Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/PHKnIa0KTjJiboe7vrB8Zt1Qgog.roa
File: PHKnIa0KTjJiboe7vrB8Zt1Qgog.roa (raw, json)
Hash identifier: 3bYooCwUS2UzCGEu7EglUozuj08KVJo6kS32PS3aflQ=
Subject key identifier: 3C:72:A7:21:AD:0A:4E:32:62:6E:87:BB:BE:B0:7C:66:DD:50:82:88
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0CE1
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/PHKnIa0KTjJiboe7vrB8Zt1Qgog.roa
Signing time: Sun 07 Feb 2021 13:08:29 +0000
ROA not before: Sun 07 Feb 2021 13:08:29 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9922
IP address blocks: 124.218.128.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3297 (0xce1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 13:08:29 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=3C72A721AD0A4E32626E87BBBEB07C66DD508288
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:ad:1f:ca:14:47:ab:52:9e:5c:f0:9b:38:54:
be:0d:0b:b8:f7:79:8c:ac:e0:85:c2:ff:69:bc:e8:
08:83:90:31:5d:07:98:f9:e9:1e:b8:f3:76:16:4e:
45:7c:96:0d:61:7b:51:83:34:54:23:07:3b:37:32:
73:fd:3b:52:47:1b:c1:1d:c4:1f:6a:6b:fc:54:fa:
35:c5:b9:77:cd:60:53:91:10:a6:d1:d3:e0:7b:f3:
01:c8:66:f0:5d:1a:30:a9:54:09:dd:2c:6f:bf:0d:
91:a4:82:a8:67:65:df:5b:f8:0e:7e:4b:51:36:49:
b8:0b:6e:d8:95:19:10:d7:24:ea:57:26:1e:0a:89:
9e:37:c8:82:e3:d1:f9:10:e4:38:0c:86:69:8c:35:
db:33:4f:e1:35:3a:5f:08:ec:ca:de:1a:8b:27:81:
69:bc:41:a4:b3:20:1a:41:3a:32:f9:52:6c:5b:2c:
e3:c9:24:7e:97:10:26:76:99:d5:3f:e7:b7:7d:5d:
ff:ee:dc:8a:a5:96:32:eb:25:89:f3:91:29:e7:5f:
0d:96:9d:7a:51:b3:9d:f3:ba:f9:4b:21:13:94:82:
8e:40:f5:0d:0f:21:71:03:d5:5c:82:71:d1:cd:ee:
bf:0a:39:61:2d:6e:07:7d:c1:15:8e:7d:5d:3c:6d:
96:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:72:A7:21:AD:0A:4E:32:62:6E:87:BB:BE:B0:7C:66:DD:50:82:88
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/PHKnIa0KTjJiboe7vrB8Zt1Qgog.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.218.128.0/18
Signature Algorithm: sha256WithRSAEncryption
1d:cc:13:1c:13:ab:8a:7a:64:52:64:d9:74:6e:0f:21:61:f1:
a7:0a:33:82:d4:64:c1:e7:ae:63:c8:9a:69:ab:56:8d:65:d4:
11:f7:65:68:fd:72:99:c5:5f:3e:24:1a:ca:87:e4:76:89:cf:
f9:c0:28:d8:a1:b6:63:34:51:6e:64:6c:d3:ce:fc:88:80:c6:
24:37:9e:36:6b:7b:09:cb:7a:1d:fd:b3:52:9d:fb:59:ed:e0:
8f:7b:05:ff:96:50:4a:d2:4f:11:f2:f4:89:4a:7c:c9:24:86:
3b:1f:8a:00:4f:7d:3a:18:23:f1:9c:2d:3b:64:63:b1:a1:57:
d4:f6:e4:74:fe:19:27:df:48:31:21:a9:b7:f0:ee:a1:03:7f:
8a:b1:35:c5:d8:06:fd:80:2f:8e:47:da:77:8e:d9:ae:55:e6:
2f:aa:d8:0f:6e:d9:89:93:fc:70:57:06:c6:7d:3f:6a:50:e9:
0c:7f:70:e9:28:e6:4f:3e:a5:37:e3:6f:e0:81:eb:c6:37:e5:
93:45:5f:22:14:51:6a:74:f7:0d:27:6f:c8:7e:f8:da:e6:0e:
ff:09:69:55:c9:36:9f:a9:f8:c1:e0:37:d7:51:d0:a6:84:58:
ae:49:34:e8:16:9e:67:d8:ef:ed:92:22:2b:44:bd:fc:3d:fd:
44:35:41:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:00 2024 by rpki-client on console-ams.rpki-client.org