Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/gXq2Fq1UgMO_fuR_iW4-KULg0cc.roa
File: gXq2Fq1UgMO_fuR_iW4-KULg0cc.roa (raw, json)
Hash identifier: 7P+d8tV1fNO/X7FB4wI2w5mxy1C6P4Lmu8uXesPjS3Y=
Subject key identifier: 81:7A:B6:16:AD:54:80:C3:BF:7E:E4:7F:89:6E:3E:29:42:E0:D1:C7
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 136B
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/gXq2Fq1UgMO_fuR_iW4-KULg0cc.roa
Signing time: Tue 07 Nov 2023 05:33:15 +0000
ROA not before: Tue 07 Nov 2023 05:33:15 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17709
IP address blocks: 124.218.176.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4971 (0x136b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Nov 7 05:33:15 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=817AB616AD5480C3BF7EE47F896E3E2942E0D1C7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:f4:5e:28:86:be:5e:38:6f:c8:c9:6f:44:02:
a5:60:5e:0b:92:2f:1b:8c:c0:13:4d:d3:52:b2:11:
c5:97:15:2f:8e:38:bd:1e:3e:82:f8:b4:87:19:4d:
59:0a:b2:b8:cf:16:36:28:2d:c9:1e:e2:ab:7b:ac:
a1:7f:de:13:35:f0:ae:7b:84:06:83:f6:fe:71:35:
aa:ce:c6:4c:10:ea:bc:e1:98:18:d0:57:14:3f:90:
f9:e7:5b:22:0c:98:67:d9:1a:c9:5b:03:51:a8:c1:
73:a4:70:21:2d:34:e1:72:ef:41:1c:5a:87:67:cc:
a0:e4:dd:0d:63:ae:99:ea:e6:56:a6:4e:06:f9:fa:
43:71:c1:60:94:90:77:f9:51:9d:e0:5b:ac:d6:25:
b0:0b:2f:5d:62:f6:37:dc:89:c7:a3:a1:81:d0:a1:
ac:ba:3d:55:50:82:72:7e:26:6c:a8:9e:89:b5:6e:
c9:86:6d:e3:17:21:ae:be:eb:a1:eb:8d:3b:61:34:
3b:0a:11:24:77:55:37:4e:89:3d:70:47:8d:d8:c6:
59:c1:28:95:3b:8a:c1:d1:8e:9c:8d:1f:16:64:41:
c6:5c:ee:55:09:8b:6d:a9:26:43:1d:28:ef:e5:e0:
96:ad:b3:56:36:08:5f:5a:0a:05:dc:c6:0f:33:95:
19:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:7A:B6:16:AD:54:80:C3:BF:7E:E4:7F:89:6E:3E:29:42:E0:D1:C7
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/gXq2Fq1UgMO_fuR_iW4-KULg0cc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.218.176.0/24
Signature Algorithm: sha256WithRSAEncryption
56:f3:45:33:06:f1:41:7d:8e:70:1a:5a:f3:63:7c:7d:bd:ed:
f2:60:44:56:48:ee:19:fc:9a:9d:b8:fe:4f:6a:1b:7c:dd:9a:
b0:2c:87:24:32:83:0f:fb:60:4f:52:0c:41:49:36:4c:72:58:
32:99:bf:a2:ad:81:93:5c:96:bb:9b:1a:33:7c:a2:67:2c:4a:
52:f5:f0:8e:68:16:bc:2e:37:b8:c3:8d:de:4a:9f:f4:2b:6a:
41:70:d5:19:0d:4a:fb:4d:ab:35:73:6f:93:47:90:3a:bd:8f:
64:f5:f9:a1:c6:7c:42:a9:f1:87:00:9d:b8:46:4f:93:4a:bd:
64:2b:2b:0a:ce:e5:f7:be:59:1f:db:4c:98:fd:9e:f7:08:5b:
a1:d1:85:72:ac:3a:2c:93:9b:c5:74:4d:9e:5e:92:ad:4c:67:
a1:96:06:50:f5:44:9b:7a:a2:c3:e5:7c:b4:24:81:ba:87:27:
a5:c4:96:bf:cb:4d:ce:b1:06:6a:42:9c:68:3a:b6:f4:5d:b8:
1a:61:74:99:0d:b0:d0:a0:0a:42:20:d3:6e:17:ff:53:a8:2c:
e7:28:c6:9c:c7:da:c1:c1:b3:bc:db:49:29:bc:6d:c3:6f:d8:
17:af:f4:cf:58:d1:ac:9a:07:37:d4:76:74:52:a7:e2:03:85:
58:8a:7c:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:32 2024 by rpki-client on console-fra.rpki-client.org