Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/7UYxC5pVfgj74gPb4NUcarJ12iA.roa
File: 7UYxC5pVfgj74gPb4NUcarJ12iA.roa (raw, json)
Hash identifier: /vacuzgxyJCuGRv+zoUJlCWiV4e4EReJ2+og/GrfMjg=
Subject key identifier: ED:46:31:0B:9A:55:7E:08:FB:E2:03:DB:E0:D5:1C:6A:B2:75:DA:20
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1318
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/7UYxC5pVfgj74gPb4NUcarJ12iA.roa
Signing time: Fri 01 Sep 2023 08:05:22 +0000
ROA not before: Fri 01 Sep 2023 08:05:22 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 7482
IP address blocks: 210.201.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4888 (0x1318)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:05:22 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=ED46310B9A557E08FBE203DBE0D51C6AB275DA20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:bf:e5:c0:42:55:f3:1c:e6:98:b3:02:3d:bd:
c9:ce:dd:76:d3:24:ff:e8:a6:c5:7c:4d:98:60:45:
d7:f9:dc:76:7d:0b:69:31:52:b8:86:38:26:e9:8d:
c1:27:c0:4c:ad:e1:c8:a1:e8:ce:69:41:6e:5c:22:
c6:a9:d7:7f:5a:12:54:ae:c7:8a:c5:ef:98:20:81:
13:27:38:9d:10:5a:32:0b:9f:26:a6:89:94:cb:26:
83:a5:06:93:bb:87:ee:5d:da:31:0e:95:de:a2:ff:
16:53:fb:46:e8:31:5f:d0:48:50:8a:17:b3:1c:f0:
cd:71:1e:ef:f1:a5:85:24:d4:cf:d0:45:58:c9:b7:
bc:34:d7:15:e6:32:7f:24:68:a3:27:07:2f:72:62:
26:64:d8:99:5f:ae:b4:ee:3f:c8:b0:81:ee:14:e2:
36:41:86:fc:4b:d0:eb:35:69:78:52:02:0b:96:21:
8e:55:65:44:e5:8f:14:4e:d2:16:20:58:55:53:b1:
8c:9c:89:dd:8c:f2:ce:82:88:6c:b6:33:b3:94:0c:
6f:10:fe:65:73:f7:e4:6a:70:c7:86:c7:c9:3f:db:
2e:c0:aa:82:58:15:e4:b9:9f:7a:41:7e:34:a2:44:
ba:80:02:79:09:44:7d:10:10:dc:fc:44:d2:f0:95:
45:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:46:31:0B:9A:55:7E:08:FB:E2:03:DB:E0:D5:1C:6A:B2:75:DA:20
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/7UYxC5pVfgj74gPb4NUcarJ12iA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.201.0.0/16
Signature Algorithm: sha256WithRSAEncryption
9c:5d:83:c6:ec:a2:5c:df:e4:c6:5c:09:31:f7:24:0d:c7:7c:
5c:7a:ac:55:7c:a6:2c:89:f8:5a:48:9f:44:47:23:b2:e0:39:
97:c8:1a:80:bf:11:47:cf:07:6d:d8:21:1b:37:ea:82:e0:72:
2e:d3:da:44:e4:0d:e4:56:af:46:80:9d:9c:28:8f:4f:93:0e:
d1:9f:62:f3:6e:c7:cc:f7:4b:58:7f:ce:7b:86:d6:fe:32:48:
08:92:c5:79:ff:cc:68:85:91:ff:56:12:a0:1a:20:35:fa:aa:
d7:37:87:bc:eb:08:f8:68:2d:70:c3:1f:d6:94:1c:27:75:7f:
58:8b:0c:98:d4:3e:f3:7a:a1:ff:6e:e7:09:50:53:f9:4a:4f:
00:21:80:f6:86:4b:75:0f:3b:fa:f7:7e:cb:c1:07:e2:00:59:
fd:fd:c8:a7:db:4b:3d:f9:76:ae:08:8a:7f:01:22:3a:d7:ba:
6c:1e:f4:05:3d:fd:d7:67:17:56:9f:a5:0a:08:38:0b:59:3a:
87:81:b7:00:da:f2:c7:1e:62:5e:45:d5:a3:ca:de:9f:bd:f6:
32:f9:76:18:dc:24:b1:b7:2e:4e:ea:41:80:6c:e2:e3:72:c1:
d5:2c:97:9c:a7:ae:9b:e7:ef:ba:ca:f1:f7:e7:ac:92:9a:ae:
ec:f4:68:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:53:06 2025 by rpki-client