Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/jUElun0FiNFjzrf_4YZ6EiPyNB0.roa
File: jUElun0FiNFjzrf_4YZ6EiPyNB0.roa (raw, json)
Hash identifier: Y+lZ5G5mpUb1hpk3KTLVhC2affOQFWuBbfSxZtvQsDI=
Subject key identifier: 8D:41:25:BA:7D:05:88:D1:63:CE:B7:FF:E1:86:7A:12:23:F2:34:1D
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1367
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/jUElun0FiNFjzrf_4YZ6EiPyNB0.roa
Signing time: Tue 07 Nov 2023 05:32:37 +0000
ROA not before: Tue 07 Nov 2023 05:32:37 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17709
IP address blocks: 124.218.174.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4967 (0x1367)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Nov 7 05:32:37 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=8D4125BA7D0588D163CEB7FFE1867A1223F2341D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:b0:ab:99:34:a3:de:a2:66:27:6d:0e:5a:88:
2d:c7:d3:bb:0e:11:0b:b7:92:61:aa:44:37:1a:9c:
50:a8:3b:fb:7b:5b:1e:9e:75:2c:34:7b:50:fb:1a:
d6:cb:84:09:78:8b:9f:a9:86:9f:1f:8f:f9:5b:bc:
fb:ce:0a:1c:a8:ca:f7:72:ed:f2:b6:d7:66:a0:17:
00:4f:51:5a:7f:77:a5:61:30:af:41:22:2e:c5:d0:
d4:a0:a3:45:80:57:0d:dd:37:61:31:4d:13:66:77:
11:b5:9a:89:f7:ee:d5:04:d1:be:84:a8:19:db:f1:
2e:e1:fe:61:c2:9c:0b:ea:90:b2:16:08:92:f0:89:
92:eb:4c:49:f6:35:59:26:41:f5:0e:e6:9b:5b:e1:
01:a1:fc:7c:a0:16:75:16:e8:14:d4:71:4c:54:c2:
4d:7d:1d:7e:15:75:f4:eb:90:c1:8f:e4:39:a5:b5:
18:9c:5b:e8:b0:3c:00:e5:25:a8:84:f3:9c:63:aa:
24:b3:44:b9:24:37:40:e7:a0:ee:96:5d:06:8d:5a:
40:dd:c0:8c:2f:4f:a4:e0:c5:b7:f7:f6:29:09:13:
8c:67:99:a0:30:cb:a5:89:29:71:24:8d:6d:fe:51:
ab:d6:69:54:8e:ef:4b:50:1d:f6:c0:0c:1b:29:3b:
fb:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:41:25:BA:7D:05:88:D1:63:CE:B7:FF:E1:86:7A:12:23:F2:34:1D
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/jUElun0FiNFjzrf_4YZ6EiPyNB0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.218.174.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:a1:bb:7e:47:93:63:f1:96:21:4c:19:3c:22:e5:09:ed:65:
2e:bd:3d:7d:e4:a0:93:e1:11:e9:20:de:0e:15:07:b0:01:2e:
81:b2:f3:fd:0a:d9:92:1e:03:8b:d1:73:02:68:e5:dc:0c:2b:
a8:13:1c:b1:c0:83:d1:dd:1c:27:cc:09:0e:3c:24:3e:20:b5:
8d:0e:15:3b:65:ad:f0:6e:2d:c1:08:4a:4c:bc:b4:30:4c:3c:
09:a0:8b:44:2d:67:45:60:89:3a:6a:33:6f:f7:77:ec:31:fa:
e6:2c:61:d7:5c:77:8d:32:80:63:40:c5:f0:28:fd:75:b8:c8:
3f:71:18:c7:bf:71:73:42:39:75:99:c1:b4:52:e5:fe:bb:72:
9a:74:72:53:71:1d:7f:f7:82:bf:33:20:0e:23:83:b4:a0:fe:
d4:c5:75:8e:2f:af:33:fd:0b:1f:45:5f:ef:ab:92:b2:39:ec:
22:d7:f1:e0:3c:cb:40:3f:6b:09:50:ef:7d:d6:cf:1c:a2:95:
73:d9:94:b2:b6:39:aa:d3:1c:23:c1:00:85:d2:04:f8:47:c2:
28:43:00:2c:3a:d2:ec:47:2e:6e:91:6b:b5:75:6c:84:e1:2e:
e2:4f:f5:b9:4d:df:11:5f:75:fd:36:5b:3d:da:a4:e5:0b:4d:
30:ef:f1:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:32 2024 by rpki-client on console-fra.rpki-client.org