Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/c9Ed7AVT2sOSYjef9zRUYeJxUrI.roa
File: c9Ed7AVT2sOSYjef9zRUYeJxUrI.roa (raw, json)
Hash identifier: ojcG2PfRE/Y0wunHWPX0xNWOiOESvrhkwqxG+a/UQzE=
Subject key identifier: 73:D1:1D:EC:05:53:DA:C3:92:62:37:9F:F7:34:54:61:E2:71:52:B2
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 13D5
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/c9Ed7AVT2sOSYjef9zRUYeJxUrI.roa
Signing time: Fri 05 Jan 2024 09:17:11 +0000
ROA not before: Fri 05 Jan 2024 09:17:11 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17709
IP address blocks: 222.250.64.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5077 (0x13d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Jan 5 09:17:11 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=73D11DEC0553DAC39262379FF7345461E27152B2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:a9:80:05:e7:a9:6f:52:09:12:1b:a0:65:48:
51:d0:52:f7:7d:11:58:ff:98:6c:10:eb:0e:45:20:
ca:fd:ae:a9:a5:f4:7e:08:08:78:bc:11:ab:a9:73:
bf:7d:79:d4:a0:93:93:b7:34:02:83:d4:c9:93:ec:
ce:fa:60:ff:aa:b1:92:29:10:2d:2e:f1:86:38:ec:
cc:9f:47:2f:46:62:18:7f:a9:24:27:8e:de:2a:51:
9f:3e:86:ec:15:56:d3:cd:52:e7:16:9a:25:ee:b2:
ca:04:95:3f:15:ee:7c:b7:c2:c0:82:74:65:73:ff:
3a:85:18:da:5e:24:11:38:e2:7e:e3:21:d5:b9:90:
02:84:bb:67:70:f1:dc:e1:70:9c:e2:e2:63:1f:e1:
41:c4:2a:b4:f1:e2:d3:26:a1:b4:f5:56:0a:1e:98:
b4:54:c0:57:af:dc:62:29:1a:41:ce:45:b7:3d:2b:
ca:f7:f2:8a:80:55:c2:d0:fb:db:fd:0a:9b:51:6e:
34:16:04:f2:1e:ff:28:3b:44:a5:6b:06:df:ef:5e:
76:39:ae:eb:4b:5f:52:3a:f4:0e:40:7f:cd:e1:0b:
ca:b0:05:06:31:6b:f7:d7:3e:43:39:9d:43:ca:69:
fd:0d:31:14:6b:20:79:c9:c6:32:ea:74:37:28:3c:
6f:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:D1:1D:EC:05:53:DA:C3:92:62:37:9F:F7:34:54:61:E2:71:52:B2
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/c9Ed7AVT2sOSYjef9zRUYeJxUrI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
222.250.64.0/18
Signature Algorithm: sha256WithRSAEncryption
3a:f8:3a:54:f0:51:1d:8a:49:0d:6b:92:2d:cc:77:f0:f0:8c:
32:89:71:d1:4a:15:5a:38:fd:a9:81:2e:e5:d2:28:73:e0:ad:
8e:24:f6:ac:18:a9:42:c0:bd:1f:5b:f6:2d:d7:4c:5c:a7:05:
8d:63:1b:34:87:d8:5a:8a:69:41:13:d4:78:7f:d7:a1:b4:33:
f2:c4:e7:32:79:b3:2c:49:e0:11:c2:d5:e3:e3:75:75:1a:44:
96:14:4b:92:74:ab:d4:47:df:c4:23:ba:68:81:0c:2b:0e:bd:
39:45:56:b8:ac:1e:ad:5d:84:c4:cc:b9:47:6b:70:70:fb:0d:
ea:4e:d0:ed:aa:d2:99:42:c0:3e:87:06:d4:ff:ff:16:e3:c9:
64:ed:aa:8d:31:8d:06:9b:94:9d:f0:09:94:22:47:fa:7d:51:
a5:de:a9:ba:cc:2b:6a:a0:bd:88:c8:ea:c0:82:bc:18:8b:7f:
d8:6d:e7:e2:59:fc:ab:2c:3d:2c:67:4f:76:81:66:23:de:32:
f5:42:57:70:54:a8:a6:27:dd:fc:f1:d1:28:ee:51:3f:e2:2e:
36:7b:f1:b1:39:c3:da:0c:fa:1f:91:74:4f:54:70:75:9e:8c:
98:1d:1a:15:7b:c6:b8:76:87:a1:39:c6:0d:37:b6:db:92:ec:
53:f0:8b:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 23:41:26 2025 by rpki-client