Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/0KJNK9RVYPB6MfQkRb8pQdNTbwo.roa
File: 0KJNK9RVYPB6MfQkRb8pQdNTbwo.roa (raw, json)
Hash identifier: 7fOcSprETOZeEF9Pc5x9O700PDS+RKf8sBJoD+akEvc=
Subject key identifier: D0:A2:4D:2B:D4:55:60:F0:7A:31:F4:24:45:BF:29:41:D3:53:6F:0A
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0BBB
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/0KJNK9RVYPB6MfQkRb8pQdNTbwo.roa
Signing time: Sun 07 Feb 2021 11:33:42 +0000
ROA not before: Sun 07 Feb 2021 11:33:42 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 7482
IP address blocks: 203.79.216.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3003 (0xbbb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 11:33:42 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D0A24D2BD45560F07A31F42445BF2941D3536F0A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:6b:9f:34:3c:e5:44:1e:e9:59:5c:64:45:b3:
44:b5:19:2a:9f:ab:3f:2a:f2:17:d5:88:3f:9e:ba:
d4:64:8a:43:28:a7:de:49:bb:b3:eb:ad:e7:35:b5:
41:7b:d6:6a:24:cb:18:1f:32:e7:3e:c5:21:4b:a0:
cd:ff:e8:da:17:a1:90:32:60:23:01:bd:b0:10:76:
53:69:63:2e:f3:51:59:79:f7:ac:d4:b2:df:8c:b9:
95:ee:a1:e6:7e:d6:3f:27:8d:23:33:af:ac:62:a4:
8a:27:57:a8:16:6d:f2:ab:00:0a:61:a3:b6:10:35:
0a:3d:85:59:95:ed:0d:1b:bf:3e:c2:4c:8d:23:97:
7c:04:16:68:e8:d5:16:be:07:10:fd:8a:18:cb:ca:
2f:0a:94:36:9d:17:0d:ea:05:f5:66:d3:6d:cb:a4:
aa:9c:d2:2b:3f:e2:a2:51:5b:b1:b2:e1:c6:10:f4:
2c:86:4c:52:8a:35:62:c6:3d:d2:02:cc:a1:ce:cb:
13:f3:ea:a7:00:e9:d3:1b:69:d2:e4:14:b1:26:f2:
89:d8:89:26:c8:cb:c0:9e:07:42:70:99:94:c8:7f:
09:bd:7f:10:02:e7:28:cb:8b:0f:81:ce:da:20:3c:
03:60:36:6b:42:21:e0:b5:f1:cf:34:97:7d:e2:b6:
36:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:A2:4D:2B:D4:55:60:F0:7A:31:F4:24:45:BF:29:41:D3:53:6F:0A
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/0KJNK9RVYPB6MfQkRb8pQdNTbwo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.79.216.0/22
Signature Algorithm: sha256WithRSAEncryption
14:d2:3e:4b:4c:3f:14:39:aa:28:8e:0a:02:d5:2f:6e:11:8f:
b9:73:47:6d:6f:b1:13:4a:e3:c8:f5:4d:5f:d4:40:34:2b:7c:
f6:aa:61:af:ba:3d:91:ef:d3:7c:6b:26:43:79:60:18:07:62:
7f:ea:d6:ea:9d:69:c7:20:8b:6c:97:a9:6c:1f:35:c9:5b:53:
ee:7a:63:8d:f6:ed:93:eb:1a:ed:2e:50:56:df:1b:2b:11:97:
d4:87:67:85:f2:75:b6:7b:5d:ec:8e:83:66:b3:bb:0f:54:e4:
e6:23:e1:98:40:04:f1:4c:d7:d4:bb:f4:f7:32:b3:56:05:65:
4c:b2:f0:70:d1:28:50:4a:d2:dc:23:0c:da:d7:a0:18:3a:9b:
f5:eb:24:85:d1:32:f6:71:f7:fd:b9:50:8e:45:6d:7a:44:24:
b9:4c:2b:9a:5e:24:f5:31:0b:9a:3e:3e:e0:3c:98:58:3a:12:
b6:2c:2f:8f:d4:02:e3:78:a7:a5:f1:52:35:c2:ae:f0:a5:19:
18:6f:1b:82:7c:e9:e8:01:26:d1:46:d2:c6:6d:98:be:7a:fe:
2a:67:13:ac:39:9f:0d:15:16:e1:c0:aa:a7:2c:4e:d2:21:ec:
4d:39:79:2f:2f:30:c3:75:38:8b:22:b9:2b:16:ba:13:95:74:
f1:c5:bc:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:46:40 2025 by rpki-client