Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/dFinxOdwSTSjesLFqCtiSuTrXOg.roa
File: dFinxOdwSTSjesLFqCtiSuTrXOg.roa (raw, json)
Hash identifier: DXLPPO0eCiCqvlBDE+XyN1E0PZXiyqfE5qOO2Hgkewg=
Subject key identifier: 74:58:A7:C4:E7:70:49:34:A3:7A:C2:C5:A8:2B:62:4A:E4:EB:5C:E8
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0FCD
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/dFinxOdwSTSjesLFqCtiSuTrXOg.roa
Signing time: Mon 06 Feb 2023 07:12:09 +0000
ROA not before: Mon 06 Feb 2023 07:12:09 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18419
IP address blocks: 124.218.104.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4045 (0xfcd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 6 07:12:09 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=7458A7C4E7704934A37AC2C5A82B624AE4EB5CE8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:df:3a:e2:46:df:b2:b9:b4:cb:32:62:7d:13:
d8:dc:1a:db:ac:7f:01:fa:1d:fa:37:59:d4:c2:15:
47:6c:e6:cc:dc:2b:2d:60:d9:43:c8:2a:35:99:4f:
94:b4:df:8f:d8:a3:9f:ce:c0:ea:d5:be:30:e5:93:
43:7c:d4:36:bd:19:a7:d1:5e:9a:a0:be:fa:fe:4d:
11:e6:92:43:dd:e6:a2:26:b6:aa:10:81:de:ff:62:
bc:7e:82:16:8c:25:b3:46:b2:d8:c0:3e:68:dd:ce:
29:91:85:d5:02:c5:14:bc:d2:27:0c:8c:90:b6:00:
f2:5e:7f:86:2a:4c:96:fd:51:c9:f2:18:c6:e2:b7:
be:e0:62:09:52:e2:11:d8:72:81:4e:57:ad:8a:af:
02:e4:d9:cf:29:d1:bc:38:ab:bf:09:bd:3b:74:36:
53:aa:c2:02:da:41:f5:45:e2:c6:52:d2:b7:60:55:
7b:db:66:be:2f:44:fa:b5:92:69:41:6d:f7:c2:ff:
83:a7:de:3a:14:e1:f7:7f:60:b5:8f:7a:e9:80:a6:
13:94:75:80:ab:66:85:bc:f5:11:fc:04:95:d9:f9:
e0:5b:7d:e4:b7:0e:e8:5e:54:ee:48:0b:f5:61:5f:
22:77:a4:31:33:b4:5d:76:7a:f6:45:a4:57:6d:0a:
21:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:58:A7:C4:E7:70:49:34:A3:7A:C2:C5:A8:2B:62:4A:E4:EB:5C:E8
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/dFinxOdwSTSjesLFqCtiSuTrXOg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.218.104.0/22
Signature Algorithm: sha256WithRSAEncryption
a1:23:c9:f6:02:7d:05:0e:4e:5d:5d:91:07:a9:d5:40:2b:31:
58:e6:1c:bf:a6:dd:e5:1d:6c:3a:ed:16:6a:c8:3e:7a:b6:7e:
f4:6e:cd:a1:69:72:77:b2:a6:8c:c5:cb:df:92:36:04:08:01:
5f:d6:5d:cd:3a:d6:fc:f0:72:86:97:03:54:83:95:ee:8c:5b:
4f:07:f1:94:06:5f:33:c4:cb:fc:0c:2d:0d:10:e4:eb:cd:5a:
bf:da:f1:3c:c9:3c:bf:b3:81:43:a9:0b:5b:1d:bf:57:0b:96:
da:72:71:43:37:3f:a6:7f:76:22:ce:df:29:f8:9b:06:9d:63:
0a:bd:3d:8b:4b:27:0f:27:49:26:9a:06:00:a2:5b:c0:7a:f3:
f3:97:c6:d5:1d:d3:0d:ab:60:15:dc:72:3e:b7:aa:a1:23:e2:
7f:5b:9f:dd:88:2f:ab:44:77:ea:4a:dd:d5:f0:9c:ba:d4:b4:
27:ca:21:45:ff:f5:8b:1c:60:bd:3e:37:1c:33:98:87:de:fa:
82:47:a4:99:2d:59:14:8f:5d:15:02:d5:73:9d:36:37:8b:76:
9e:05:76:d7:80:88:a8:bc:72:f3:e6:d4:13:0a:98:0b:90:1f:
dc:50:39:06:0d:85:20:e1:61:27:cd:b4:93:66:d2:2c:95:4b:
8d:fc:57:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:01 2024 by rpki-client on console-ams.rpki-client.org