Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/rLd_MUka84XfNeFZToNcnsY9SQE.roa
File: rLd_MUka84XfNeFZToNcnsY9SQE.roa (raw, json)
Hash identifier: /+lMB8uhJNKAwlfH+DjUxlXJFRNGQFuC/a3fbsAzzus=
Subject key identifier: AC:B7:7F:31:49:1A:F3:85:DF:35:E1:59:4E:83:5C:9E:C6:3D:49:01
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1325
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/rLd_MUka84XfNeFZToNcnsY9SQE.roa
Signing time: Fri 01 Sep 2023 08:05:26 +0000
ROA not before: Fri 01 Sep 2023 08:05:26 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18419
IP address blocks: 124.218.224.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4901 (0x1325)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:05:26 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=ACB77F31491AF385DF35E1594E835C9EC63D4901
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:f4:b7:d0:b3:61:72:9e:2a:74:e5:f5:7c:0a:
ec:f5:ee:1d:0b:2e:f2:18:e5:a9:cd:4c:ef:7e:83:
b9:0e:14:f4:4e:0e:62:97:38:45:72:53:e4:57:66:
96:dd:09:24:fa:4a:3e:de:dc:32:18:89:ed:95:7a:
48:a1:71:ce:9a:37:07:49:ed:64:32:d1:98:d0:e2:
e9:3d:60:b1:22:e3:19:50:00:5c:21:e4:a6:71:5a:
e3:80:83:3b:40:4b:fb:d7:4e:4b:de:7a:2d:8a:65:
e2:f6:16:f1:df:6a:05:4d:45:b5:7f:0e:eb:82:4b:
6b:0d:b0:07:f8:fa:b6:18:ff:f5:d3:66:1a:60:83:
7c:f9:f9:b4:d7:7e:c7:4c:45:e9:9d:2f:2c:45:76:
ee:45:ef:aa:f6:19:93:e6:19:03:f7:37:a2:41:84:
a0:c9:1a:35:4e:ed:9e:cb:9f:38:36:df:ef:ce:29:
00:0a:2d:71:24:dd:63:5c:6f:65:4d:47:b5:04:5f:
65:a1:5e:9b:60:a7:47:35:06:e3:a8:c6:96:30:24:
4c:78:4a:f4:3b:ec:3c:90:e2:38:a0:f4:4b:75:3c:
75:32:dd:dd:2c:dd:94:17:ce:44:e7:38:a7:c1:df:
13:34:5e:9b:92:0e:4c:bf:56:04:77:14:f9:cc:d6:
e2:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:B7:7F:31:49:1A:F3:85:DF:35:E1:59:4E:83:5C:9E:C6:3D:49:01
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/rLd_MUka84XfNeFZToNcnsY9SQE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.218.224.0/21
Signature Algorithm: sha256WithRSAEncryption
5c:55:be:93:ba:5f:fd:b0:d2:a2:f9:f6:e5:ef:b0:92:03:6a:
a0:bc:df:da:de:44:15:cd:fa:0c:dd:c2:bb:75:3f:79:6d:2f:
40:15:7c:56:28:a3:d2:47:fd:08:72:c8:7a:63:db:d5:dd:38:
b0:9a:fd:e9:d2:38:16:77:ba:50:36:ee:d6:1a:3a:3e:cf:02:
38:75:15:32:ad:f7:c4:af:b3:7c:56:83:30:fe:9b:e0:b1:f6:
19:da:c8:54:ce:85:13:23:e2:e7:63:97:4f:f5:b8:78:05:97:
32:0c:d0:8b:70:01:c5:4d:75:62:52:19:51:83:b5:71:e0:c9:
92:95:28:43:ef:cb:a9:82:b8:54:ad:58:5d:ff:e0:74:d7:1a:
03:11:04:2a:d0:e3:ee:36:a3:cd:9d:59:9e:45:0c:a1:70:92:
f5:67:2b:4f:7a:e2:29:4f:6c:83:b9:cc:b2:f6:04:d2:a4:e5:
e4:1a:57:89:b3:39:2e:e6:38:a4:19:71:2f:4c:2c:20:3a:b5:
c4:2b:2f:1f:08:8d:18:64:ba:e8:43:d7:3d:7a:e8:f4:33:37:
51:ec:d7:fe:47:0f:15:63:5e:d4:54:76:95:74:6e:41:79:20:
39:05:c0:20:fd:12:2a:0f:84:9e:0c:0f:81:96:93:ed:da:b4:
1d:b7:7e:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 15 22:50:43 2024 by rpki-client on console-fra.rpki-client.org