Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/KneAHz0D4cDHOXi2OKbdh2jhLI8.roa
File: KneAHz0D4cDHOXi2OKbdh2jhLI8.roa (raw, json)
Hash identifier: goi7v9O93fiPYkNHVAYa/cUz5asgWLUshEBE7TjyLKU=
Subject key identifier: 2A:77:80:1F:3D:03:E1:C0:C7:39:78:B6:38:A6:DD:87:68:E1:2C:8F
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 136D
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/KneAHz0D4cDHOXi2OKbdh2jhLI8.roa
Signing time: Tue 07 Nov 2023 05:33:31 +0000
ROA not before: Tue 07 Nov 2023 05:33:31 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17709
IP address blocks: 124.218.177.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4973 (0x136d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Nov 7 05:33:31 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=2A77801F3D03E1C0C73978B638A6DD8768E12C8F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:a2:d9:c5:ca:45:ee:a0:47:31:70:cc:9b:77:
06:1f:84:72:97:95:37:cc:01:ef:55:c0:bc:5f:da:
b3:c8:30:5c:18:f1:22:42:55:22:e4:ba:f1:89:12:
3f:4e:5d:c7:c3:7b:76:da:7d:dd:5c:8f:f5:89:c6:
5e:5e:53:f2:41:1b:6c:09:63:c5:af:5b:4b:d4:4f:
37:cb:36:97:0f:e2:d6:ee:e4:d9:90:e9:7e:0e:65:
b6:1d:0a:30:df:35:58:12:e2:93:66:99:9e:12:31:
ce:33:44:2d:d0:e1:d7:eb:51:a4:df:0c:41:a0:bd:
8a:97:94:2e:1e:55:ed:c5:16:53:e1:43:66:19:87:
7a:cc:e3:e8:94:e8:5b:0a:1e:59:96:69:3c:4a:9d:
c7:06:7e:44:73:f0:18:a9:ba:1f:0d:9d:c2:a5:67:
9d:c0:15:4f:d5:d7:bb:ef:b6:d5:c6:b1:b1:44:f5:
44:d5:a7:44:0e:f7:88:ab:eb:4c:e4:03:7e:d4:67:
14:dc:2e:38:c7:2c:5f:8f:e4:3c:9b:00:9b:72:bb:
fe:90:14:72:3c:b9:b5:c9:d0:ac:fc:48:e1:e8:1b:
cf:97:49:ed:60:82:97:d1:4d:76:6e:a0:af:80:98:
6a:50:79:1f:6e:49:fd:50:2a:96:0a:fa:33:3e:05:
59:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:77:80:1F:3D:03:E1:C0:C7:39:78:B6:38:A6:DD:87:68:E1:2C:8F
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/KneAHz0D4cDHOXi2OKbdh2jhLI8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.218.177.0/24
Signature Algorithm: sha256WithRSAEncryption
c0:1d:14:03:62:69:4d:cc:e8:2f:02:51:d8:7e:87:71:bf:95:
a2:50:42:8d:22:e8:f4:4e:1d:ea:43:f9:ec:a3:19:2a:47:71:
58:48:c9:9d:14:17:4d:c0:ef:e8:9e:fc:b0:d0:d0:69:60:02:
d7:f7:64:80:ec:81:7d:e6:ba:e0:c6:e2:41:5c:69:42:24:64:
57:72:2b:ac:7a:64:9d:77:bc:69:eb:5a:f6:f3:72:fc:55:d7:
11:a7:96:72:9e:c2:05:69:83:d1:4b:c5:66:4c:32:86:34:b7:
6b:35:5f:7c:74:47:0d:f1:8d:62:d0:62:75:1b:53:5f:a2:18:
f8:57:98:38:6f:1a:1a:9f:46:74:a7:6d:52:b1:ac:c7:8a:5e:
af:e6:1c:5e:d0:55:1e:f2:0c:f5:1d:33:96:e4:43:59:47:f3:
fe:15:43:28:91:35:5d:0a:13:1b:f1:c0:ad:ba:9b:42:63:8c:
e0:c3:06:69:e2:7c:0a:a8:bf:89:98:7b:4c:48:f5:19:f6:2c:
61:51:c8:6a:14:1d:7a:7b:14:24:48:1a:75:02:ad:ae:e0:1c:
11:7e:d8:0f:ab:03:4d:dc:ba:c4:a3:63:e6:48:ed:3a:17:6f:
40:38:d9:de:e0:7d:f4:d1:3e:fa:46:fb:9f:5f:6c:1f:1b:ab:
61:4b:a9:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org