Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/dOtVFJ1qrlXkERVO-sYyUlEU2BU.roa
File: dOtVFJ1qrlXkERVO-sYyUlEU2BU.roa (raw, json)
Hash identifier: DiESrNdUKfAGfVyZJWCNctM5qhCC0oGy1xSJZyRdpxQ=
Subject key identifier: 74:EB:55:14:9D:6A:AE:55:E4:11:15:4E:FA:C6:32:52:51:14:D8:15
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 12E8
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/dOtVFJ1qrlXkERVO-sYyUlEU2BU.roa
Signing time: Fri 01 Sep 2023 08:05:09 +0000
ROA not before: Fri 01 Sep 2023 08:05:09 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18419
IP address blocks: 124.218.96.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4840 (0x12e8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:05:09 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=74EB55149D6AAE55E411154EFAC632525114D815
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:48:7a:4a:c1:e8:69:af:0a:40:18:35:4e:89:
94:98:35:2b:7e:1d:93:90:a8:a5:6e:fb:e1:d9:98:
dd:09:ef:42:4b:72:66:d7:a2:56:96:ea:11:ec:03:
c1:c0:db:26:8b:dd:ec:67:b9:97:dd:e4:17:0a:ae:
84:13:5a:b9:37:a5:9c:8e:0d:5c:df:08:9c:83:c3:
97:51:36:15:b1:3a:be:f3:af:1e:d5:fa:ce:bd:cc:
b5:a7:0f:7a:24:11:28:78:ad:0a:a0:54:7b:73:d3:
b5:be:8b:d7:2e:af:95:74:ff:4b:c9:5b:52:53:ef:
25:9c:92:8d:38:60:5e:13:cc:93:67:29:94:8a:58:
06:c1:29:68:b7:65:fb:ad:46:f7:0d:d2:57:c9:7a:
97:dd:ea:2b:3f:0b:e9:e4:57:45:25:28:af:42:0b:
47:6d:7d:1e:8f:5b:cf:88:b4:1a:93:93:fe:45:e4:
fe:7d:00:a7:22:e1:23:b3:e4:69:7f:7d:fc:c4:f0:
48:90:42:5f:e2:20:57:f6:06:9b:75:de:cb:7a:f9:
b6:d4:be:a2:15:7e:4f:15:63:80:9c:cd:06:e0:2c:
ca:c0:65:71:bb:6b:7f:b1:25:d1:e3:4a:25:64:24:
e9:3a:25:d8:9f:1c:35:bc:2f:67:68:75:6a:ea:6d:
56:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:EB:55:14:9D:6A:AE:55:E4:11:15:4E:FA:C6:32:52:51:14:D8:15
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/dOtVFJ1qrlXkERVO-sYyUlEU2BU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.218.96.0/22
Signature Algorithm: sha256WithRSAEncryption
a7:92:a0:c3:86:53:58:d3:4c:fa:08:5d:5b:17:a3:12:12:41:
3e:cf:b1:0c:24:c6:ee:9b:3e:96:52:3f:20:d4:9b:e4:e6:38:
90:b7:d3:59:ce:77:37:bf:0c:00:57:f0:2d:b0:e8:32:75:08:
6b:19:cb:6d:c3:97:03:87:6a:92:45:08:1c:2b:42:a4:8e:7c:
5d:05:f0:ea:8d:f7:12:6c:ad:c3:51:3e:37:01:16:42:c6:bd:
12:2c:d2:4d:36:d3:92:1c:30:8c:6e:ba:6f:95:95:73:46:f0:
0a:63:2f:9d:cb:dc:1e:3e:86:2e:27:94:67:68:c7:ea:48:1e:
79:62:f5:d9:e8:44:a5:40:38:e1:4d:42:fe:dd:db:99:df:fc:
2c:50:38:a7:51:88:af:88:41:f2:a3:ee:ff:eb:5d:04:d5:c6:
f7:f0:ab:e4:ce:51:7f:30:da:95:ba:94:90:b0:67:b5:3a:b6:
6c:dd:1a:1e:91:41:54:52:c9:7f:11:59:e6:c7:12:ac:58:d0:
df:f3:89:2a:b3:b5:f3:84:66:42:0c:d1:6c:6f:90:ac:2a:9e:
0c:5d:e8:64:3a:cb:b5:2f:7f:ea:ca:48:a6:c0:2b:0c:00:53:
d7:16:ce:05:1c:bf:0c:27:d1:ef:e2:3c:05:9a:b7:26:4e:04:
05:29:b8:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:01 2024 by rpki-client on console-ams.rpki-client.org