Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/Jo8jnWUf4YknEsrPkdrkZf8mznE.roa
File: Jo8jnWUf4YknEsrPkdrkZf8mznE.roa (raw, json)
Hash identifier: Bdq6osSfcwPS55nhfIx27azu5XLYBfn0++bAKLPmRpI=
Subject key identifier: 26:8F:23:9D:65:1F:E1:89:27:12:CA:CF:91:DA:E4:65:FF:26:CE:71
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 10F1
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/Jo8jnWUf4YknEsrPkdrkZf8mznE.roa
Signing time: Tue 16 May 2023 08:36:51 +0000
ROA not before: Tue 16 May 2023 08:36:51 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18419
IP address blocks: 124.218.224.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4337 (0x10f1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:51 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=268F239D651FE1892712CACF91DAE465FF26CE71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:44:5e:79:ac:c4:96:38:9b:6e:3f:3f:8a:e5:
16:c8:d7:83:f3:dd:10:bc:7c:e9:5f:4a:2b:2b:17:
13:e8:b4:78:17:59:b5:d4:90:74:71:ad:25:13:d0:
5e:f8:11:3c:90:45:93:a7:42:f3:36:a9:6b:aa:0d:
f8:b0:a3:d1:82:ec:d0:e5:11:7f:d6:20:4d:96:1a:
35:e9:a4:18:d5:73:8a:bd:6e:9e:29:6a:06:c5:a3:
19:11:33:d4:d1:e2:f8:e4:7a:51:ef:cb:ff:03:f7:
bd:67:ec:2b:e8:fa:34:e0:29:e7:42:fe:4d:d5:24:
5f:16:08:af:7e:8e:5f:94:5e:2b:7d:5f:2e:b3:32:
7b:5d:b3:57:de:f9:1d:79:b6:f8:3f:da:52:97:9a:
83:0d:85:2a:cb:69:2a:a7:b0:84:f5:94:e5:5d:83:
0b:0b:df:12:8a:02:67:3f:fa:ba:84:a5:6c:e5:b3:
e8:58:1c:38:19:61:72:b3:00:f5:9c:8c:16:11:a5:
cd:e8:93:88:e9:2f:68:8f:37:b4:db:68:a6:dc:be:
0a:e8:cf:91:92:e4:eb:9b:96:c5:8d:2b:e3:cd:68:
e1:75:f0:6a:6d:70:a9:cc:c0:1c:2e:de:04:c0:87:
2f:63:d7:8c:ad:30:9d:9a:92:9e:e0:03:e7:65:18:
85:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:8F:23:9D:65:1F:E1:89:27:12:CA:CF:91:DA:E4:65:FF:26:CE:71
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/Jo8jnWUf4YknEsrPkdrkZf8mznE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.218.224.0/21
Signature Algorithm: sha256WithRSAEncryption
77:82:38:12:a0:bf:bd:95:ab:d0:c3:c8:0c:b9:91:40:2d:4c:
c3:13:e1:f8:9b:16:16:f3:45:9a:21:65:24:04:10:a3:a3:a1:
2f:ae:10:42:e0:3d:55:7d:d6:a1:50:67:67:91:6c:a0:f7:b6:
5e:6d:92:b8:92:ad:47:28:c3:55:18:d8:f9:b4:39:80:e6:5c:
48:98:43:a2:5f:63:f9:a0:0d:9e:3b:81:5d:c0:01:13:4c:c4:
24:98:34:23:30:f8:de:e2:f3:30:fa:f9:6c:1e:77:19:e7:a6:
1b:e2:81:c7:7b:6b:e4:ad:b3:de:b9:ba:c3:b3:3f:73:9c:ff:
99:8b:24:e5:37:ba:f5:99:82:e3:9e:82:ae:4f:66:16:64:dc:
e6:3e:14:7d:74:72:d5:5d:bc:d5:38:d0:0c:3c:d6:28:ba:1f:
fe:7c:63:15:a6:7e:2b:a7:b9:e2:c6:9e:41:13:4a:f7:03:3f:
f6:36:96:56:d0:45:9f:a6:68:12:5c:9b:51:ea:77:10:c8:8c:
63:98:14:c2:cb:0b:d1:40:4c:c7:d9:d9:3b:e9:4d:4a:41:74:
8c:18:13:94:2a:dd:ce:2b:67:6e:de:fd:82:9f:d1:30:b5:c8:
fd:14:db:6c:03:b8:4a:05:82:75:a3:83:25:0c:5a:96:c9:9f:
62:36:db:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:57:16 2025 by rpki-client