Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/bxVrOKlOYB8TcFoaEYj49uVcf5Q.roa
File: bxVrOKlOYB8TcFoaEYj49uVcf5Q.roa (raw, json)
Hash identifier: HsaIptE9lZemBIsyA+6sHU68xFayOu1niQ8HyqMcw7c=
Subject key identifier: 6F:15:6B:38:A9:4E:60:1F:13:70:5A:1A:11:88:F8:F6:E5:5C:7F:94
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1312
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/bxVrOKlOYB8TcFoaEYj49uVcf5Q.roa
Signing time: Fri 01 Sep 2023 08:05:20 +0000
ROA not before: Fri 01 Sep 2023 08:05:20 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18419
IP address blocks: 124.218.104.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4882 (0x1312)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:05:20 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=6F156B38A94E601F13705A1A1188F8F6E55C7F94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:d2:20:55:dd:a6:a5:72:ef:eb:1e:e7:2d:17:
07:6d:f7:8f:4c:7d:8b:3e:fe:8a:fc:3a:5d:94:5b:
e7:49:0f:82:7d:6e:b4:c7:89:c1:1b:e3:07:f2:94:
e3:d4:76:7b:11:46:cf:36:5a:bd:ad:55:91:f3:05:
90:f1:4b:72:38:0f:1f:72:df:33:6c:95:42:5d:df:
6f:49:37:89:b3:d3:ca:94:66:03:2c:37:f2:f9:1b:
79:e5:5c:99:9e:67:b6:ed:83:3f:7a:13:14:54:ac:
a2:88:49:af:1c:2c:60:f9:60:61:4e:72:31:24:a4:
90:10:47:31:4e:64:3b:04:38:75:df:0b:fd:90:1e:
6a:f1:0d:f9:71:d9:4f:21:5f:79:86:e6:c9:b4:27:
bc:3b:76:5e:7a:d4:f1:82:c2:a8:89:79:1b:58:ea:
24:dc:d0:66:92:49:d9:88:7e:17:3f:e6:92:40:43:
1c:d2:57:ba:d5:23:8f:ac:ca:39:be:86:a4:ce:d6:
d0:53:25:9e:fd:39:80:59:62:9e:cf:d8:b3:00:74:
7f:47:c5:d1:20:f5:37:ed:84:46:9b:e2:9f:fa:87:
ed:fe:0a:cd:86:12:f9:31:18:e4:10:c2:3a:0a:09:
8b:8d:b7:89:ae:0b:62:a6:f0:9a:b8:de:cb:2c:f5:
d7:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:15:6B:38:A9:4E:60:1F:13:70:5A:1A:11:88:F8:F6:E5:5C:7F:94
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/bxVrOKlOYB8TcFoaEYj49uVcf5Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.218.104.0/22
Signature Algorithm: sha256WithRSAEncryption
07:0b:a6:17:97:5b:bf:ef:94:4d:ea:f5:ac:bc:b8:b0:03:35:
87:4a:0b:d9:4f:3f:65:2d:00:98:d4:bf:5a:f8:84:da:07:d5:
80:78:ad:2c:3b:e0:aa:00:c5:23:75:e5:ce:69:94:74:0a:c3:
05:3f:f6:91:b6:d3:3f:21:8a:77:50:4f:7e:74:19:4f:64:62:
0a:e5:0d:60:ab:0a:02:cb:6a:c2:0f:bf:29:03:3f:10:7f:df:
d4:1a:20:a2:35:2c:a9:2e:b4:21:29:5a:5f:ac:b7:d0:91:d6:
1f:bf:39:41:27:19:eb:8e:d5:fb:92:ae:a7:b0:79:da:a0:6a:
d7:a2:a6:d4:b4:09:f2:3d:31:c9:a5:54:5d:75:08:2f:54:56:
cf:eb:32:3d:c2:37:45:01:0c:e7:fb:2c:21:bc:d3:9e:92:6b:
f2:8b:65:36:e2:88:b8:3b:23:13:08:4a:0b:4f:b6:46:d5:4b:
80:d9:b1:3e:c4:e9:a7:c1:6a:81:45:8f:23:d4:7e:47:6e:a9:
1b:e4:23:01:4f:8e:18:5e:8f:d8:82:18:d4:c4:2d:be:75:15:
00:08:e9:e3:c2:e8:e8:39:c4:c7:aa:b0:94:04:7a:b2:87:78:
6d:e6:f8:f7:b4:3b:58:6b:ac:4c:b7:22:ae:1e:d0:d2:d1:db:
85:53:c8:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:32 2024 by rpki-client on console-fra.rpki-client.org