Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/Tfipp0JYtGXF8XDdKCxnqsvdFZ0.roa
File: Tfipp0JYtGXF8XDdKCxnqsvdFZ0.roa (raw, json)
Hash identifier: BPlhlEWshaWMfGkZYknV5h4VsxUT2BOmsWsJkksRNQ0=
Subject key identifier: 4D:F8:A9:A7:42:58:B4:65:C5:F1:70:DD:28:2C:67:AA:CB:DD:15:9D
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0E62
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/Tfipp0JYtGXF8XDdKCxnqsvdFZ0.roa
Signing time: Wed 29 Sep 2021 02:40:19 +0000
ROA not before: Wed 29 Sep 2021 02:40:19 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9922
IP address blocks: 124.218.128.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3682 (0xe62)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:40:19 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=4DF8A9A74258B465C5F170DD282C67AACBDD159D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:93:18:a2:d6:89:c9:6a:8d:23:5a:e7:5a:bc:
fe:38:ab:85:2b:95:8b:e2:cb:4a:e5:03:3f:7f:fb:
4b:52:38:87:0a:2a:d4:a8:35:1e:6f:0d:6d:5b:04:
a6:d4:c8:fb:ec:62:94:b2:2c:6d:75:5a:82:7f:b0:
6b:26:8c:ce:b3:78:7d:cd:bf:f1:5d:6b:37:5e:9c:
27:a0:03:c3:4e:c8:b5:9d:31:5b:db:03:d7:46:8d:
15:d0:1c:af:53:9d:07:30:02:ff:00:e5:33:31:cc:
8d:92:7b:11:ae:47:ed:54:63:e4:ed:04:c8:02:fe:
43:40:0b:96:88:9f:ed:c7:3e:84:f3:ce:db:43:8e:
3d:d9:b4:73:b5:d0:d8:f7:07:4c:6a:7b:a0:c4:f3:
c4:ec:78:8a:7d:e7:1e:f7:8d:d2:63:d0:b4:e8:af:
b2:06:1e:90:72:4f:b1:da:0d:4a:1f:aa:0a:d6:5f:
5e:c6:a8:97:16:a4:f0:f3:0b:79:08:1a:53:7b:ae:
31:c2:0c:fa:14:38:95:ca:12:36:43:5e:b5:33:5a:
10:57:4f:1f:f0:5d:1e:22:6e:1b:28:92:ed:87:7d:
cf:12:f7:b2:18:2d:68:a3:c3:d0:c9:f0:c2:1b:96:
e3:df:13:39:bb:11:bb:bf:b0:18:84:0e:ac:92:e9:
9b:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:F8:A9:A7:42:58:B4:65:C5:F1:70:DD:28:2C:67:AA:CB:DD:15:9D
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/Tfipp0JYtGXF8XDdKCxnqsvdFZ0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.218.128.0/18
Signature Algorithm: sha256WithRSAEncryption
59:71:8d:8f:b2:e5:54:4c:2d:d0:28:a6:3a:b3:f8:88:14:e8:
b4:29:f4:d1:18:e7:d3:01:88:f1:dc:42:88:52:91:bc:02:91:
f8:86:f4:c8:b6:f3:95:f5:03:df:04:92:4f:7a:c4:50:3d:62:
89:d7:2f:c9:01:ba:e7:0f:04:bb:b2:58:f4:59:aa:ef:63:97:
84:12:ae:6e:1e:e8:e1:0b:9e:28:0e:5b:69:72:50:59:69:41:
7a:11:5b:2a:ee:b4:f0:90:9e:57:cb:86:36:c0:29:00:69:68:
0d:0b:37:47:74:36:01:24:14:1b:bb:a1:b2:e1:d0:fc:8c:d8:
bf:f9:2b:6e:9d:8c:87:86:2a:c9:6c:7b:c7:ef:62:3f:e4:ec:
89:1f:81:ba:34:ba:86:a4:1c:7d:c1:dc:2d:42:ea:1f:84:dc:
b7:04:fe:c4:5e:99:82:bc:b5:27:31:73:c3:f2:c6:2f:25:76:
d3:e7:69:24:9e:c0:c5:9a:cc:3a:27:da:74:5e:7f:7d:08:01:
fc:89:2f:05:56:83:47:04:a9:97:3e:96:6b:9b:02:d7:e8:b2:
29:48:a1:8c:cd:db:ec:6a:8f:eb:de:77:fb:a5:f9:93:c3:b2:
60:62:5b:39:87:e5:5d:c8:8d:72:08:3f:df:87:0b:22:1e:a3:
b9:82:89:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:00 2024 by rpki-client on console-ams.rpki-client.org