Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/JeXngdGNQNextgY1f9jz2RbQTKY.roa
File: JeXngdGNQNextgY1f9jz2RbQTKY.roa (raw, json)
Hash identifier: ixL41xkJFiHi24o2DyhExicOOKRarbrS/cq8XlsoLhQ=
Subject key identifier: 25:E5:E7:81:D1:8D:40:D7:B1:B6:06:35:7F:D8:F3:D9:16:D0:4C:A6
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0CB3
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/JeXngdGNQNextgY1f9jz2RbQTKY.roa
Signing time: Sun 07 Feb 2021 12:47:22 +0000
ROA not before: Sun 07 Feb 2021 12:47:22 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18419
IP address blocks: 218.35.128.0/19 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3251 (0xcb3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 12:47:22 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=25E5E781D18D40D7B1B606357FD8F3D916D04CA6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:50:fb:10:cb:f5:4d:70:f8:1a:b0:ff:45:d3:
b7:4e:b2:f5:fd:d7:ac:82:56:47:a6:26:88:bc:88:
6a:eb:d0:a6:e4:c7:09:f5:af:f3:84:d4:97:2e:6e:
36:7a:30:9a:be:16:1e:13:53:59:c2:dd:b2:18:b6:
17:a7:ad:04:a9:ed:e6:1d:73:69:d2:83:21:11:50:
18:2f:91:b5:e0:cd:97:77:04:79:03:e4:e0:e9:3b:
ef:05:75:5b:ef:c9:96:4f:e2:04:38:37:05:d5:79:
dd:ad:ea:2b:8b:51:70:cf:42:35:de:f1:59:ee:cf:
0d:17:35:f0:5c:f2:6f:88:b6:f7:c2:3a:3d:6f:92:
5f:bb:b6:e9:9c:6c:06:fa:da:65:9e:9a:71:78:ff:
70:8c:d6:15:67:6d:bd:60:18:2e:dd:3f:9e:8f:46:
22:04:4f:34:8b:cd:d9:ae:46:8c:22:93:92:0f:f5:
e2:1a:72:74:e1:ab:e9:bc:ab:f8:6c:3c:0c:b1:94:
c9:f1:1a:df:35:b3:29:2c:e4:1b:07:47:df:e2:31:
d7:e9:9e:eb:d5:76:0e:83:ae:82:3e:7c:f5:8b:91:
8d:fe:7f:fa:ef:23:00:58:32:75:e9:20:d6:75:eb:
3e:f5:67:7c:02:cf:e1:6d:33:5e:a5:11:7f:f5:e1:
57:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:E5:E7:81:D1:8D:40:D7:B1:B6:06:35:7F:D8:F3:D9:16:D0:4C:A6
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/JeXngdGNQNextgY1f9jz2RbQTKY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.35.128.0/19
Signature Algorithm: sha256WithRSAEncryption
25:28:c5:21:24:73:84:de:21:8f:b3:b0:a3:85:81:5a:6a:8d:
c6:fa:59:a7:a2:c5:7e:e7:33:1c:bf:cb:82:52:f5:a4:aa:01:
7d:3e:4d:cd:8b:f5:9c:01:a9:77:ef:be:28:8a:94:31:71:ae:
ea:cd:50:b1:ba:af:4a:fe:e2:af:b9:af:51:e3:d9:a2:7a:7a:
aa:2d:df:9e:33:fc:c9:2a:b3:e1:57:04:0a:f5:d6:ce:51:a7:
bc:e5:08:b6:7c:e5:d0:28:c1:a4:a8:57:23:2c:c1:27:21:e7:
0a:88:26:7f:a8:ce:4f:f0:71:68:69:93:a8:18:c1:29:80:90:
45:65:e6:52:ec:0c:d4:df:99:8f:f8:bd:8b:15:d1:31:8e:3c:
74:3a:f2:3d:51:b2:eb:e1:3b:92:e8:48:36:5e:fa:73:47:59:
88:07:86:d8:f0:ac:22:de:aa:87:e8:94:36:c5:b3:01:dc:38:
8b:bf:d9:cb:f9:8f:f4:4f:cf:05:c0:c1:20:e7:e4:80:9e:77:
8c:39:8c:b7:71:9a:37:1d:1d:40:ba:de:42:fb:29:86:d8:57:
b4:26:dc:61:b6:c1:93:69:af:a2:e6:d1:08:f5:ba:68:4c:80:
24:b2:cc:dd:28:76:19:3c:4b:d9:2f:61:27:34:8f:9c:27:63:
78:70:f7:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org