Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/IkG6qRM1Tu6s-of28jJx1N3iR24.roa
File: IkG6qRM1Tu6s-of28jJx1N3iR24.roa (raw, json)
Hash identifier: TR5j1fRr9qWtVYWP16z0djKJXLkhkT4AGK/hG5Tf+2A=
Subject key identifier: 22:41:BA:A9:13:35:4E:EE:AC:FA:87:F6:F2:32:71:D4:DD:E2:47:6E
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 126F
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/IkG6qRM1Tu6s-of28jJx1N3iR24.roa
Signing time: Fri 01 Sep 2023 08:04:27 +0000
ROA not before: Fri 01 Sep 2023 08:04:27 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131591
IP address blocks: 101.136.0.0/14 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4719 (0x126f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:04:27 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=2241BAA913354EEEACFA87F6F23271D4DDE2476E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:22:46:60:52:1b:f3:3e:d7:89:2e:11:30:5d:
01:9c:e1:33:25:86:50:0a:08:05:80:68:6f:d6:10:
d6:81:94:62:c7:07:d8:f0:e0:e9:c0:4f:ab:e5:b7:
e8:a8:b2:8f:62:a3:61:fb:5e:fa:e4:83:f0:70:77:
7e:86:ce:a7:12:4d:db:34:89:2e:00:f3:83:4c:61:
90:db:56:d8:65:cc:4a:4d:d1:03:8a:b8:b9:80:b3:
25:4f:cb:a1:ea:fd:bc:6b:8f:de:e3:55:e5:0b:7b:
a0:ba:a2:1e:d6:eb:16:3c:e2:2e:2e:d5:77:f3:7c:
6c:e7:cc:c1:ba:73:6f:9e:ca:64:21:af:2f:53:ad:
2a:10:3c:04:c9:1a:c9:de:3d:d6:8d:b6:e1:f1:62:
55:d5:5a:f8:44:98:8c:2b:37:92:3a:ab:cd:f3:8f:
bf:52:3b:13:6b:e1:e0:64:36:b9:d0:1f:81:b3:a1:
65:1a:00:a9:de:5e:a5:b9:a5:3c:c2:7c:2b:15:1b:
46:44:20:64:18:25:42:d3:f3:ec:7e:fd:9e:74:0f:
47:3e:b6:93:6c:a6:b1:1e:f7:03:92:f2:a6:a3:17:
fc:b6:39:86:88:45:77:bf:4d:f0:57:7e:bd:d3:2d:
22:4b:8f:08:55:04:38:a5:f1:16:19:f4:8b:0c:86:
59:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:41:BA:A9:13:35:4E:EE:AC:FA:87:F6:F2:32:71:D4:DD:E2:47:6E
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/IkG6qRM1Tu6s-of28jJx1N3iR24.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
101.136.0.0/14
Signature Algorithm: sha256WithRSAEncryption
96:98:fb:16:a4:2c:bc:7b:17:9e:a7:85:18:7d:3a:5c:3c:cf:
e2:25:51:89:b4:53:a8:45:65:cf:cc:44:fb:22:04:a6:a5:a2:
46:83:f5:e1:6e:24:d5:a4:1e:3f:75:2a:cd:7a:aa:a7:c3:e2:
48:86:1a:b3:21:cb:db:0d:d3:a2:de:d5:58:2a:09:1a:20:e5:
de:ba:38:82:83:61:ea:c5:4a:91:a1:1a:42:22:61:d5:0c:a4:
a9:f1:ff:a4:81:f9:df:94:e2:21:68:4e:27:99:f8:a5:e6:b0:
05:dd:0f:26:df:a8:a6:25:71:54:00:8d:72:36:be:a2:3f:86:
c4:30:de:4d:b7:35:80:8b:d3:1e:e3:ea:0b:d6:15:b9:b0:7a:
44:72:a0:6b:29:c4:cc:2d:8c:52:6c:e2:b4:49:72:e9:e7:4e:
9e:e8:8e:7a:fa:18:6e:2c:c3:ea:56:81:83:4c:ba:13:b7:fa:
8f:93:98:c5:0f:e9:3d:8d:d5:e4:3a:9c:9d:22:dd:32:46:5f:
db:22:b4:ff:d0:02:d9:ff:73:54:a2:c6:cc:d3:71:38:01:10:
49:09:b4:43:62:ef:1a:af:bd:df:5b:15:5c:28:23:49:f3:47:
ce:22:80:2a:ee:9f:7c:76:53:e3:33:47:af:46:e9:32:23:f7:
13:50:cb:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:03:19 2025 by rpki-client