Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/f-hT9BGmBjpDmgoutcGSQznrpSU.roa
File: f-hT9BGmBjpDmgoutcGSQznrpSU.roa (raw, json)
Hash identifier: S+ApIxmpBiuA9Ei+TByQGwclgLMl+JBqOZh244VbgGU=
Subject key identifier: 7F:E8:53:F4:11:A6:06:3A:43:9A:0A:2E:B5:C1:92:43:39:EB:A5:25
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0EEE
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/f-hT9BGmBjpDmgoutcGSQznrpSU.roa
Signing time: Wed 30 Mar 2022 06:18:54 +0000
ROA not before: Wed 30 Mar 2022 06:18:54 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18419
IP address blocks: 124.218.192.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3822 (0xeee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Mar 30 06:18:54 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=7FE853F411A6063A439A0A2EB5C1924339EBA525
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:56:f3:e6:cc:f6:ef:cb:7a:cc:d3:5b:2f:3e:
f9:70:ac:8e:08:55:78:cc:39:18:3f:79:70:85:7d:
95:01:95:30:08:fd:5c:cf:95:b1:fd:c7:5f:0c:cb:
08:41:66:1d:7f:f4:fa:d3:96:47:d7:91:cb:96:86:
10:ad:bc:a8:ae:c5:40:d5:5f:f7:c5:1d:02:da:4a:
28:9d:d7:6b:d0:5d:85:58:0b:30:90:cb:3f:75:e9:
aa:cb:95:c5:b9:fe:b9:44:a0:41:41:bf:10:d9:bf:
84:35:f8:6d:f0:94:66:e1:ec:85:d0:75:8f:5c:3d:
b2:91:c6:40:49:10:97:53:23:40:6f:7e:de:41:6d:
ce:8d:0d:65:aa:c6:e2:99:9d:c6:cf:6f:b1:57:fe:
60:df:85:ce:23:a2:53:78:a1:db:13:45:74:28:88:
00:1d:d3:31:59:f1:98:f9:c5:bc:db:c4:20:eb:24:
07:92:2b:e7:54:02:4c:bf:15:73:15:ad:3c:b1:79:
14:9a:37:20:66:fa:9a:47:db:ca:8e:02:62:b2:3f:
5f:bd:dd:06:f5:18:60:90:34:e1:4e:fb:db:71:91:
f0:f9:a2:3a:03:9d:2c:28:8b:e0:a3:e0:0d:b6:db:
7e:a4:6f:be:c9:48:d5:9b:d6:ac:30:63:16:b8:ed:
2f:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:E8:53:F4:11:A6:06:3A:43:9A:0A:2E:B5:C1:92:43:39:EB:A5:25
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/f-hT9BGmBjpDmgoutcGSQznrpSU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.218.192.0/18
Signature Algorithm: sha256WithRSAEncryption
b5:09:0a:be:3b:54:96:fd:bb:9c:ca:af:e7:5a:01:7f:5c:52:
43:5b:93:9e:cd:27:c6:81:0b:f6:c0:82:61:13:d4:b3:f2:f4:
e0:c5:d6:03:29:f0:44:3f:eb:49:f7:9c:da:c0:19:3c:cb:30:
4f:a0:3f:21:5f:d8:41:8a:38:f5:ea:f3:b7:58:e2:8b:94:49:
cb:5a:80:ee:2a:8e:f2:f7:80:cf:ac:82:4f:67:45:3b:da:d5:
a7:ca:e2:81:72:5d:88:3a:46:af:2f:9b:54:7f:90:be:da:8a:
6c:ad:ac:47:40:f7:7f:7f:ab:0e:2e:89:87:43:01:e0:57:35:
3b:b2:df:cd:5a:f0:88:ae:de:f8:76:5a:fa:06:a1:97:d4:c6:
df:6e:d0:2a:60:ff:42:33:c5:d5:17:21:61:df:9d:e6:02:b4:
7e:ee:ad:8e:0d:00:fb:cd:81:70:d1:ab:a6:08:ba:53:04:73:
46:01:cc:c1:ff:2a:de:15:82:52:ae:ea:ec:a3:16:98:9b:77:
f3:59:46:a4:1c:d4:07:67:18:f6:cc:e7:c8:59:86:e3:74:a7:
7e:02:b1:d0:22:d6:6c:72:1c:c0:67:73:b4:c2:33:f1:bd:fd:
fc:6f:db:42:66:4a:80:80:08:0c:12:25:60:fd:ca:5d:ad:d9:
44:b7:2f:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:32 2024 by rpki-client on console-fra.rpki-client.org