Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/t__XlZwKu6nmWO2gLvQoTSxPjo4.roa
File: t__XlZwKu6nmWO2gLvQoTSxPjo4.roa (raw, json)
Hash identifier: tdZqXnfAEr39YR31OUN0QW4mIyt1vFHc1rL+txkMdvY=
Subject key identifier: B7:FF:D7:95:9C:0A:BB:A9:E6:58:ED:A0:2E:F4:28:4D:2C:4F:8E:8E
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1018
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/t__XlZwKu6nmWO2gLvQoTSxPjo4.roa
Signing time: Mon 15 May 2023 09:15:33 +0000
ROA not before: Mon 15 May 2023 09:15:33 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18419
IP address blocks: 124.218.116.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4120 (0x1018)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 15 09:15:33 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=B7FFD7959C0ABBA9E658EDA02EF4284D2C4F8E8E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:07:7b:c9:1e:3f:e8:7b:1b:63:f6:9b:7b:04:
68:12:da:5a:77:38:11:bf:b0:b7:09:de:e2:e9:49:
fe:d9:9a:33:b0:6d:30:18:b0:e9:18:6e:0e:33:ee:
88:d3:ff:c2:64:1d:2a:35:63:2f:89:89:f6:4f:ca:
55:5a:d3:08:4e:7b:a7:3a:15:3c:e6:22:32:f4:4f:
a2:57:b1:85:56:0f:64:7f:d7:69:ac:aa:bc:a1:29:
b6:63:fc:ac:6d:3c:5a:0f:9e:57:9e:c6:7e:a1:8c:
63:a5:9d:88:7c:05:81:cf:5f:d8:69:45:e8:04:59:
c1:e8:a2:27:23:4a:43:88:df:39:cb:29:15:a0:31:
3d:40:b0:a3:b5:39:d4:56:0a:12:b1:d3:75:b6:dc:
d2:10:ed:b4:e8:b2:4b:c2:c6:7e:d1:ed:18:df:3a:
b0:cc:39:cc:a4:42:e1:57:aa:f4:73:57:53:5e:f7:
fc:81:18:e4:1a:9c:a7:6a:7e:7c:48:af:31:ac:fc:
3b:47:77:7b:d9:f1:59:9a:1d:b7:60:a5:aa:6e:11:
76:74:aa:b3:49:d9:70:c2:4b:0c:5c:d8:af:b4:41:
c4:2f:a1:25:1f:70:b3:08:ea:05:8b:77:6b:dc:47:
2a:01:ce:b7:a4:11:1b:76:f4:c2:72:ab:2c:23:a4:
f5:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:FF:D7:95:9C:0A:BB:A9:E6:58:ED:A0:2E:F4:28:4D:2C:4F:8E:8E
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/t__XlZwKu6nmWO2gLvQoTSxPjo4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.218.116.0/22
Signature Algorithm: sha256WithRSAEncryption
99:50:23:48:17:e5:39:0e:14:28:e8:d0:c3:97:fa:5e:2c:ed:
86:97:c0:ed:7d:04:94:a8:4e:31:69:b9:cc:7e:16:7b:d9:66:
ef:3b:f6:2f:a1:21:f5:4a:a8:0d:fb:6d:d2:6d:35:d0:32:d1:
66:16:68:e4:66:0b:7b:39:d1:3b:ce:d5:5d:10:40:05:83:41:
20:e3:77:6e:df:e0:74:53:fe:ca:5d:b5:e1:79:8a:a8:49:e6:
19:9f:c8:77:4c:70:00:2f:18:b8:74:f7:db:d5:6f:b3:21:25:
1a:81:bf:f2:5f:96:88:54:67:29:72:be:b0:47:dd:c1:01:4c:
83:8f:80:f1:83:31:2d:94:1f:59:13:37:de:cc:ad:21:eb:69:
cb:14:e3:54:31:61:ab:16:9d:d2:7b:72:68:71:4b:0b:ee:f8:
f8:e0:4a:3f:69:31:48:74:0c:ab:22:2b:e5:9d:37:d6:fb:1f:
a6:25:b6:ca:77:3d:99:a1:e9:63:1f:95:64:5d:7b:51:bc:2e:
75:83:5d:5b:d9:3c:78:32:4c:2d:df:32:60:15:1e:19:17:4d:
13:01:2f:9e:ab:56:98:9c:c0:98:82:57:be:60:dc:6f:38:04:
28:12:e6:d9:90:a8:61:d9:c7:12:a6:48:49:e3:4c:14:01:60:
99:bb:df:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:32 2024 by rpki-client on console-fra.rpki-client.org