Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/-5Ju-Em4qwJy5jBbjaINc6lOZtg.roa
File: -5Ju-Em4qwJy5jBbjaINc6lOZtg.roa (raw, json)
Hash identifier: jFpORwFXvKfjp78/WndXV8bBiYq070GcJ9za07UTMrQ=
Subject key identifier: FB:92:6E:F8:49:B8:AB:02:72:E6:30:5B:8D:A2:0D:73:A9:4E:66:D8
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0E5F
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-5Ju-Em4qwJy5jBbjaINc6lOZtg.roa
Signing time: Wed 29 Sep 2021 02:40:18 +0000
ROA not before: Wed 29 Sep 2021 02:40:18 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24154
IP address blocks: 210.63.236.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3679 (0xe5f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:40:18 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=FB926EF849B8AB0272E6305B8DA20D73A94E66D8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:eb:57:2e:83:e2:eb:27:da:cf:2a:da:4e:58:
9c:7d:14:81:b5:60:7f:c2:ba:28:dc:4c:b9:e8:69:
4e:9e:eb:22:b1:1a:01:dd:1e:ed:a3:60:80:3c:32:
47:cb:dd:49:ae:cf:00:b6:42:f3:c4:28:46:a0:1b:
54:f8:50:88:af:39:47:6c:ce:71:b0:8c:7e:29:1e:
22:35:cd:7d:ba:d9:96:e9:74:95:7a:1d:a2:25:d8:
8d:ad:ac:8a:be:99:47:7f:2a:ca:df:ba:35:4b:6b:
78:8a:d5:3a:7b:cc:b3:e8:07:72:de:ec:30:ab:7d:
94:dc:4a:ad:03:ac:e1:00:7e:4c:b4:f0:d1:31:44:
67:51:37:b0:7c:94:82:12:e3:5a:eb:14:2d:1d:98:
02:ec:b3:09:87:8c:f2:62:f7:6f:29:13:a7:62:8e:
b0:8c:f7:8d:b9:7d:69:79:41:5f:7c:c6:62:da:a2:
03:df:79:ec:92:ff:dd:60:19:7f:5c:69:ed:18:27:
d4:a7:3d:0e:06:bf:ef:54:40:0c:6f:56:16:b6:08:
75:3b:af:e9:26:d0:58:ed:2c:b5:8a:11:03:68:99:
42:d5:df:3f:98:4a:6b:ab:a3:ef:fc:15:ae:11:7f:
7d:ff:df:68:94:76:01:3e:b9:22:f1:14:8f:c4:21:
40:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:92:6E:F8:49:B8:AB:02:72:E6:30:5B:8D:A2:0D:73:A9:4E:66:D8
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-5Ju-Em4qwJy5jBbjaINc6lOZtg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.63.236.0/24
Signature Algorithm: sha256WithRSAEncryption
35:ed:0b:b2:02:b9:49:7a:9d:1a:cf:df:d0:15:3a:a0:12:a4:
da:c4:a5:20:a3:06:af:05:9b:06:84:cf:cd:e0:cf:7d:79:d1:
99:e9:6a:fc:17:5e:7f:13:d1:5e:d3:67:2f:6d:52:33:85:66:
75:e2:92:90:1f:fd:2f:dd:8f:46:8b:24:68:84:96:8a:17:4d:
dc:ae:8c:a7:8d:32:f2:da:14:22:b7:43:74:e7:35:98:cf:b3:
99:7e:cb:d0:ae:f3:85:49:a0:46:98:f4:03:bb:3c:84:1f:43:
b3:3d:73:22:21:da:32:6b:7f:e3:0f:1f:68:2b:e3:7d:08:b0:
00:5c:d3:bc:c1:88:d4:4e:37:1d:bf:11:97:e5:8e:38:be:cf:
6c:1f:a1:bf:25:db:af:3b:2d:6c:87:56:41:ed:19:26:b5:95:
da:f5:e6:1a:a9:47:b8:8f:d7:aa:0a:4e:b1:8c:2c:e6:e4:0b:
04:82:94:93:99:93:b1:6e:d8:5b:29:f8:19:d5:a5:27:8c:7d:
f7:fc:73:94:36:34:40:db:5d:fd:ba:e6:bc:2b:e5:9e:05:98:
41:dd:9a:aa:0e:3e:c6:97:76:0d:5f:ed:51:a1:97:f2:54:e1:
84:88:ee:c0:b8:76:e9:78:a4:d3:e0:d1:ea:49:48:5c:d2:c4:
da:4c:16:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:44:10 2025 by rpki-client