Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/H2C2sLPM0QK79hkLWOdeSl9DWNQ.roa
File: H2C2sLPM0QK79hkLWOdeSl9DWNQ.roa (raw, json)
Hash identifier: ziMRYIJzYEGcn7dkBbS3Fq5pSKy3mgd8avzOX8+NpTc=
Subject key identifier: 1F:60:B6:B0:B3:CC:D1:02:BB:F6:19:0B:58:E7:5E:4A:5F:43:58:D4
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/H2C2sLPM0QK79hkLWOdeSl9DWNQ.roa
Signing time: Thu 15 Sep 2022 02:40:11 +0000
ROA not before: Thu 15 Sep 2022 02:40:11 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17709
IP address blocks: 43.240.104.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:40:11 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=1F60B6B0B3CCD102BBF6190B58E75E4A5F4358D4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ca:c2:2c:b1:ac:a8:ee:41:06:75:54:35:fb:
1f:de:aa:68:56:99:5e:40:e3:b5:db:9c:8d:f0:67:
a0:f6:38:ff:99:47:bc:d5:69:1b:60:2f:b0:38:c2:
95:ba:1e:af:21:40:9c:fd:6a:75:db:5f:c0:3c:c7:
8e:61:e0:d1:52:d2:50:c5:5d:b4:5c:f3:44:e2:b2:
dd:62:96:98:3d:51:2b:dc:3a:bd:cc:aa:e6:0e:c9:
96:a6:e7:12:82:52:45:75:b9:85:4c:87:25:74:44:
95:a8:ac:ee:43:23:8b:02:24:0d:65:0f:7a:3d:a7:
ac:7f:3d:27:e5:65:aa:97:34:85:69:ec:ea:17:cd:
d7:37:15:70:84:9b:59:34:a4:53:32:da:12:de:8b:
60:d7:7b:b3:e0:6c:31:ea:04:61:14:18:3d:56:6b:
02:27:90:c9:f5:96:f8:49:e6:06:e8:2c:e1:2a:4c:
0b:27:9f:74:21:c0:22:35:a0:d3:bb:b6:8c:d1:55:
09:cd:d6:0a:c2:d2:59:15:27:53:7d:7d:7d:17:8a:
13:81:f3:5d:0b:05:d8:85:68:d9:ae:cb:68:5f:54:
e9:a4:72:14:7f:5d:1b:73:62:07:ce:c8:86:3f:5f:
62:db:f4:69:1e:70:81:37:65:f7:af:0a:ea:0f:7e:
90:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:60:B6:B0:B3:CC:D1:02:BB:F6:19:0B:58:E7:5E:4A:5F:43:58:D4
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/H2C2sLPM0QK79hkLWOdeSl9DWNQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.240.104.0/22
Signature Algorithm: sha256WithRSAEncryption
26:3b:4a:da:e2:ed:25:5d:11:1f:dd:db:e1:31:f6:ba:8d:ab:
52:ee:44:7e:bb:29:55:dd:96:08:dc:c9:78:2c:cc:15:9e:d0:
0d:a6:45:6b:74:35:03:cc:9f:e0:c9:38:dc:ba:94:72:e8:28:
2c:03:07:40:a4:1e:83:0c:8e:b8:f7:f1:e4:30:e3:80:ae:7c:
88:31:88:19:43:54:32:39:6c:1a:c5:a1:91:ab:9b:2a:11:e5:
a1:8e:2b:e3:84:76:4d:b5:1e:be:5d:2b:10:03:62:7f:d2:05:
fc:f2:8e:7f:c2:fe:78:27:09:3e:a1:7b:8f:1e:5e:e5:02:84:
bc:72:8e:24:13:ac:82:04:a3:6b:52:16:b7:99:dc:5c:3f:ce:
fc:6e:82:e1:38:c9:4a:76:96:ad:3a:17:0b:fe:28:6c:a8:29:
e3:04:2c:a7:11:f8:09:91:5a:15:ba:28:d7:6b:8e:8f:ea:aa:
2f:43:34:9d:08:66:ed:9a:6a:94:5d:5d:08:65:8e:fb:9d:69:
9c:c2:41:f7:71:73:c8:1e:7a:e8:5e:e7:0f:0c:c2:b2:89:d1:
f4:45:b6:c8:a9:56:3b:bd:69:0d:ae:20:2a:dd:37:59:3a:e0:
8c:14:69:d3:bd:45:e6:25:b5:f2:7d:62:93:37:55:9f:25:bb:
61:76:1f:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:03:16 2025 by rpki-client