:48:67:68:51:39:9d:af:
8b:1b:ab:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org