Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/A8KDN7l66L_1JATAQ0au9vsuKxQ.roa
File: A8KDN7l66L_1JATAQ0au9vsuKxQ.roa (raw, json)
Hash identifier: HvdhmJrdA4vN65xyUGh5FRXHzmBhZvND6Q/5FBMsu7Y=
Subject key identifier: 03:C2:83:37:B9:7A:E8:BF:F5:24:04:C0:43:46:AE:F6:FB:2E:2B:14
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 104A
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/A8KDN7l66L_1JATAQ0au9vsuKxQ.roa
Signing time: Tue 16 May 2023 08:36:00 +0000
ROA not before: Tue 16 May 2023 08:36:00 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17709
IP address blocks: 223.22.0.0/15 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4170 (0x104a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:00 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=03C28337B97AE8BFF52404C04346AEF6FB2E2B14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:e4:6d:93:a6:75:ba:9e:b2:14:45:ba:6a:7c:
64:59:35:25:a3:ec:47:1e:9a:05:2f:fc:bf:39:a7:
af:7f:e1:80:f4:12:9e:3d:73:7e:30:74:cc:46:38:
75:f1:4d:2a:ef:39:7b:6b:11:6b:3c:d8:3c:fd:37:
07:25:43:e2:6a:c8:7f:ff:2a:03:36:6a:10:d7:66:
a0:e5:76:ce:cd:45:06:ff:7e:21:b2:ac:c3:34:ec:
7f:7f:fc:b0:b6:2d:52:ae:5e:56:22:f6:29:38:20:
a8:4d:15:9b:45:58:8e:d6:08:70:bd:da:45:e6:e2:
07:2e:de:be:bd:0a:4a:ca:37:a5:89:fd:c5:85:0a:
f9:fe:c3:fb:32:50:9a:fa:8a:cb:b5:cb:df:7a:63:
90:22:d6:09:d7:af:c9:cb:b3:9d:00:b7:06:41:91:
d5:b1:13:92:ba:93:ed:23:55:54:68:48:86:25:ab:
96:ee:23:9b:6d:cf:b8:ae:ee:eb:c3:f6:91:d5:db:
2d:53:43:5b:1f:02:30:b2:96:60:a9:21:6d:56:2a:
ab:68:b7:bb:3c:7a:7a:c7:6b:52:68:90:03:cd:7a:
20:0c:da:c2:9b:a7:a1:ab:39:94:31:2d:96:24:3c:
89:8f:ce:90:66:a0:d7:18:cd:5e:ea:73:b3:5c:4e:
5a:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:C2:83:37:B9:7A:E8:BF:F5:24:04:C0:43:46:AE:F6:FB:2E:2B:14
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/A8KDN7l66L_1JATAQ0au9vsuKxQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.22.0.0/15
Signature Algorithm: sha256WithRSAEncryption
be:15:62:da:7e:5e:dd:1d:23:9a:70:ab:f4:61:76:d4:a3:6a:
d8:54:67:30:56:ea:cb:70:91:48:08:3e:d3:f5:46:ff:3f:a5:
15:a0:83:ea:fc:f2:01:0a:7b:00:7d:6a:e0:1d:b6:fa:54:06:
07:79:dc:13:11:be:f3:20:f5:de:a9:5c:91:04:af:9e:c3:e0:
32:10:8e:db:16:e5:f8:24:12:b2:b8:a8:23:b4:b3:81:f8:b7:
32:dc:b7:ea:6c:83:ad:4d:4e:33:9e:41:0d:f8:c0:c9:9b:36:
88:30:fb:f4:65:43:a5:16:6e:de:5c:c6:65:26:c5:9f:71:69:
c1:7f:b6:af:08:9f:90:9e:2a:07:06:01:f5:72:3f:07:fc:ab:
63:46:19:37:c2:4f:19:0b:89:2e:7e:0a:22:ce:78:d3:9b:2d:
33:57:23:a1:ee:85:be:df:9f:3b:ef:36:c7:93:68:99:1f:1f:
c0:73:3f:f1:7a:47:c9:6e:5d:03:58:bf:9e:c1:39:45:b9:30:
8a:11:7d:4e:d3:b5:4f:87:ef:1a:ff:4b:34:17:a3:9e:b9:7f:
09:b9:d3:d1:44:17:09:50:37:85:95:41:bf:0a:4f:b3:2d:fc:
ac:f8:b5:bf:4a:37:cb:64:91:be:20:e6:4f:9a:13:2a:9a:80:
60:de:bd:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:52:09 2025 by rpki-client