Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/cjifzhMyJ-g4o-mwhLP93IhTYW4.roa
File: cjifzhMyJ-g4o-mwhLP93IhTYW4.roa (raw, json)
Hash identifier: AbsNPRffB4PP0cJVhiNS5YkAmRyIfc/vEZJAJAM6Eco=
Subject key identifier: 72:38:9F:CE:13:32:27:E8:38:A3:E9:B0:84:B3:FD:DC:88:53:61:6E
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 13D5
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/cjifzhMyJ-g4o-mwhLP93IhTYW4.roa
Signing time: Fri 05 Jan 2024 09:17:11 +0000
ROA not before: Fri 05 Jan 2024 09:17:11 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17709
IP address blocks: 222.250.192.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5077 (0x13d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Jan 5 09:17:11 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=72389FCE133227E838A3E9B084B3FDDC8853616E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:05:ac:0f:8a:a2:59:30:ca:df:8e:a4:6f:40:
6f:d9:66:13:82:00:c4:52:f5:f0:01:f4:c8:28:1e:
ef:9d:a3:f0:e2:4c:8d:a1:67:20:52:0c:06:d0:81:
d8:ed:55:4e:76:7f:c4:ef:b2:55:e0:db:3a:3b:4c:
79:4e:5d:9e:2b:4a:e3:a3:76:55:e8:1b:af:34:c5:
89:91:51:bb:97:7a:e2:ce:8d:94:76:d3:01:46:8a:
6b:d0:23:5c:bf:38:aa:4f:64:c5:c2:e5:e4:bb:b0:
aa:05:9d:10:2a:8f:36:66:3b:03:63:af:33:a9:2b:
31:9c:8b:5a:0f:9d:1b:f5:de:2e:ab:0f:f0:e9:d2:
2f:f4:67:0c:53:66:d4:4a:87:bc:5a:d5:8f:f9:0e:
ea:9c:4f:33:27:59:18:03:89:40:92:88:da:53:56:
55:e9:1c:28:f2:5d:43:02:8b:6b:29:c0:7e:14:8d:
ef:a3:04:c2:ac:60:2d:14:3a:a9:89:3f:42:37:7f:
a4:79:e8:e5:68:8d:25:ed:64:29:fb:9d:03:9b:4f:
9c:89:e3:80:79:b0:b5:20:96:33:d3:0e:be:cd:60:
0a:9c:6a:a1:8b:5c:23:fb:38:17:26:c6:88:a1:d7:
fe:c6:ca:de:36:71:05:07:12:2b:f7:28:dd:8e:3e:
92:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:38:9F:CE:13:32:27:E8:38:A3:E9:B0:84:B3:FD:DC:88:53:61:6E
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/cjifzhMyJ-g4o-mwhLP93IhTYW4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
222.250.192.0/18
Signature Algorithm: sha256WithRSAEncryption
08:34:1c:cb:ae:e4:4a:db:28:cd:5d:f0:ca:0e:8b:3c:7f:6c:
d3:e9:3b:b7:61:a2:a6:57:03:06:5c:6e:bc:5b:a8:68:1f:48:
ef:9d:37:f1:f4:0c:c6:26:2d:4a:37:c6:4a:3d:9a:f8:87:75:
f8:6f:77:ab:1c:98:45:b4:6b:27:5e:0c:e3:f5:b8:3e:a8:26:
ed:8f:62:0c:a0:be:88:58:8e:88:9f:48:05:47:73:ed:75:ed:
ca:f7:4a:ee:a3:04:3f:ff:86:ad:fa:f9:0f:25:09:71:a4:0a:
5e:a7:16:06:44:5e:24:e5:ae:74:da:4c:e8:66:29:28:e3:47:
f6:f1:6c:30:71:95:9e:68:3b:ef:52:ae:97:c6:43:93:cc:0d:
94:4d:70:7a:a9:af:8d:1d:71:19:c8:be:29:a0:a0:54:d4:3a:
81:d6:59:5b:bb:83:42:20:17:e1:3d:ed:91:d1:d9:b7:d2:02:
73:72:72:b0:91:22:09:e3:49:07:5d:53:3a:b6:49:33:bf:9b:
8b:fe:3b:b2:03:37:de:e4:49:2b:49:e4:94:9c:78:a2:9d:c6:
c3:5c:1f:50:0e:ce:22:6c:62:29:7f:b9:73:14:22:f9:4e:af:
8d:38:e7:8d:73:5c:7c:66:8d:ff:7e:38:99:74:79:3e:a8:73:
3d:cd:9a:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 23:48:57 2025 by rpki-client