Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/N3igUmqCtfMWFt7reHxWZ7rSxhE.roa
File: N3igUmqCtfMWFt7reHxWZ7rSxhE.roa (raw, json)
Hash identifier: BTe66kepVUeaq4fonAlcZdbVQAbVut24EeyxJLppv9Q=
Subject key identifier: 37:78:A0:52:6A:82:B5:F3:16:16:DE:EB:78:7C:56:67:BA:D2:C6:11
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1379
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/N3igUmqCtfMWFt7reHxWZ7rSxhE.roa
Signing time: Tue 07 Nov 2023 05:47:37 +0000
ROA not before: Tue 07 Nov 2023 05:47:37 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9922
IP address blocks: 124.218.174.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4985 (0x1379)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Nov 7 05:47:37 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=3778A0526A82B5F31616DEEB787C5667BAD2C611
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:bb:2b:ad:78:fb:75:0c:7e:a6:74:5f:ca:64:
5a:a8:ae:13:47:07:8c:9e:f2:88:88:4f:c7:53:46:
5b:f6:36:31:18:b3:0e:7c:c4:6c:87:03:e6:5f:72:
2b:8e:92:c8:a0:cd:b4:8e:3b:18:84:fe:03:dd:d3:
ff:23:16:c9:ca:80:b0:cf:cd:df:03:0e:b3:44:4d:
7c:ab:f0:71:3b:f1:42:3a:58:b3:83:97:67:98:07:
28:ff:94:dc:3c:4d:d1:07:ba:db:d8:13:a5:c9:e9:
ea:bf:fd:9e:0e:77:6e:cd:0f:98:ef:f3:51:b0:17:
f8:37:ae:16:24:9f:63:cf:9d:6f:bf:56:3b:ee:31:
c7:b5:d9:28:2d:88:91:28:f5:26:49:69:e7:bf:13:
81:64:be:14:47:59:c2:5f:b9:3a:fa:e9:47:a0:d3:
45:df:b1:f8:53:90:63:43:0d:91:e6:29:fe:8c:02:
5a:b7:f7:e4:a1:b2:86:89:31:f1:59:03:99:f4:0e:
e8:bb:17:af:11:8e:04:62:cc:61:c3:da:a5:23:e2:
af:28:d6:58:ee:15:2e:f1:1e:f9:57:0c:97:3c:98:
3a:20:f5:81:fc:7b:b9:4a:0d:c8:6d:52:54:09:ba:
c7:38:50:d0:ce:59:49:a8:9f:fe:fd:8a:b2:52:ae:
6e:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:78:A0:52:6A:82:B5:F3:16:16:DE:EB:78:7C:56:67:BA:D2:C6:11
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/N3igUmqCtfMWFt7reHxWZ7rSxhE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.218.174.0/24
Signature Algorithm: sha256WithRSAEncryption
05:5c:47:bc:11:34:9e:db:71:5e:88:e8:28:68:81:d5:4b:74:
41:c9:7a:d2:46:30:a6:06:0a:d6:6a:81:90:2e:cf:63:6d:44:
55:e7:12:47:94:ce:a0:d0:a9:38:a2:cd:8c:ff:7e:20:42:4b:
d1:fc:63:47:80:29:cc:71:e0:e5:ac:dd:e8:03:77:f1:d6:15:
97:11:a6:7d:bd:cd:00:1d:b2:9a:3b:be:10:ab:03:34:25:fd:
fe:81:3b:ea:d5:6e:2e:b1:e4:00:bf:4f:77:37:4d:c1:bd:35:
dd:b4:5b:ba:36:e3:4a:57:c4:1d:8b:98:04:17:44:d0:be:5e:
f4:2c:90:e4:db:16:70:99:9e:e5:e4:aa:bf:37:0d:ca:ef:66:
b9:eb:7e:5d:bf:a9:d1:2b:b1:e1:0a:83:59:21:6e:08:a3:a7:
af:9a:33:de:40:e6:42:c6:f8:10:0f:bb:da:22:32:d3:f3:68:
1b:e9:b1:d1:b3:9c:d2:8c:9a:1a:24:70:e6:c2:71:5f:c7:45:
d6:8c:4a:4b:57:d0:3f:55:33:a3:15:ad:5e:e4:9f:ca:9b:cf:
b6:71:05:c3:db:2c:c4:6e:b0:63:bc:e4:24:ea:cc:c0:ce:73:
33:b0:46:e8:28:f4:75:fa:12:a1:01:13:88:73:24:47:53:94:
44:9d:a7:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org