Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/0BgP5bFFxJ2H9G5lod1RkiILIqM.roa
File: 0BgP5bFFxJ2H9G5lod1RkiILIqM.roa (raw, json)
Hash identifier: /RodjoWWTRwDKxIwrauuFHSeMMmomOaG6+QTM7G7/0Q=
Subject key identifier: D0:18:0F:E5:B1:45:C4:9D:87:F4:6E:65:A1:DD:51:92:22:0B:22:A3
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0C7F
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/0BgP5bFFxJ2H9G5lod1RkiILIqM.roa
Signing time: Sun 07 Feb 2021 11:39:50 +0000
ROA not before: Sun 07 Feb 2021 11:39:50 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 7482
IP address blocks: 210.202.64.0/18 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3199 (0xc7f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 11:39:50 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D0180FE5B145C49D87F46E65A1DD5192220B22A3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:82:a3:7c:e3:4b:cb:bb:8f:9d:0b:cb:25:ac:
9b:06:03:47:f6:bc:04:44:9c:3f:6b:66:61:43:a4:
a3:27:84:5d:22:dd:df:b4:ae:52:63:11:b2:98:20:
88:3c:77:d8:11:80:01:0e:23:40:c3:6e:a8:cf:61:
d9:86:2b:15:92:20:69:e1:ff:68:05:99:4f:b6:4e:
09:41:5e:00:7f:86:fe:26:eb:eb:bb:91:23:4a:8f:
8d:23:3c:04:7c:95:20:d9:68:80:55:c3:74:fc:c6:
20:c9:d0:d0:1d:30:ef:02:ba:2b:0a:4c:fc:f3:2a:
1c:d3:4b:41:78:bb:ab:b7:6d:96:f3:a7:c8:30:8e:
8b:d4:d4:3b:da:86:03:05:ab:dd:e8:b4:2e:0f:c7:
3c:a3:f7:31:ce:1f:d6:f8:b3:f0:21:fc:4a:d6:2a:
42:a3:42:d1:43:1d:60:56:bc:f4:5c:d7:03:45:de:
97:2c:db:4d:20:d4:ea:29:d2:0f:5c:0b:ff:2b:28:
80:f9:59:6a:ba:09:b8:16:07:0f:1d:c9:a8:30:a9:
d4:6f:f6:b7:5b:52:3f:6e:e5:81:70:67:b7:8a:dc:
11:dd:d5:e1:73:ff:dc:c4:00:d0:4a:45:ae:7d:a2:
bb:32:12:42:ec:76:a5:08:6f:a0:d2:ac:ee:df:fb:
d2:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:18:0F:E5:B1:45:C4:9D:87:F4:6E:65:A1:DD:51:92:22:0B:22:A3
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/0BgP5bFFxJ2H9G5lod1RkiILIqM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.202.64.0/18
Signature Algorithm: sha256WithRSAEncryption
c1:82:68:bb:30:37:9c:15:94:5d:50:4a:a0:ed:eb:a3:b3:ca:
38:2b:3a:b0:1f:30:e3:74:45:ba:4a:cd:e0:2f:9d:5d:c3:a0:
ef:ba:fe:4e:79:0d:c0:8e:60:80:18:79:11:cd:a8:6c:f1:d3:
7c:06:e2:37:70:b6:dc:11:5d:9a:f8:95:b6:95:5a:4a:2d:aa:
d8:d7:8d:e0:7c:2d:55:f9:9c:7a:61:91:ee:81:39:35:0a:f9:
3d:fc:3b:8a:16:bd:cf:8d:da:ab:92:02:fc:fd:16:9c:d7:dc:
58:c3:0b:55:5b:bf:97:b6:40:2e:f3:f4:95:33:cb:7d:0e:a2:
37:e0:8e:fd:ff:15:c7:ba:37:6c:f2:17:f0:ba:18:0a:09:50:
75:ba:16:54:b6:d4:8a:f2:58:2f:ef:c1:33:35:94:03:8b:b1:
cf:3f:42:85:aa:fc:8d:2f:f6:76:60:aa:28:31:ca:34:ae:0e:
c0:4a:4c:dc:69:02:59:b0:fc:c5:26:03:3c:19:45:35:15:f0:
01:60:a6:08:c0:df:11:c3:39:dc:b3:e7:4b:25:aa:57:05:91:
7b:d8:03:37:46:03:6d:e8:5a:82:07:fe:fd:c0:99:95:f1:04:
6f:41:0e:64:bb:9c:90:63:c5:01:70:2c:de:25:00:8c:86:7e:
b1:03:b0:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:44:09 2025 by rpki-client