Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/LK8pK4gpwBt_UOsW_C5MvU9joEs.roa
File: LK8pK4gpwBt_UOsW_C5MvU9joEs.roa (raw, json)
Hash identifier: jEoKpNgGXb9YlbcaIRe9IhDIxYhUG17hfIVXbJ8+iqA=
Subject key identifier: 2C:AF:29:2B:88:29:C0:1B:7F:50:EB:16:FC:2E:4C:BD:4F:63:A0:4B
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/LK8pK4gpwBt_UOsW_C5MvU9joEs.roa
Signing time: Thu 15 Sep 2022 02:40:09 +0000
ROA not before: Thu 15 Sep 2022 02:40:09 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18419
IP address blocks: 218.35.8.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:40:09 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=2CAF292B8829C01B7F50EB16FC2E4CBD4F63A04B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:9f:87:5a:c2:4e:9a:96:7f:d6:27:2a:2a:14:
4a:fd:a1:eb:4a:a4:9d:02:7c:d7:e3:60:38:53:c7:
a9:b6:84:29:35:92:fc:dd:7a:e1:6e:6a:f7:e6:0b:
fd:d1:de:8f:19:8d:bc:62:8f:20:c3:64:a3:61:1d:
77:42:52:e8:63:98:f0:c1:59:1b:24:d8:25:a5:ea:
0d:ce:cc:34:89:4e:71:0f:28:01:ec:15:71:d9:24:
c4:b6:83:da:55:44:87:36:15:c2:4e:c2:bd:01:09:
17:08:f6:dc:22:8f:f4:07:32:e6:9d:86:4f:14:71:
a7:0f:39:9c:08:08:c1:6a:24:05:c5:94:69:f8:51:
68:ef:9d:2d:13:57:aa:87:ee:f1:14:fd:a2:44:e1:
3d:fd:59:81:08:9d:d4:db:8f:cf:d3:ff:d9:ee:b3:
fe:f2:32:c8:1c:8a:55:df:12:97:c1:b2:16:44:28:
54:44:11:06:f3:2f:d3:76:c9:19:46:0f:dc:8a:a9:
c8:28:c5:a6:7b:27:de:e3:7c:3e:95:77:1f:62:b8:
a8:20:7c:d0:0d:72:e0:4c:f1:6c:e7:07:c3:ee:76:
83:b5:f0:f6:53:23:6c:43:c3:a9:d2:b2:03:af:ff:
a8:b2:d4:e3:f7:52:77:08:8c:d7:c6:b8:f8:2c:85:
cd:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:AF:29:2B:88:29:C0:1B:7F:50:EB:16:FC:2E:4C:BD:4F:63:A0:4B
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/LK8pK4gpwBt_UOsW_C5MvU9joEs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.35.8.0/21
Signature Algorithm: sha256WithRSAEncryption
5d:af:09:ab:ac:cd:91:ec:1d:37:d5:88:2b:7d:a1:98:73:98:
17:c0:65:25:34:66:d6:30:19:ea:65:c2:63:11:33:18:ff:88:
e2:c2:67:96:7c:dd:04:53:64:de:48:98:84:2a:5e:ab:2b:46:
23:43:21:bc:68:ba:0c:00:35:0c:db:8c:fe:ef:8e:4e:79:85:
88:bf:25:1a:9c:4b:78:49:57:dc:41:98:9c:13:93:3b:12:5e:
83:8e:cd:3c:c2:f8:6d:dd:d8:bc:4c:2e:d2:7d:9b:4b:f2:6a:
44:87:da:5c:11:58:3f:a1:e6:52:49:1b:bd:56:27:6b:b2:ec:
8c:1d:1d:3b:4f:08:a7:09:72:88:69:10:26:9e:31:db:f9:fc:
7e:2a:0c:8b:63:74:7b:11:56:e0:d9:39:1e:81:d9:f7:31:da:
a1:c1:b2:6f:a9:43:05:ef:a7:33:5f:f6:87:88:ed:26:8f:d2:
c2:15:68:31:29:d9:46:ca:a3:36:28:9b:ae:81:3b:38:0e:e6:
35:7a:59:34:c8:1c:2b:0f:7c:64:9b:a0:f3:33:c3:4f:62:e0:
8c:2d:6f:69:40:2b:e6:5b:c3:a5:a9:2e:03:18:c1:d7:3e:90:
4e:67:4e:7f:6f:09:c8:ef:7f:d3:c6:c1:19:28:ff:55:e6:e9:
8a:f2:d4:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:00 2024 by rpki-client on console-ams.rpki-client.org