Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/JVlwjCrhW3C6VBg_bbK2W0MH1LU.roa
File: JVlwjCrhW3C6VBg_bbK2W0MH1LU.roa (raw, json)
Hash identifier: 8oCwU039iTbztFeHF8MX0cAMnmVVPjC7RinCOg69vuU=
Subject key identifier: 25:59:70:8C:2A:E1:5B:70:BA:54:18:3F:6D:B2:B6:5B:43:07:D4:B5
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 125C
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/JVlwjCrhW3C6VBg_bbK2W0MH1LU.roa
Signing time: Fri 01 Sep 2023 08:04:21 +0000
ROA not before: Fri 01 Sep 2023 08:04:21 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17709
IP address blocks: 210.63.253.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4700 (0x125c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:04:21 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=2559708C2AE15B70BA54183F6DB2B65B4307D4B5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:15:cf:c6:2b:22:da:c9:a9:b9:61:fe:e1:f5:
29:fe:0a:8a:30:ee:33:96:d7:2a:98:ed:b3:da:3e:
89:81:d2:fe:4e:35:32:fd:f8:42:a0:ae:81:d1:d4:
f1:00:20:38:e6:69:34:55:2b:f7:50:c0:fa:a9:93:
b6:ad:63:6f:f1:b0:14:4f:c5:78:7d:07:6a:81:aa:
e8:e7:31:e6:20:34:3c:cd:85:5e:97:e1:25:1e:7e:
28:88:79:b2:e8:1a:43:d3:a3:e4:7d:37:51:e9:a7:
08:4c:8c:2d:46:42:48:ca:e1:86:b4:51:39:fa:69:
87:4a:2d:18:bb:0f:a4:41:04:a2:57:13:b6:97:a7:
9c:22:fd:1e:d2:47:b6:6a:45:34:f1:7d:2f:50:52:
92:a6:b2:c9:f8:91:31:b2:76:fe:e5:38:57:13:2e:
a2:4e:9c:e8:19:3f:74:96:78:81:91:c0:3d:28:dc:
6f:e4:cc:84:11:27:62:e3:4f:91:48:1f:c5:5f:59:
5e:95:29:e4:7c:33:a3:4b:87:2c:7b:fd:73:d6:35:
20:85:14:ff:50:7c:8a:f9:82:a0:b3:30:d3:98:47:
a5:0b:aa:07:e6:6f:ba:3a:96:02:4c:94:5d:f8:df:
1d:cd:63:eb:08:12:d7:25:ac:12:bb:0b:70:a8:08:
37:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:59:70:8C:2A:E1:5B:70:BA:54:18:3F:6D:B2:B6:5B:43:07:D4:B5
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/JVlwjCrhW3C6VBg_bbK2W0MH1LU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.63.253.0/24
Signature Algorithm: sha256WithRSAEncryption
65:c2:13:82:92:94:3f:67:15:ce:ff:0d:64:2d:50:89:09:04:
bd:ef:c5:72:43:d0:81:76:af:cb:d3:0c:86:d9:6c:62:a9:bd:
3a:30:b5:14:a6:44:0a:f1:04:24:c9:72:de:4c:94:f8:7d:3d:
cc:50:d9:13:b0:7b:0f:7d:37:9d:f3:df:71:84:ff:7e:23:c8:
8f:87:20:b6:a7:57:83:7d:7d:72:e4:d8:af:c4:3d:8f:af:76:
ac:92:aa:3a:52:85:51:5c:cd:d3:84:0b:89:f4:0e:63:2a:3c:
9d:66:99:b9:6c:2b:dd:2f:38:8e:c5:d4:9f:78:42:fe:74:a8:
9e:0a:b7:5d:40:79:c5:86:fa:84:43:cb:74:e8:87:ed:55:ee:
27:b4:0c:cb:c6:a7:4f:5b:25:b8:23:8e:e0:54:39:3e:2a:24:
b7:c1:af:56:60:5b:e0:18:b6:49:3d:43:f6:ed:27:6b:ec:6b:
b5:e9:e0:20:ca:e8:e8:b2:e8:a5:9a:bd:1b:06:d3:c5:82:ca:
0a:3c:4d:6b:c9:c6:4f:02:d7:ac:63:cb:aa:d8:76:43:bd:79:
2d:26:aa:eb:7b:58:3a:7c:ae:ec:77:8a:51:6c:e4:5c:e3:cb:
06:53:21:78:a8:24:08:f1:b7:3f:ae:6d:5d:fb:6e:de:c2:40:
ca:b0:8c:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:09:14 2025 by rpki-client