Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/9yObGsEivQtsTHV4of-1q9ZUKqo.roa
File: 9yObGsEivQtsTHV4of-1q9ZUKqo.roa (raw, json)
Hash identifier: vhUvGR5rR7L1MbsgqFTYqQe30YNDh2UFfYz+NQx3d1w=
Subject key identifier: F7:23:9B:1A:C1:22:BD:0B:6C:4C:75:78:A1:FF:B5:AB:D6:54:2A:AA
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 13D5
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/9yObGsEivQtsTHV4of-1q9ZUKqo.roa
Signing time: Fri 05 Jan 2024 09:17:11 +0000
ROA not before: Fri 05 Jan 2024 09:17:11 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17709
IP address blocks: 222.250.0.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5077 (0x13d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Jan 5 09:17:11 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=F7239B1AC122BD0B6C4C7578A1FFB5ABD6542AAA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:80:f2:2b:b9:5b:88:cf:55:95:e9:e8:9c:62:
1b:cc:75:98:d7:a6:e6:25:8c:89:47:34:63:2e:5b:
20:a1:07:22:09:a7:10:e0:fa:1d:b3:03:ad:e0:f7:
69:27:a5:ef:ca:70:18:8e:bd:c5:22:e9:82:4a:b7:
1c:1f:81:ce:b0:f6:65:c9:ff:77:21:cf:1b:26:ee:
42:f0:6d:53:6a:48:86:5c:30:00:de:a8:1b:b4:57:
c6:6a:dc:77:60:0b:94:cc:51:78:36:83:c2:19:75:
b7:ba:90:54:1f:8b:91:e9:93:57:f5:f6:22:9e:9f:
44:08:f5:a3:db:bc:b8:79:12:5c:03:c3:b8:ae:0b:
6b:fe:fa:ef:4c:5c:27:0c:aa:1b:b4:b1:6e:52:63:
32:53:65:cf:a9:a2:11:8b:2a:ee:ed:4d:86:11:53:
3e:f3:12:b3:70:b0:09:4f:87:99:e5:6a:64:38:f5:
6b:69:89:3d:70:f2:f9:c2:77:bb:da:c8:a7:3b:12:
cc:e6:60:8d:ce:21:78:51:68:e5:88:72:5b:22:0e:
22:9d:6f:d8:86:a4:b8:18:26:74:c3:70:87:1e:9d:
f9:89:19:43:55:95:4f:4d:da:3d:35:90:8d:65:bb:
a4:c7:ac:6a:fc:54:ae:da:1a:a0:a6:ac:31:59:fe:
ab:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:23:9B:1A:C1:22:BD:0B:6C:4C:75:78:A1:FF:B5:AB:D6:54:2A:AA
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/9yObGsEivQtsTHV4of-1q9ZUKqo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
222.250.0.0/18
Signature Algorithm: sha256WithRSAEncryption
bd:55:36:fb:46:87:44:6f:a1:90:6b:23:35:58:37:9f:14:db:
89:8a:2d:b1:5b:4f:fd:23:29:81:95:f2:33:2f:03:55:70:3f:
97:e3:d0:f9:58:2a:88:e4:57:35:1f:a6:ae:7f:44:37:d4:67:
ae:48:4e:1f:81:b8:f1:c7:7f:29:64:6d:eb:46:20:dd:b1:70:
65:f5:9c:fe:72:ef:53:34:61:0b:bb:99:e1:ab:43:82:da:cd:
67:29:ff:fc:23:51:78:21:85:8b:51:01:5e:16:c2:4f:56:cb:
55:25:9b:98:ba:1b:19:ad:e4:d8:84:01:18:69:39:4d:c3:e1:
cd:f9:dd:22:fd:f9:38:73:fa:b1:a1:af:74:41:d2:d7:a6:19:
71:5a:b3:8b:c6:9e:0b:75:02:ef:cb:92:c9:d9:49:ee:91:3c:
cc:24:48:38:4f:2a:7f:54:e6:2b:30:61:b8:a8:8f:5a:33:27:
5f:8c:71:8b:24:3c:af:ec:ab:92:7c:f5:43:35:89:1e:44:87:
ca:43:93:70:be:68:be:82:5c:f8:86:24:f8:30:64:e0:1f:3d:
21:88:96:7d:d1:31:97:0a:fb:2d:6c:fd:fd:c1:d8:a6:07:4d:
d4:30:ac:6b:8e:07:4c:de:f4:a9:fd:b4:77:b2:ac:0f:d7:5f:
4e:fe:ec:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 5 20:24:19 2025 by rpki-client