Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/G79D5wEJt-ePtMCPmRhmHRgU1zo.roa
File: G79D5wEJt-ePtMCPmRhmHRgU1zo.roa (raw, json)
Hash identifier: ZtJmAomVJFzCG4JY1Fv0JlVxLx5qSp6bzmS7n7y1xcc=
Subject key identifier: 1B:BF:43:E7:01:09:B7:E7:8F:B4:C0:8F:99:18:66:1D:18:14:D7:3A
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/G79D5wEJt-ePtMCPmRhmHRgU1zo.roa
Signing time: Thu 15 Sep 2022 02:39:52 +0000
ROA not before: Thu 15 Sep 2022 02:39:52 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 7482
IP address blocks: 223.22.0.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:39:52 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=1BBF43E70109B7E78FB4C08F9918661D1814D73A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:99:47:15:67:73:b1:f4:5f:ef:eb:68:02:56:
6b:09:24:dd:76:7e:e9:5a:d4:e9:e0:d0:8f:23:55:
7b:f3:99:ac:4f:88:db:82:79:d0:91:4a:59:4e:72:
c0:4f:4a:c3:90:70:b6:5e:e5:f3:b8:3a:a7:0c:c2:
97:35:76:01:b2:2c:55:0e:7e:bf:cd:87:56:dc:81:
9e:54:70:75:d5:6b:83:08:9f:f0:9f:e3:7e:55:6f:
65:6f:6b:d4:b6:ac:ef:33:61:9e:10:76:76:1d:47:
cc:48:88:7c:a9:2b:e1:bc:dc:6d:61:f4:78:a7:bc:
af:f9:c6:22:ca:0f:f5:0c:a8:42:02:a4:e7:6a:f0:
2d:da:31:50:41:40:36:5c:89:01:30:e7:49:9b:05:
5c:08:7a:d2:ae:c5:d1:5d:47:04:6e:6e:27:9c:4e:
50:00:e2:84:40:33:dc:23:e6:1d:d9:2b:3a:88:28:
1b:2f:6c:d9:08:08:6b:6f:e2:19:d1:f9:2f:c7:15:
05:11:e8:23:59:f5:84:68:23:6a:3f:4b:39:8b:09:
f7:71:a2:d1:e5:3e:60:f2:e2:c1:31:5c:c6:b5:48:
7c:4c:99:6b:b4:9a:31:72:76:78:38:f4:a5:fb:53:
e0:81:2b:dc:c3:f6:b5:4c:dc:53:ec:ca:32:e5:9b:
7d:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:BF:43:E7:01:09:B7:E7:8F:B4:C0:8F:99:18:66:1D:18:14:D7:3A
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/G79D5wEJt-ePtMCPmRhmHRgU1zo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.22.0.0/18
Signature Algorithm: sha256WithRSAEncryption
a1:ee:23:17:9a:34:ed:ed:31:ad:af:25:15:3a:23:ef:4d:ac:
26:db:fc:da:a0:d0:23:72:02:c3:01:7b:d1:96:af:4d:c0:33:
46:fb:4b:f9:53:c0:02:f0:68:77:10:61:c1:ee:2f:80:11:8a:
29:03:32:ba:af:0a:e3:a8:0f:16:b0:40:99:67:ee:8d:37:8b:
84:d5:4e:1e:02:c9:64:8c:a5:15:8f:23:13:a0:48:40:80:d6:
d6:dc:d2:f4:ac:35:99:1f:77:e3:a4:a6:6f:24:c2:3d:e9:6f:
c9:36:c3:a8:50:16:cd:97:e3:42:3a:fb:0c:f4:5b:70:05:7a:
c7:2d:93:66:53:25:58:a8:4c:08:28:01:c9:7e:96:8c:0b:71:
80:65:c6:a7:15:9a:76:56:b5:b4:04:a0:f7:7d:03:68:0b:ae:
f9:29:ea:e2:42:5d:98:e2:a9:7a:91:85:cf:85:fa:8d:a0:33:
f4:aa:84:54:09:09:13:82:95:22:1a:a3:18:72:7d:af:c1:0c:
93:3a:f2:d3:a4:3d:41:a0:0a:87:44:d9:90:39:01:86:12:1e:
cc:5f:f6:c6:f6:53:b1:2a:a0:85:53:02:53:3e:a2:f7:cf:7f:
06:c0:84:dc:4a:27:c3:78:d6:03:39:35:ec:e2:35:c9:96:7f:
dd:66:4e:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org