Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/MmqY2FpPwmPWl7QH0Py2KqyiNe4.roa
File: MmqY2FpPwmPWl7QH0Py2KqyiNe4.roa (raw, json)
Hash identifier: hNTWadaH+oH6ZhVZUQXuS3501dG0Te9YiRyUPvX2Coc=
Subject key identifier: 32:6A:98:D8:5A:4F:C2:63:D6:97:B4:07:D0:FC:B6:2A:AC:A2:35:EE
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0962
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/MmqY2FpPwmPWl7QH0Py2KqyiNe4.roa
Signing time: Tue 29 Sep 2020 10:01:46 +0000
ROA not before: Tue 29 Sep 2020 10:01:46 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 7482
IP address blocks: 203.79.240.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2402 (0x962)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:01:46 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=326A98D85A4FC263D697B407D0FCB62AACA235EE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:1e:e0:95:9b:eb:cd:e8:9e:83:ad:31:f1:bb:
a9:e1:cf:b9:80:8b:13:f0:8e:d1:14:54:7c:11:63:
6c:0d:ef:12:50:6c:6e:2d:45:13:57:f6:f8:1b:b3:
25:b0:81:e8:1d:36:96:ee:15:54:0d:d8:47:a9:ab:
59:ef:41:f5:32:e1:3c:ed:4c:98:8a:f4:84:dc:e3:
82:ff:bf:c0:1c:74:7a:0b:8e:48:cb:27:41:2c:49:
78:b5:f3:50:78:5e:94:f2:d6:da:f6:86:db:d8:86:
1d:f1:3c:d3:c9:e9:78:1c:59:7f:43:fa:bb:7a:ba:
9a:c0:5d:07:11:70:08:a2:73:19:90:40:f7:06:a2:
34:5d:ba:8e:85:32:88:7d:f2:c0:ce:9e:0f:cb:f9:
c1:13:a0:03:df:ba:b6:1f:b5:05:15:b8:8f:11:ee:
db:02:a4:7a:5c:49:bc:0d:77:7e:2d:c9:1a:1a:8b:
01:a4:02:bf:93:e9:39:f2:ca:03:c7:c3:a0:d1:a6:
af:cb:2d:99:31:09:ec:cb:85:96:44:ed:86:5c:63:
9c:89:02:2b:84:b4:14:7e:07:45:f3:8f:ba:8a:a9:
2d:78:c8:ac:ae:d1:31:77:a6:77:b0:22:41:f8:86:
21:19:4b:a6:93:74:4f:24:70:70:bf:1b:b6:64:a9:
f3:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:6A:98:D8:5A:4F:C2:63:D6:97:B4:07:D0:FC:B6:2A:AC:A2:35:EE
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/MmqY2FpPwmPWl7QH0Py2KqyiNe4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.79.240.0/21
Signature Algorithm: sha256WithRSAEncryption
9c:0c:90:d9:c5:1d:5e:94:fc:93:00:1d:cb:ae:7b:0c:f9:f7:
0c:a4:25:f2:23:11:d8:3c:32:8c:56:d0:29:fa:ce:1e:b5:ad:
04:d2:24:b6:e8:c4:31:a6:4f:c2:9e:73:cb:97:16:5e:8a:3f:
b1:f4:c0:3b:bc:0f:21:8c:8c:a7:f2:80:b9:32:9e:fb:79:32:
51:3d:7a:89:84:9f:e9:57:9f:c9:36:78:2b:e9:18:94:cc:c1:
ec:cf:1f:93:3b:7b:b3:0c:39:cd:a7:39:92:f1:fd:2a:71:19:
b0:fe:25:cf:31:63:6d:ac:13:af:e6:53:4f:57:6f:f1:5a:88:
e5:56:3b:8a:4f:23:a1:cb:97:3f:c1:ec:3e:51:cc:03:9d:5b:
08:5a:3f:ff:6c:be:0e:03:78:64:cd:76:1a:e7:82:de:99:4d:
a4:a8:ff:59:3b:33:34:87:6b:13:b2:49:8b:ff:3a:97:ea:fa:
fd:96:78:41:ca:e4:96:54:0d:1c:cd:5f:9c:68:80:8c:37:ca:
2b:95:da:bf:72:ce:14:ad:09:d5:7f:d6:7b:74:1c:08:89:30:
13:1e:49:6c:24:69:06:5b:da:e4:88:38:cd:60:be:9f:03:73:
ac:20:c0:52:bd:92:71:29:31:49:51:25:1e:9f:af:56:bb:be:
3d:cb:c3:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:08:25 2025 by rpki-client