Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/MC5NpnBUoOdOmjyqyvdbG2iX2kg.roa
File: MC5NpnBUoOdOmjyqyvdbG2iX2kg.roa (raw, json)
Hash identifier: 3qGWoaQzaE4qEcWmAvnVn2d87I80RHsyBPI2VHW86N0=
Subject key identifier: 30:2E:4D:A6:70:54:A0:E7:4E:9A:3C:AA:CA:F7:5B:1B:68:97:DA:48
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0DD3
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/MC5NpnBUoOdOmjyqyvdbG2iX2kg.roa
Signing time: Wed 29 Sep 2021 02:39:36 +0000
ROA not before: Wed 29 Sep 2021 02:39:36 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9311
IP address blocks: 210.200.106.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3539 (0xdd3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:39:36 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=302E4DA67054A0E74E9A3CAACAF75B1B6897DA48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:bb:ad:17:9f:d2:8b:15:ff:e6:dd:d8:c6:69:
11:32:bd:92:c0:17:41:a0:33:72:b9:6d:db:82:f2:
bf:27:b0:3d:70:c9:1a:93:52:45:71:c0:8c:b9:8d:
8d:47:9b:21:84:df:98:d7:5a:1f:c9:83:bd:41:90:
9a:f3:5d:95:9c:f3:77:7b:cd:6e:06:39:3f:c9:cd:
7e:95:76:4a:54:e8:69:b6:6c:ef:03:e7:af:a5:7c:
6d:c5:a8:93:2f:26:cc:37:ea:cf:2c:87:54:aa:77:
0c:82:ea:e2:23:06:3b:fd:a7:1f:2c:dd:f5:94:33:
5e:0c:a6:b8:a9:94:1c:0f:01:4d:bf:c2:b2:65:22:
3c:12:0e:f6:9c:16:cc:ac:16:5c:af:7d:5f:12:c3:
fc:fa:f7:20:95:7f:d4:ce:75:27:41:a3:41:4b:7d:
a8:60:16:22:0d:a8:5c:79:ef:b1:5d:cc:80:3a:32:
3f:c8:27:0d:95:10:41:16:54:61:0c:26:3e:e0:c5:
80:bf:43:b4:77:a6:b3:16:96:cf:cb:96:2c:71:6b:
f4:dc:df:54:24:b7:09:32:d0:bf:c7:b3:49:cb:22:
00:fe:5f:bf:d9:16:4f:71:45:4f:ea:86:ee:4f:11:
f0:4d:6c:f4:80:4d:fb:81:81:2b:a8:0d:62:52:a1:
fe:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:2E:4D:A6:70:54:A0:E7:4E:9A:3C:AA:CA:F7:5B:1B:68:97:DA:48
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/MC5NpnBUoOdOmjyqyvdbG2iX2kg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.200.106.0/24
Signature Algorithm: sha256WithRSAEncryption
21:f5:66:65:fb:23:de:a4:b9:e8:f8:c4:ca:70:a5:53:45:a6:
14:2b:16:96:26:04:96:b1:47:93:3f:84:0b:91:57:51:84:14:
c8:fa:b4:df:24:0e:07:2c:8f:92:6d:e4:12:73:dd:4d:1c:67:
0e:4e:d2:89:7b:32:50:a5:3f:c8:68:11:d6:21:53:7d:bb:5a:
7a:0b:04:8a:40:a1:7a:b2:1e:55:c2:b1:29:50:50:31:ad:43:
b5:b3:b5:7a:bb:f5:5a:7a:6d:29:28:25:82:89:cb:3e:63:1f:
99:a4:34:ca:24:da:31:8e:49:8f:20:14:26:56:73:4e:22:0f:
92:39:c6:ee:aa:5f:e2:34:70:e6:c4:2a:71:df:53:c4:80:dd:
cd:8b:93:fc:c7:e5:cf:eb:72:f7:1c:df:52:09:92:fe:95:68:
63:06:9d:4a:3d:9a:8b:19:ca:b7:6c:75:57:13:b0:e5:c6:8f:
cc:63:20:73:5f:03:a3:67:a0:b7:4d:d3:ac:f0:bd:80:c7:ac:
dc:94:71:15:35:fa:ee:73:0d:f2:6f:36:f2:fe:60:e8:fb:1a:
ff:7c:7a:fb:31:30:7f:0c:a6:d5:f0:e7:03:7e:27:2b:2c:b6:
48:3b:9f:f2:90:da:e2:c3:4e:47:f6:ed:a7:70:9e:11:2b:49:
7e:94:26:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:39:55 2025 by rpki-client