Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/4DgzU1-RhIVFfmWeHPrk3EBtQas.roa
File: 4DgzU1-RhIVFfmWeHPrk3EBtQas.roa (raw, json)
Hash identifier: qMY3nqmBLPpkJZE9UyGRBkJQzR9+eYt6Ap1xLH52JA8=
Subject key identifier: E0:38:33:53:5F:91:84:85:45:7E:65:9E:1C:FA:E4:DC:40:6D:41:AB
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0E34
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/4DgzU1-RhIVFfmWeHPrk3EBtQas.roa
Signing time: Wed 29 Sep 2021 02:40:06 +0000
ROA not before: Wed 29 Sep 2021 02:40:06 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17709
IP address blocks: 202.178.128.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3636 (0xe34)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:40:06 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=E03833535F918485457E659E1CFAE4DC406D41AB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:c6:ca:ee:89:69:b6:26:89:e1:6c:c4:e7:c7:
68:88:61:21:4c:0d:5a:a0:8d:0d:20:09:2d:cf:af:
df:28:12:87:85:8d:f7:9b:b6:ac:6d:76:aa:d1:79:
8a:fe:17:f8:fe:0c:de:f2:3d:42:94:90:2b:44:8f:
24:8b:cb:52:7b:75:1d:b3:e2:b2:ff:af:07:92:30:
51:91:58:a0:7e:b3:d7:f5:f8:ac:7c:33:3a:08:43:
f6:58:13:fd:a5:18:d3:5a:ae:b6:f1:a9:95:22:64:
0c:bc:15:76:5c:5d:73:e8:04:d5:ac:89:5f:df:23:
15:0b:c4:ab:f0:10:09:6a:8f:86:8b:fb:fc:6b:60:
39:08:3f:47:a6:ba:66:ed:79:2c:44:26:ff:22:6c:
7f:c9:f3:59:f4:19:f9:e2:20:bd:95:7d:2e:0b:32:
91:35:bd:bc:55:e1:87:5d:3b:36:0a:6b:01:f7:e8:
21:52:d3:60:9a:c1:03:2f:46:7b:cc:10:98:63:54:
27:6f:90:6c:74:18:e8:6f:19:83:7d:0a:81:66:ba:
dc:2c:b6:9d:ef:33:2a:2f:4b:4e:da:eb:55:47:60:
af:49:56:36:9d:47:b4:bc:f4:38:3a:ce:4c:72:87:
3c:97:52:d6:03:11:d4:60:52:68:11:da:99:76:41:
14:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:38:33:53:5F:91:84:85:45:7E:65:9E:1C:FA:E4:DC:40:6D:41:AB
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/4DgzU1-RhIVFfmWeHPrk3EBtQas.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.178.128.0/17
Signature Algorithm: sha256WithRSAEncryption
bb:87:62:5b:a3:3f:07:f1:dc:27:5a:dc:bb:3b:01:84:15:68:
66:cf:6f:ad:c6:9a:df:21:d2:df:d1:a3:0f:b9:e0:4b:3c:a0:
1a:65:0d:d4:5a:bd:40:e1:4a:0a:8c:39:9a:bf:d0:4b:aa:83:
ad:ae:4d:f1:a9:73:6f:e2:9e:5e:ca:c8:c9:15:a3:7e:b6:ac:
1a:b7:b9:94:7f:20:8e:62:2c:ae:1d:88:87:c8:f6:e3:e4:2f:
87:4b:36:6d:6e:39:c2:f5:c2:f6:08:5d:d0:32:3f:d6:bd:39:
95:ea:62:38:d5:26:a3:94:b1:ea:e2:61:11:2c:2e:e2:ed:ea:
db:4f:1c:16:24:f0:8b:ce:10:90:20:df:74:6a:14:9b:6e:95:
e7:2e:e8:72:47:c2:dc:ef:fe:f2:d7:5a:5a:97:e7:41:49:f0:
b9:22:3d:33:e5:b1:0a:7a:79:17:31:f8:61:5a:0e:ab:04:5e:
f0:94:fd:e2:75:a1:da:cd:41:4a:c6:a5:0d:11:7b:45:a8:67:
4e:31:91:86:86:88:94:0e:98:02:4f:d5:eb:68:3b:e0:a1:2f:
00:38:47:ab:66:8d:17:45:94:2b:9e:e0:6d:08:c3:1a:50:8b:
30:8f:c3:ba:f1:26:a6:a8:d6:e8:fa:ad:07:49:e6:5e:6d:ac:
e9:79:3c:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:57:16 2025 by rpki-client