Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/1RJYBt_eoiH76urFBKCP7PCbuFg.roa
File: 1RJYBt_eoiH76urFBKCP7PCbuFg.roa (raw, json)
Hash identifier: m6SSoCvwnZOCxX57MGixSh3pIjJTGL7GM0AXCBdlc6c=
Subject key identifier: D5:12:58:06:DF:DE:A2:21:FB:EA:EA:C5:04:A0:8F:EC:F0:9B:B8:58
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/1RJYBt_eoiH76urFBKCP7PCbuFg.roa
Signing time: Thu 15 Sep 2022 02:39:49 +0000
ROA not before: Thu 15 Sep 2022 02:39:49 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131591
IP address blocks: 101.136.0.0/14 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:39:49 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=D5125806DFDEA221FBEAEAC504A08FECF09BB858
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:aa:42:6a:01:5a:22:d3:a6:46:5e:dd:40:e1:
fe:c3:fd:d8:64:1e:d9:5c:02:6a:ae:69:c3:67:9f:
0e:d2:fe:3b:fa:a3:1a:5a:7f:93:d9:d3:0a:94:ec:
08:f3:20:b6:ac:4e:32:43:4a:d2:c7:39:d5:5a:53:
b6:6a:00:ab:47:eb:30:21:b4:6c:1e:39:f6:bc:29:
36:21:02:1e:6d:24:ef:db:b1:4c:8f:b5:de:7c:68:
9b:66:cc:2f:5f:fe:27:e4:ed:20:50:09:6f:ed:e5:
a2:11:0f:ab:52:21:98:70:73:ca:6f:b3:c5:11:d6:
c4:3a:8f:b7:9e:77:e1:0d:4c:9b:43:73:93:51:66:
ec:f0:3b:a2:7c:a8:54:da:21:5a:82:0a:9f:4b:3e:
d9:15:5f:7c:08:bf:52:39:5d:aa:73:3f:e0:6b:f4:
d4:55:f1:08:24:80:84:4b:c7:0a:84:8f:7a:45:d3:
86:28:0f:4b:3b:78:08:1b:a6:1b:c1:6e:ab:5e:a6:
70:6b:b1:49:bf:df:66:0c:e9:6d:95:c7:11:0e:55:
18:56:40:b1:9a:df:9d:40:d5:03:c0:fb:e6:f1:d7:
70:db:8a:89:c3:87:72:7a:16:d0:eb:ec:63:c4:b7:
77:a9:84:95:fd:c5:95:f8:93:3a:35:7f:dd:97:90:
3e:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:12:58:06:DF:DE:A2:21:FB:EA:EA:C5:04:A0:8F:EC:F0:9B:B8:58
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/1RJYBt_eoiH76urFBKCP7PCbuFg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
101.136.0.0/14
Signature Algorithm: sha256WithRSAEncryption
8f:cf:89:26:6a:7f:71:2a:4e:ab:22:5e:67:fa:6a:35:70:0b:
d6:f7:23:62:ea:1c:25:3d:f0:00:2e:92:a1:a7:c1:b8:4a:31:
03:5c:1c:13:89:18:f5:ed:3a:be:d2:04:f9:38:f2:71:55:4d:
ec:41:37:96:95:56:e2:47:62:6b:45:2e:d1:7f:b9:92:fd:dd:
6f:64:61:90:7b:32:e4:2d:0b:60:3d:7d:21:41:35:47:11:65:
82:83:00:2c:9b:23:91:3d:80:95:09:98:f9:c9:93:f8:52:c1:
d6:2c:ba:86:c3:2d:84:51:1c:fc:45:f6:b4:d1:9c:1f:f7:bf:
d0:c3:be:48:a2:f8:b0:20:e6:7a:26:0e:70:48:34:13:92:29:
00:8e:85:86:92:74:64:4e:a9:f5:0e:75:b6:e3:99:19:2f:d6:
50:be:aa:4e:92:bd:c9:59:fd:c4:e0:6e:c9:7b:c6:99:d2:1a:
a1:cc:cb:c7:f3:b1:3e:35:a7:52:b6:e0:ad:ed:bf:4f:80:55:
9b:62:ab:99:80:46:da:7f:68:82:8a:ce:76:8b:dc:f4:81:b4:
ca:9b:b9:6f:05:ee:a5:b1:43:27:8e:ea:9c:d0:ac:bd:ec:88:
40:42:1f:f0:86:09:3f:92:13:0e:97:b5:b7:71:a1:4d:24:b6:
3a:00:fb:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:04:59 2025 by rpki-client