Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/iSi6SqqPybXDw_O-EW2481dOW2U.roa
File: iSi6SqqPybXDw_O-EW2481dOW2U.roa (raw, json)
Hash identifier: gIUMTcEtwszOu/K1Bis9AJdsPz/WCeSIm9jh33QNEzU=
Subject key identifier: 89:28:BA:4A:AA:8F:C9:B5:C3:C3:F3:BE:11:6D:B8:F3:57:4E:5B:65
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0E60
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/iSi6SqqPybXDw_O-EW2481dOW2U.roa
Signing time: Wed 29 Sep 2021 02:40:18 +0000
ROA not before: Wed 29 Sep 2021 02:40:18 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18419
IP address blocks: 124.218.232.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3680 (0xe60)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:40:18 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=8928BA4AAA8FC9B5C3C3F3BE116DB8F3574E5B65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:ee:7b:aa:ec:e4:18:4a:98:64:5d:be:bb:80:
67:48:0d:74:bb:da:3d:e8:27:4e:1c:27:08:57:20:
73:75:a0:46:d2:fe:77:c9:08:e4:cd:c0:17:3b:6a:
42:92:ab:7c:0d:16:71:b1:26:0a:0c:27:ed:59:e1:
b5:fd:d5:99:32:f5:9f:b9:71:bf:6c:d2:84:0d:f7:
39:d7:52:3b:f1:d5:18:3d:a1:98:39:ff:20:d5:f8:
d7:c6:95:27:93:ae:26:12:69:c0:d7:c6:bb:a0:62:
75:f8:72:41:b8:ac:0f:1c:0c:bb:35:d7:57:f2:89:
5c:e6:4f:32:4f:12:d6:cd:a9:a4:30:eb:bb:07:9f:
04:99:8a:d6:f1:1c:fc:cc:41:00:cb:94:0e:1d:7e:
f9:6a:70:76:ea:8c:86:f6:ca:65:4e:d8:c4:63:a1:
d7:3f:9a:d0:98:d9:2e:b4:9f:df:9d:0d:5c:1b:fc:
ab:80:f1:15:c3:5b:c0:bb:df:30:9b:b5:96:a0:a4:
d8:47:c3:73:0b:cf:a8:aa:2f:86:26:b3:5d:34:76:
58:2d:39:3a:ba:97:3e:d4:f8:fb:41:6c:ec:5b:42:
23:6c:de:c2:8a:8a:23:ee:9a:39:c0:2e:62:53:a9:
65:76:17:a4:f1:6f:cf:e2:1e:36:c9:20:1a:ed:59:
d5:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:28:BA:4A:AA:8F:C9:B5:C3:C3:F3:BE:11:6D:B8:F3:57:4E:5B:65
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/iSi6SqqPybXDw_O-EW2481dOW2U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.218.232.0/23
Signature Algorithm: sha256WithRSAEncryption
ac:85:4f:da:ba:9c:1d:b1:28:84:27:64:17:0d:5b:c5:c7:14:
aa:c2:47:87:4c:f2:70:f6:b6:f1:cf:fa:6b:62:99:81:0d:ce:
67:f1:73:7d:20:4c:75:8f:55:48:df:c9:2d:c3:a1:b0:42:02:
a4:f2:5e:9b:fc:76:37:f8:81:f1:2e:74:51:d3:f5:a0:cf:94:
b6:5d:b3:75:ee:6f:a8:2f:5f:c9:78:03:a5:ee:eb:86:f7:97:
d5:11:b6:5d:7b:2f:c0:9a:70:0b:8c:08:66:40:50:b7:a8:b9:
1a:d4:2b:04:27:c5:92:5d:e5:88:7d:bf:98:38:d9:c0:78:b8:
0c:24:3e:af:9a:14:5a:96:61:dd:ce:1e:5e:c4:f7:80:6e:b3:
21:ee:89:de:bf:b8:46:69:45:7b:ae:50:7f:d5:22:5a:5b:26:
c7:62:c2:4c:95:7a:d1:48:de:c7:42:cd:33:fc:f7:98:f6:90:
ff:92:43:97:5f:c5:66:c7:6e:f2:75:04:d0:21:b8:99:a8:8a:
17:14:1c:8c:01:03:b5:78:7c:42:75:8d:a6:25:1d:79:3a:dd:
2d:66:50:8c:60:65:84:24:19:c1:d3:19:03:3e:2e:72:a6:c5:
44:74:3a:db:85:40:c2:f8:20:ab:38:e6:1c:27:fd:a4:54:1a:
e0:08:a4:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:01 2024 by rpki-client on console-ams.rpki-client.org