Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/LL4bOgcWuTN-eJnG92Fmi24W298.roa
File: LL4bOgcWuTN-eJnG92Fmi24W298.roa (raw, json)
Hash identifier: M4g36vs0UglI0/drtMZJ5X6cJqqGu2LUAw0OM6Y0NGY=
Subject key identifier: 2C:BE:1B:3A:07:16:B9:33:7E:78:99:C6:F7:61:66:8B:6E:16:DB:DF
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F57
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/LL4bOgcWuTN-eJnG92Fmi24W298.roa
Signing time: Tue 30 Aug 2022 04:47:34 +0000
ROA not before: Tue 30 Aug 2022 04:47:34 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18419
IP address blocks: 218.35.8.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3927 (0xf57)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Aug 30 04:47:34 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=2CBE1B3A0716B9337E7899C6F761668B6E16DBDF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:fc:1d:d5:da:99:3c:e6:fd:d7:a5:23:81:44:
21:df:a1:fa:07:fd:c9:cf:d1:21:05:eb:f8:6e:cb:
89:eb:1a:18:a3:0b:d4:a2:61:f0:25:c0:8e:cc:f8:
65:9a:99:84:b5:15:13:e1:35:05:85:31:e6:4c:fa:
9e:59:53:af:dd:77:8b:a0:58:43:f0:3b:47:94:4b:
e4:57:b0:0b:c2:6c:4e:88:ce:48:f6:93:58:d3:6e:
a6:99:1d:6f:9f:02:2a:90:cd:1d:68:f9:f8:a3:fa:
c2:b8:e3:47:5d:60:7e:49:5c:52:7b:cb:a0:0d:24:
95:0a:98:0f:de:f6:af:cb:ce:fe:0b:57:ee:5b:33:
e1:3a:80:bf:bc:2c:a3:68:06:c0:17:a1:e7:95:ee:
c2:b4:2f:5b:4e:59:29:80:1e:c1:f4:20:cb:6e:d3:
e8:b8:bc:d2:80:16:2d:ab:10:de:b7:8f:a8:99:55:
4d:b6:a3:1e:f8:8f:ea:01:1d:53:15:9a:5f:47:56:
dc:5f:21:44:0d:c1:cf:8b:a4:fc:b0:18:2e:79:e5:
c9:dd:07:07:75:1f:27:05:19:98:fc:0c:8d:7d:b5:
e1:0f:5c:24:17:3f:01:97:65:9a:5e:ec:b3:84:c8:
7b:5c:a1:c5:b3:9f:f0:e6:0e:37:33:ab:4b:a7:60:
d2:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:BE:1B:3A:07:16:B9:33:7E:78:99:C6:F7:61:66:8B:6E:16:DB:DF
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/LL4bOgcWuTN-eJnG92Fmi24W298.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.35.8.0/21
Signature Algorithm: sha256WithRSAEncryption
a4:e5:aa:c3:c9:18:4e:d5:87:59:e7:58:2c:55:ce:7d:f0:04:
21:48:c6:8d:a0:18:88:fa:8c:3f:d5:d2:2a:d5:56:fa:e4:6a:
f1:51:b5:d8:79:29:9e:e9:bd:1f:38:47:6d:70:77:9b:4c:81:
1a:3f:cc:4b:69:63:9c:13:6a:f0:7a:82:f9:e7:59:84:cd:0b:
ee:e6:af:b7:68:c0:c7:f9:6b:8c:63:c4:a1:8f:cb:33:c3:62:
f4:30:8a:6f:7f:13:ac:04:70:cd:2a:e1:89:be:83:e6:40:f9:
cc:f8:3a:4d:c3:29:17:66:d3:fc:04:dd:c5:fb:61:ed:66:85:
64:d5:f0:a0:f5:06:fb:78:7d:c8:95:8f:17:28:38:c0:80:6d:
08:68:32:59:0d:56:1b:f0:df:28:06:6c:20:9d:c7:8f:35:fb:
e7:54:01:07:5c:52:6e:22:de:d6:7c:5c:af:fb:7b:5b:14:c4:
7d:98:c3:3b:66:a5:28:8c:dd:7e:87:58:d9:8a:36:43:8c:92:
e2:66:0a:7a:f2:3e:18:7f:60:99:c3:6f:4f:c2:bf:77:49:13:
e9:5a:53:fd:c5:e4:68:fb:ce:58:9d:27:eb:e0:32:8d:25:25:
7e:10:60:98:46:21:87:82:83:e3:a1:81:07:f2:dd:35:01:f5:
7c:07:aa:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:09:10 2025 by rpki-client