Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/bQf-DzJ7keohoiyG3levKrRVRik.roa
File: bQf-DzJ7keohoiyG3levKrRVRik.roa (raw, json)
Hash identifier: s6gL4XKLSX+o8C9DvX22xxVYlSxsSwg1xkN4loIFJMg=
Subject key identifier: 6D:07:FE:0F:32:7B:91:EA:21:A2:2C:86:DE:57:AF:2A:B4:55:46:29
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 12EE
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/bQf-DzJ7keohoiyG3levKrRVRik.roa
Signing time: Fri 01 Sep 2023 08:05:11 +0000
ROA not before: Fri 01 Sep 2023 08:05:11 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18419
IP address blocks: 218.35.8.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4846 (0x12ee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:05:11 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=6D07FE0F327B91EA21A22C86DE57AF2AB4554629
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:e4:b3:7e:fe:73:aa:1c:4a:35:7e:0b:d6:10:
b6:e0:2e:db:00:77:97:04:27:48:a2:66:ad:5c:6f:
1f:d4:74:e4:99:ad:75:80:a3:46:d4:e2:b5:b4:ec:
60:e0:5f:d1:ae:9e:5e:66:e8:53:d9:3f:14:0c:dd:
38:36:43:f2:f6:47:e1:08:a1:e8:dc:58:9e:a7:7a:
8a:95:8c:36:11:ca:5a:5a:44:6c:19:98:23:3a:b0:
d7:7b:ba:db:36:dd:be:da:33:5f:51:6a:fd:30:7b:
55:12:b6:76:27:37:e0:c1:cc:6e:0e:2e:0d:ba:82:
b6:b5:34:10:0d:54:78:d7:dc:90:a4:1a:05:6d:e3:
5b:ec:52:e1:c1:35:f7:a3:24:63:86:82:cb:f7:59:
4a:25:1c:90:1b:7e:e4:d1:b8:94:37:c9:63:23:88:
36:70:5b:9c:20:d7:b5:61:6f:fb:fa:61:b5:5e:0d:
6c:f3:78:62:4e:c1:5c:2d:5b:5e:14:15:40:c6:0a:
88:0d:de:47:70:e5:d1:fc:ea:b3:5b:30:97:f2:cc:
bb:32:fa:ae:75:73:8b:8e:43:5c:35:4e:b1:45:a3:
b5:2a:74:f8:ce:76:0e:c8:28:f6:fa:24:db:0f:39:
46:23:32:b0:03:83:fc:b4:86:aa:44:e4:93:91:ed:
b0:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:07:FE:0F:32:7B:91:EA:21:A2:2C:86:DE:57:AF:2A:B4:55:46:29
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/bQf-DzJ7keohoiyG3levKrRVRik.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.35.8.0/21
Signature Algorithm: sha256WithRSAEncryption
c1:13:ce:48:d7:75:f5:d5:04:e3:bb:39:84:e9:a2:29:14:c1:
8c:89:8f:f7:6a:c5:34:5c:56:cf:25:4b:c5:b5:6b:c5:4c:3b:
8b:dc:cf:3a:e7:bf:ff:b4:aa:8d:6e:34:0d:a5:49:68:3a:ee:
4f:e0:5a:c5:d1:93:4c:0e:78:ee:2a:ce:ba:7b:1e:38:9e:af:
dd:fc:8d:87:24:6d:7c:2c:68:2b:f1:5b:f4:74:7a:5b:2e:ee:
12:02:5e:ad:2a:a7:3d:b9:6f:81:e4:f9:ed:bb:40:39:9f:73:
45:67:7a:0b:a3:c6:b5:54:20:04:dc:86:f9:88:bc:35:b8:5d:
57:92:0c:0c:a6:ae:eb:a9:ba:33:67:74:e7:f2:27:31:99:6d:
a0:86:a5:0d:c1:e1:57:30:9c:9e:f2:15:0a:23:a4:2b:12:ef:
4f:81:eb:0d:40:44:b5:be:9c:99:5b:ba:72:01:17:13:21:f8:
50:ac:12:0b:dc:cf:79:73:be:fd:be:2b:45:e1:69:6b:46:8d:
b9:d3:5f:c5:2e:35:88:ec:bd:c2:5f:5c:cd:a2:a8:91:4b:72:
b8:78:cc:3b:5f:a7:81:8b:46:32:7a:e3:00:e9:ea:b2:69:99:
4f:64:cd:8e:44:c2:3d:aa:cb:9c:d2:1a:3d:4c:fa:4d:21:dd:
88:d8:cb:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:04:59 2025 by rpki-client