Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/KsXnqkutKg7eIq4r0mOjR2lKtC0.roa
File: KsXnqkutKg7eIq4r0mOjR2lKtC0.roa (raw, json)
Hash identifier: k8m6SRhe5AEucBjf/IuANR5lZiYxhFMpVht5BSdCZFQ=
Subject key identifier: 2A:C5:E7:AA:4B:AD:2A:0E:DE:22:AE:2B:D2:63:A3:47:69:4A:B4:2D
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 10A8
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/KsXnqkutKg7eIq4r0mOjR2lKtC0.roa
Signing time: Tue 16 May 2023 08:36:28 +0000
ROA not before: Tue 16 May 2023 08:36:28 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9922
IP address blocks: 124.218.64.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4264 (0x10a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:28 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=2AC5E7AA4BAD2A0EDE22AE2BD263A347694AB42D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:69:46:48:95:30:4a:76:ef:41:cf:a5:e8:d0:
2c:f8:aa:4e:f2:b5:b7:ff:6e:15:3c:69:cb:d2:0f:
43:95:8e:fa:b8:49:b1:bc:97:59:13:7a:a4:b8:84:
60:70:24:01:0c:fb:1b:03:0d:e9:af:3b:2a:f2:50:
1f:99:b9:d6:24:6b:eb:78:f6:25:26:62:c9:3a:7e:
56:84:96:3c:dd:41:39:c5:66:46:4c:6a:8f:24:7f:
e7:df:7a:81:d6:7d:2b:ca:9b:6c:82:81:00:98:05:
54:53:69:7d:84:63:6b:c0:84:68:0f:61:2b:bc:76:
6d:fd:08:d0:ea:99:81:3c:dd:22:a7:29:a0:92:3a:
1f:da:8a:b6:e5:3a:65:c2:16:5e:4b:f3:58:ac:f4:
2f:bd:5e:cd:a4:dd:80:a5:f4:ce:b8:2c:d6:41:f4:
71:65:c7:eb:a2:58:15:32:c4:9a:10:27:8f:7f:03:
1c:c0:79:be:15:52:d7:fa:09:e7:0d:76:1a:b4:f9:
c3:62:e4:21:b0:2c:8b:43:75:b4:37:82:a0:c9:cb:
ea:29:9a:0f:df:e1:4f:a3:48:9f:d7:6e:3b:46:4c:
3b:13:bf:21:f1:a7:14:32:b5:fe:d7:64:ab:54:ae:
54:66:37:a8:5a:6d:e7:f7:ea:8a:06:cf:4d:3b:94:
84:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:C5:E7:AA:4B:AD:2A:0E:DE:22:AE:2B:D2:63:A3:47:69:4A:B4:2D
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/KsXnqkutKg7eIq4r0mOjR2lKtC0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.218.64.0/22
Signature Algorithm: sha256WithRSAEncryption
56:2b:1b:d7:32:e3:7b:cd:dc:b7:b2:1b:7b:3b:cf:29:d0:17:
bb:85:ef:c4:86:d5:49:e2:30:c2:13:5c:e5:3e:85:4f:ae:2c:
09:53:5c:b7:21:86:73:df:20:dd:32:75:94:9c:8c:bb:ab:2c:
b1:3e:41:4d:d4:b9:86:3b:d4:b3:9c:1b:60:20:a6:26:a3:7f:
57:8d:cd:8f:72:20:a4:e0:1d:ba:f2:76:76:fa:3d:38:1c:1c:
47:de:17:cb:ad:f9:e1:37:60:78:9e:cf:81:e0:73:55:f5:14:
87:38:f2:0b:8d:cf:23:6f:ef:7c:64:83:9e:d7:8f:1a:0b:e6:
14:e4:e1:ce:56:d4:fd:07:be:5b:f6:b3:2b:21:de:57:5a:08:
29:5a:c7:4a:a2:53:bf:1b:a6:2b:7e:27:87:d5:ce:e5:c8:78:
19:d5:5b:3e:80:ec:c9:b8:fd:01:27:be:38:7c:c4:68:85:7d:
e0:27:22:df:b0:40:d1:1f:69:49:d9:fd:46:8a:1a:35:b9:d0:
b6:9e:e8:f7:bd:c9:e8:a7:4a:b3:ed:06:8b:06:46:db:0d:18:
03:72:8c:3d:3f:85:7e:a4:39:ac:af:54:04:e1:dc:fb:7a:3c:
fa:23:92:eb:0e:1f:32:43:7c:45:74:c7:f7:f8:17:77:16:2a:
be:a2:9d:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:50:48 2025 by rpki-client