Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/LK5MggFIkfDbIW_aWT6zKPG3K9I.roa
File: LK5MggFIkfDbIW_aWT6zKPG3K9I.roa (raw, json)
Hash identifier: cTJSYB5yNlAZELzFR+lY823U3e/TvqpWfDnE2etGso4=
Subject key identifier: 2C:AE:4C:82:01:48:91:F0:DB:21:6F:DA:59:3E:B3:28:F1:B7:2B:D2
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/LK5MggFIkfDbIW_aWT6zKPG3K9I.roa
Signing time: Thu 15 Sep 2022 02:39:54 +0000
ROA not before: Thu 15 Sep 2022 02:39:54 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131597
IP address blocks: 218.35.32.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:39:54 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=2CAE4C82014891F0DB216FDA593EB328F1B72BD2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:59:02:1a:83:03:97:53:38:94:12:2a:84:db:
fa:df:2b:cf:8c:9a:01:b4:f8:cc:99:55:99:42:4e:
75:38:73:0f:85:c1:66:cd:a5:b5:01:0e:c5:e5:6e:
70:31:e5:9d:06:47:b6:b6:34:7f:cc:0c:99:27:6e:
6f:8f:4b:bd:b1:08:6f:90:01:62:55:79:5f:22:53:
f3:f7:23:fe:37:99:2f:13:fc:66:36:75:0f:f6:8c:
84:96:12:dd:6b:bf:0f:c5:a8:31:0d:25:77:0c:c6:
72:8c:3a:2c:74:c4:fa:de:5f:af:ab:b2:2e:34:57:
22:3c:ea:5e:b5:2d:cf:9a:a9:43:30:e0:09:58:9b:
ef:7c:10:b7:8d:d2:83:a1:90:d8:19:47:b1:57:92:
bb:c8:52:a0:a3:d1:5a:e6:35:00:9e:53:bb:af:e2:
bb:87:a6:aa:ea:3e:c3:32:1c:6f:14:86:de:fb:56:
e8:f5:e5:aa:56:a7:cf:36:ba:90:11:9f:55:f3:f8:
06:97:9f:d2:61:74:18:af:bf:e0:5c:ac:09:c1:55:
83:0c:6f:ab:97:18:27:1d:e1:3e:32:64:bc:0c:42:
b8:4c:ec:aa:2a:13:a6:fa:00:b7:40:c7:e3:e2:a6:
b6:e8:86:bd:74:42:b8:8a:3d:30:a0:73:b1:b7:8d:
04:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:AE:4C:82:01:48:91:F0:DB:21:6F:DA:59:3E:B3:28:F1:B7:2B:D2
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/LK5MggFIkfDbIW_aWT6zKPG3K9I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.35.32.0/19
Signature Algorithm: sha256WithRSAEncryption
8d:0b:24:6e:6c:38:27:7f:08:30:59:13:fe:29:21:f7:e6:a6:
ca:86:e1:1c:ae:bb:36:42:30:51:85:fa:11:25:8f:75:a6:76:
d4:dc:a6:54:6b:9c:74:95:05:61:84:89:ca:e3:22:7a:43:14:
b5:83:9f:aa:3b:7c:6d:e9:ac:7d:89:31:69:6c:6c:1d:20:03:
41:f8:93:c8:56:b5:2e:99:ad:65:f0:8c:ad:ea:c3:6e:c6:7b:
92:84:d4:6c:db:61:ef:94:c3:e7:21:29:44:6b:fd:95:9a:99:
b9:75:34:06:3c:d5:f0:75:10:90:c4:04:ed:0e:b3:71:d3:10:
2b:0a:91:0b:e0:63:ba:8a:4c:35:68:1b:6e:e2:e2:55:8f:52:
a0:d5:5b:f1:43:76:41:66:6e:57:ab:1e:48:83:bd:75:7e:51:
d1:9d:2b:83:32:60:ed:a2:a2:52:be:75:08:60:53:44:01:37:
15:3d:95:c0:60:52:e3:ed:8d:f8:d7:32:0d:1d:86:27:c3:74:
1c:f4:5c:be:4d:c2:ec:6e:40:6e:5d:30:e7:22:a8:5c:ed:ff:
cf:fe:84:63:76:4c:25:b5:4a:c2:05:6d:31:65:c9:ee:ce:87:
3e:5b:cc:66:26:71:6e:ce:01:7e:57:ed:48:66:71:b0:ed:41:
8a:1e:24:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:45:52 2025 by rpki-client