Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/7QrGlL02D5xNuh_preI9BzeziRs.roa
File: 7QrGlL02D5xNuh_preI9BzeziRs.roa (raw, json)
Hash identifier: 3njRH633C9U236riHIN5/DXjkImGySyrcZCW3XKp/EU=
Subject key identifier: ED:0A:C6:94:BD:36:0F:9C:4D:BA:1F:E9:AD:E2:3D:07:37:B3:89:1B
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/7QrGlL02D5xNuh_preI9BzeziRs.roa
Signing time: Thu 15 Sep 2022 02:40:31 +0000
ROA not before: Thu 15 Sep 2022 02:40:31 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17709
IP address blocks: 202.178.128.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:40:31 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=ED0AC694BD360F9C4DBA1FE9ADE23D0737B3891B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:72:6a:56:7d:21:14:46:ad:46:91:b6:7b:98:
3a:f3:13:8d:94:1d:2d:22:cf:52:5c:34:59:63:a4:
ae:f2:3b:4a:16:5c:bb:e5:9a:b4:40:9a:37:62:98:
2d:50:7a:d5:27:02:0f:59:6e:a7:60:03:3d:a5:ee:
29:fa:f4:23:50:64:5d:e0:33:56:42:9d:83:20:d0:
6f:e7:0e:57:77:12:5d:dc:1c:6f:ac:ce:ce:30:c9:
d6:7a:87:51:b0:3d:b8:f9:dd:9d:77:41:3d:d8:aa:
c2:08:a8:ab:c9:5d:06:35:88:6f:54:e6:09:51:c3:
98:9d:22:af:a6:d8:f6:d1:be:2b:20:27:97:b6:b6:
0f:75:81:20:2c:8f:1c:c3:07:4b:5c:b1:66:dc:bf:
10:2a:51:37:2f:fc:5e:96:8d:f9:ea:1c:e6:32:2a:
bf:ed:f1:ef:09:b3:a2:c8:dc:96:c8:75:94:f7:ec:
2b:4b:0f:cd:40:79:e8:46:b0:fa:50:ad:91:6a:65:
bb:5a:ef:18:07:40:b9:8e:2a:ba:28:81:36:c1:48:
d1:8c:99:28:e4:c3:08:e7:90:4f:2c:ee:76:aa:23:
8b:09:72:ee:1e:0c:95:e7:f8:45:e4:2e:71:76:c0:
fa:d1:c2:cc:6c:9c:19:e7:33:ad:4d:b9:90:a7:d4:
96:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:0A:C6:94:BD:36:0F:9C:4D:BA:1F:E9:AD:E2:3D:07:37:B3:89:1B
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/7QrGlL02D5xNuh_preI9BzeziRs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.178.128.0/17
Signature Algorithm: sha256WithRSAEncryption
5c:27:b7:ea:cd:6c:d5:3f:9a:e9:8f:58:31:d9:c4:ac:87:31:
9c:c0:f2:8e:ff:d3:49:31:4e:a2:3a:e9:11:73:0d:2d:4e:bc:
f0:71:e0:7e:84:e1:0b:d0:8f:8a:d6:e9:f2:ab:a8:0a:c1:e2:
c6:0e:d5:86:42:a6:33:fc:9b:5e:63:ca:f6:90:5a:23:8b:b2:
1d:b2:e5:e6:f8:70:42:b4:13:02:c4:c0:a9:c1:4b:bc:1a:94:
df:a0:fe:d4:8f:9f:2e:05:bc:90:83:24:39:1c:63:89:04:e4:
48:2d:10:b2:f1:33:67:f2:15:51:fd:ab:52:68:0d:79:fd:c8:
7d:04:7f:3c:99:2d:e0:30:70:a5:12:f6:49:a8:e6:e1:25:d8:
64:5a:05:02:7b:23:43:8d:7a:2c:70:9a:0c:d1:4d:a0:98:21:
cc:1d:7d:e8:76:83:2d:1f:80:01:c4:1a:b1:83:54:cf:83:34:
89:9d:44:81:14:9e:15:34:ef:2b:4a:70:f2:f5:af:8b:ab:8f:
b8:e9:7b:9d:bb:3a:98:4f:6f:28:df:b5:42:62:19:2f:e8:28:
1e:e8:72:41:f6:91:37:c5:e1:49:97:9c:ca:b7:75:55:d9:56:
c7:e8:a0:ac:23:18:b3:2f:f8:24:9e:7f:ee:70:8d:0b:e2:37:
4e:6c:12:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:51:32 2025 by rpki-client