Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/IMOLRDVT_xQ_AVQKW8c4AItASRc.roa
File: IMOLRDVT_xQ_AVQKW8c4AItASRc.roa (raw, json)
Hash identifier: qMEB6Hq9xAXgGpz4nsIh0vz9u4qz9fLdu3R8iHSMGCQ=
Subject key identifier: 20:C3:8B:44:35:53:FF:14:3F:01:54:0A:5B:C7:38:00:8B:40:49:17
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 13D5
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/IMOLRDVT_xQ_AVQKW8c4AItASRc.roa
Signing time: Fri 05 Jan 2024 09:17:12 +0000
ROA not before: Fri 05 Jan 2024 09:17:12 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17709
IP address blocks: 218.34.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5077 (0x13d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Jan 5 09:17:12 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=20C38B443553FF143F01540A5BC738008B404917
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:d9:6c:8f:44:62:11:00:1f:ab:55:3d:bb:f6:
b1:8b:e4:80:6b:15:5e:79:5d:59:17:cb:ab:a1:13:
3c:42:86:be:46:9c:85:18:1b:dc:0f:a8:59:8c:bd:
ac:18:df:62:bd:31:bb:4f:ad:cc:eb:6e:1e:d5:df:
1c:61:69:60:1e:e7:03:0e:c5:7f:99:51:43:38:37:
cf:a4:fa:3e:93:6b:7b:84:6b:6d:c3:a1:aa:2f:99:
0c:56:fd:cd:96:68:b7:76:05:eb:ac:1c:21:30:87:
14:46:7f:27:d3:d6:df:35:28:a9:37:78:a1:07:b6:
d3:45:aa:3c:30:b3:10:85:ad:bb:ab:6c:e5:14:98:
82:b2:b7:25:9b:c8:37:ff:61:00:9b:f9:51:f5:13:
74:19:0d:61:85:a3:ee:98:ae:71:fd:5d:a2:f9:24:
0d:d9:0a:16:83:9d:b4:a3:bd:08:cc:73:dc:2e:ce:
c9:ee:b3:e6:b1:de:7d:77:d1:32:9c:1f:f7:62:c8:
55:44:90:d8:ac:e8:da:c4:e2:c5:2d:52:5c:6a:8a:
8a:cc:69:80:3e:c7:d4:e2:04:96:e2:3d:01:ac:6a:
38:a5:4e:20:8d:f5:d1:67:2e:8f:b1:08:ee:be:93:
45:02:a5:31:81:9c:35:9d:53:9f:3d:14:f5:34:fb:
8b:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:C3:8B:44:35:53:FF:14:3F:01:54:0A:5B:C7:38:00:8B:40:49:17
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/IMOLRDVT_xQ_AVQKW8c4AItASRc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.34.0.0/16
Signature Algorithm: sha256WithRSAEncryption
20:90:00:5d:11:31:74:05:63:13:c3:5e:55:1c:6f:d5:69:79:
aa:46:be:56:71:c1:b6:ac:7c:36:64:85:f7:f7:17:26:11:ba:
42:b5:7a:27:1b:07:d9:38:03:4a:11:a5:66:ef:7b:d9:ca:fc:
35:f3:e3:7c:7a:50:e7:a3:25:60:c9:5d:af:74:d9:ad:62:da:
fc:04:f1:82:cb:1d:ae:3e:ad:22:a8:1c:1f:9e:86:e0:88:26:
7a:c3:13:d3:45:4e:f2:1d:4d:10:98:df:47:53:03:e6:7b:ff:
a8:eb:dd:29:bc:3f:e9:48:9c:eb:89:65:e0:5a:49:63:ad:32:
63:d1:c7:19:50:61:af:af:71:b1:61:92:0e:c6:8d:63:5f:a7:
9f:13:51:c6:d9:c4:f8:ae:ed:31:56:25:df:91:50:e7:9b:66:
e1:29:85:7e:d3:0b:1d:0a:dc:b9:cc:d6:77:6e:61:57:91:8d:
74:cf:b1:85:40:18:99:53:9f:51:ef:08:9b:70:07:9f:10:ca:
4c:0e:83:e3:0c:60:05:7b:c1:73:38:89:82:00:66:9a:ff:e6:
31:10:11:8c:61:b7:7e:07:65:67:66:4b:b1:19:7c:63:ad:91:
35:2b:e7:c2:5f:fd:c7:7a:9a:6b:23:13:6f:77:67:a4:55:4b:
47:e5:19:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org