Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/z2ZDV6Ig0EpptiycovPNV6QrVSM.roa
File: z2ZDV6Ig0EpptiycovPNV6QrVSM.roa (raw, json)
Hash identifier: sv2TkfiQnevRjguc46EjvUVHMRwV1eD5Y54KExhAdQM=
Subject key identifier: CF:66:43:57:A2:20:D0:4A:69:B6:2C:9C:A2:F3:CD:57:A4:2B:55:23
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1264
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/z2ZDV6Ig0EpptiycovPNV6QrVSM.roa
Signing time: Fri 01 Sep 2023 08:04:24 +0000
ROA not before: Fri 01 Sep 2023 08:04:24 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18419
IP address blocks: 124.218.96.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4708 (0x1264)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:04:24 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=CF664357A220D04A69B62C9CA2F3CD57A42B5523
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:b9:f3:da:e8:70:f5:23:42:08:a4:c2:b1:d5:
a6:04:dd:71:5e:0d:ce:8c:d8:6f:45:32:34:8a:44:
cc:4d:47:0b:f1:fe:b3:2f:ff:62:11:a6:22:cd:e2:
83:01:1e:b3:2b:e6:b4:6e:fc:a6:8d:a6:bb:22:78:
e3:c9:9a:9f:35:ee:f5:a4:75:14:a9:e6:27:e4:f9:
92:f4:75:58:5b:a4:35:7c:f9:ab:f6:4e:53:29:10:
bc:80:79:45:16:db:40:5d:79:4e:51:9e:2f:f5:66:
92:df:df:a9:f9:a7:3d:8f:99:1f:f0:ea:8e:c2:cc:
78:9e:96:7e:0b:c3:7e:e2:6d:3d:73:77:11:4a:83:
0b:f9:67:ac:73:29:db:4e:34:ce:1f:7b:d0:a8:23:
4d:51:19:d8:5e:d7:ca:ec:56:3e:99:5e:76:46:e1:
9b:82:a5:43:72:ee:43:95:f8:6c:4a:6a:09:f3:7e:
7e:46:a7:35:7f:5f:41:96:f3:6b:55:f0:8b:6b:5b:
28:a6:e0:e1:0f:a1:2e:4c:ed:9c:d9:b6:48:40:97:
47:a2:af:79:07:f6:7d:9a:23:5c:5e:1f:5e:3b:e6:
89:36:d7:01:4a:0d:5d:63:6b:53:78:74:dd:4f:ee:
31:58:97:e2:22:97:88:cf:9f:0c:65:35:b5:7f:52:
5a:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:66:43:57:A2:20:D0:4A:69:B6:2C:9C:A2:F3:CD:57:A4:2B:55:23
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/z2ZDV6Ig0EpptiycovPNV6QrVSM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.218.96.0/21
Signature Algorithm: sha256WithRSAEncryption
03:67:d6:27:cb:be:f9:28:e5:f7:2b:76:54:4c:c9:5d:fc:d2:
72:7b:91:d7:2e:f6:52:8e:41:ff:5f:5c:9b:bb:66:60:a2:74:
05:3b:8e:d9:c1:75:c1:a3:62:b0:97:42:87:69:d5:9b:7e:84:
e8:2f:2b:85:28:10:d2:d4:29:d7:e0:33:9d:3d:4e:ff:b4:b0:
b7:3a:09:23:f5:2b:31:ad:ed:59:7f:19:fc:aa:fc:6c:54:3d:
d4:7b:70:10:cd:d7:c0:3c:e1:13:3d:6a:d6:1f:0b:80:de:ae:
5b:3a:d6:f6:e0:8e:05:64:eb:89:e4:97:ce:dc:9e:c9:1e:f3:
48:91:26:42:69:c3:dd:48:73:b3:f4:3f:e3:63:58:fc:46:c1:
65:70:91:36:17:8e:48:91:a7:f8:dc:b7:89:b9:25:39:26:49:
f1:81:b7:61:90:ac:8e:73:3c:38:3f:d4:50:b4:32:8c:89:c6:
a7:03:02:58:10:41:37:cb:f4:53:1c:20:df:85:f7:7f:89:e2:
7f:f8:d9:48:f9:8d:b1:ed:78:69:65:a1:41:d9:e3:8b:8f:95:
1f:f2:b5:d1:a3:a8:4c:52:0b:57:09:3e:85:ff:d4:8a:37:ec:
d1:22:cf:e5:07:1f:c4:45:0a:25:b2:ee:5d:ed:e0:d4:c6:64:
4d:fa:28:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:32 2024 by rpki-client on console-fra.rpki-client.org