Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/dD0-SOKRbn6Zj4HFBXL9TCStLWM.roa
File: dD0-SOKRbn6Zj4HFBXL9TCStLWM.roa (raw, json)
Hash identifier: r3WoDANvjcVnPaJrqOimZSs/j2jNDhOv7V8fMBcwgS8=
Subject key identifier: 74:3D:3E:48:E2:91:6E:7E:99:8F:81:C5:05:72:FD:4C:24:AD:2D:63
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0B93
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/dD0-SOKRbn6Zj4HFBXL9TCStLWM.roa
Signing time: Sun 07 Feb 2021 11:33:15 +0000
ROA not before: Sun 07 Feb 2021 11:33:15 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24154
IP address blocks: 124.219.0.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2963 (0xb93)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 11:33:15 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=743D3E48E2916E7E998F81C50572FD4C24AD2D63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:6a:9f:c0:e1:72:8e:a3:32:32:f2:b6:c7:d3:
df:3c:da:56:7b:34:c9:f0:0b:7c:de:67:55:d2:1a:
83:9f:38:02:89:9c:e6:66:fd:15:11:50:be:81:cd:
b0:c2:c3:80:76:ca:7e:bb:b4:21:6a:59:fc:2b:19:
f2:f1:51:e0:fe:64:20:73:21:fc:64:79:b0:a8:b6:
f8:2a:ac:cc:ab:93:2b:00:1a:2f:e3:c1:eb:48:c3:
c0:0a:18:47:dc:0d:c9:0d:03:37:d8:6e:c8:ec:fa:
2d:a0:24:61:2c:dd:87:14:74:b4:3a:64:f7:8a:fc:
79:7c:b5:e8:32:47:c4:5d:f3:18:e0:31:50:8e:0c:
90:72:1f:f2:65:1f:71:5f:0d:c4:b6:79:d3:57:90:
d0:71:5a:44:ec:b3:11:f8:24:37:b7:fe:c9:2c:c0:
d2:69:8e:4e:27:d8:40:e8:37:b3:e0:af:9d:78:42:
67:ee:b3:31:37:a0:9e:22:90:65:10:40:4d:c5:02:
79:8e:13:51:e8:8c:32:a9:bf:5a:84:7b:00:70:b3:
71:95:37:ec:42:af:79:69:98:cd:83:b8:ed:c7:36:
da:4b:59:82:4d:d4:83:91:7d:0a:be:9f:9c:bb:48:
ee:ca:52:8b:1f:8c:84:c7:82:64:34:3b:56:75:9e:
d9:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:3D:3E:48:E2:91:6E:7E:99:8F:81:C5:05:72:FD:4C:24:AD:2D:63
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/dD0-SOKRbn6Zj4HFBXL9TCStLWM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.219.0.0/17
Signature Algorithm: sha256WithRSAEncryption
83:74:24:82:ff:0a:6f:a1:06:56:38:17:83:eb:87:4a:0a:5b:
00:df:a4:ce:bf:6f:60:bb:6d:70:cc:3f:65:77:c9:2d:31:37:
05:d6:1c:cd:03:0f:1c:43:29:e1:af:54:db:75:f4:32:69:ab:
a9:10:ea:96:10:fa:4d:c7:0f:b2:81:59:07:ec:04:1c:72:30:
ae:6f:84:26:88:50:ab:e6:8b:41:03:12:0f:e1:01:10:04:b7:
f7:fe:d9:f9:17:db:90:01:c1:c9:75:f0:88:8b:99:4b:d8:59:
7e:dc:1a:5e:7d:03:e4:94:5a:52:0a:15:4c:6b:9b:34:04:c3:
dd:79:2a:bd:41:fc:27:21:2d:c6:cf:79:95:f8:2c:8d:40:02:
6a:61:cd:3a:44:51:67:2c:f8:86:71:2d:24:b0:3f:5d:e0:5b:
68:60:6f:c8:64:15:81:c8:20:95:7a:c4:09:96:9e:99:d0:5e:
39:23:22:dc:65:cc:6b:7b:76:a3:a0:e2:5f:8e:c4:34:ab:35:
97:5e:2d:c2:f6:10:48:ae:5a:0e:06:d8:c1:97:54:ac:5c:a6:
a6:0e:e6:bc:e4:cf:8a:6a:e4:49:e3:89:e3:1f:00:1e:db:db:
b9:86:c9:d1:68:98:05:3c:52:77:43:96:8b:cc:b0:14:f9:6f:
4a:12:36:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:32 2024 by rpki-client on console-fra.rpki-client.org