Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/dn3DEJi7V_ItK-W-UgSBe6DYzpY.roa
File: dn3DEJi7V_ItK-W-UgSBe6DYzpY.roa (raw, json)
Hash identifier: ULf5E7u1CwXTeIcEAve/SdVXSYOyOyUIZ2GIUz153y0=
Subject key identifier: 76:7D:C3:10:98:BB:57:F2:2D:2B:E5:BE:52:04:81:7B:A0:D8:CE:96
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 102C
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/dn3DEJi7V_ItK-W-UgSBe6DYzpY.roa
Signing time: Tue 16 May 2023 08:35:50 +0000
ROA not before: Tue 16 May 2023 08:35:50 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18419
IP address blocks: 124.218.100.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4140 (0x102c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:35:50 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=767DC31098BB57F22D2BE5BE5204817BA0D8CE96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:96:1e:d5:19:05:cd:ba:d4:88:a2:3b:19:3d:
64:d1:cf:c7:86:0d:64:2f:10:2e:a5:8d:fa:74:2f:
12:a4:c0:10:05:4d:fc:06:78:4c:94:49:e8:de:0e:
e3:cc:3e:1c:67:e4:d7:c2:c2:a6:7a:23:d9:9e:b9:
ca:f6:e8:c7:4f:66:49:27:69:5d:36:42:4e:5b:10:
21:7b:a9:8b:47:45:33:e9:21:b8:40:0c:11:b3:9a:
a4:eb:1b:4c:23:1b:47:c7:10:a7:eb:42:02:e0:8f:
7b:35:c9:a6:c4:89:3a:00:7d:d4:4b:b2:77:95:9d:
b1:43:8f:f9:b3:27:49:4e:a8:92:d8:dd:01:cc:9b:
09:ad:f0:95:dc:d9:77:b3:85:10:85:5c:d9:60:a3:
ce:ea:c2:75:02:c1:cf:99:0b:d8:e5:01:96:00:68:
ae:76:a0:0c:68:5e:fa:30:a6:11:94:f0:18:13:35:
34:3c:bf:27:c7:03:05:2f:b4:3e:23:a1:fd:20:24:
00:fa:e9:22:9c:82:7c:60:0c:f2:41:f3:76:35:df:
a9:c7:52:bd:80:78:86:9a:a4:8d:4b:da:86:dd:7a:
a2:27:77:41:da:0f:f5:da:9a:f4:28:56:aa:3e:c9:
61:00:76:33:16:6f:4b:f1:97:8a:7f:27:07:d6:ee:
96:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:7D:C3:10:98:BB:57:F2:2D:2B:E5:BE:52:04:81:7B:A0:D8:CE:96
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/dn3DEJi7V_ItK-W-UgSBe6DYzpY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.218.100.0/22
Signature Algorithm: sha256WithRSAEncryption
ab:74:94:17:4a:90:09:6c:19:0e:10:48:92:65:1c:bd:9f:b9:
5d:e9:03:81:ac:88:f3:d8:0d:9d:6e:6f:77:90:36:99:b5:c7:
4b:f3:ce:40:8a:49:84:c0:b4:be:8e:0e:e3:3d:b3:56:b9:cf:
08:35:cc:48:05:ee:10:1d:f6:c6:74:cd:e8:66:a0:6e:a0:05:
7a:97:e2:81:65:d3:57:85:0f:71:e6:97:0b:b2:fd:28:dd:93:
0c:70:cb:27:77:55:71:b6:87:9f:07:77:21:99:66:68:24:a6:
60:23:7b:8e:3c:0a:06:f5:09:d1:46:d0:d7:c5:30:bb:d0:f8:
92:a7:bc:f6:4b:6f:a2:f3:9e:57:aa:85:df:a8:32:42:86:72:
4e:e2:f1:66:d6:10:a1:ad:4c:93:aa:6a:bc:7b:8a:d7:bb:3b:
2d:16:e5:51:e6:d1:62:06:39:0f:09:4f:02:bd:8a:94:dc:8c:
40:d4:41:cf:c4:7c:4b:25:b3:b3:7d:09:a5:83:ae:78:5f:86:
75:c1:3e:bc:e5:cb:ec:1f:3e:96:74:e4:53:8d:96:52:71:07:
6f:47:4f:c9:4f:96:1c:48:94:98:37:9a:fe:bf:76:de:e3:2d:
cf:c0:ac:88:56:5a:04:ed:da:c6:33:49:1c:07:4d:70:18:da:
23:8b:16:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:01 2024 by rpki-client on console-ams.rpki-client.org