Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/OSbUTFgb5uP-8Ts3MlOn2fCLEyI.roa
File: OSbUTFgb5uP-8Ts3MlOn2fCLEyI.roa (raw, json)
Hash identifier: PruebbrAfJziC1MxEmHR0lU0ZsZO0ZURlaTOQ8JsKzM=
Subject key identifier: 39:26:D4:4C:58:1B:E6:E3:FE:F1:3B:37:32:53:A7:D9:F0:8B:13:22
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0DC5
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/OSbUTFgb5uP-8Ts3MlOn2fCLEyI.roa
Signing time: Wed 29 Sep 2021 02:39:33 +0000
ROA not before: Wed 29 Sep 2021 02:39:33 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17709
IP address blocks: 203.79.248.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3525 (0xdc5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:39:33 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=3926D44C581BE6E3FEF13B373253A7D9F08B1322
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:00:33:3b:e4:15:ea:cb:66:7b:81:9f:ce:ed:
d7:ac:20:f0:ba:79:d9:ae:fd:57:6a:81:b1:f9:96:
bb:d1:a3:f9:5a:dd:4a:7f:f6:7f:df:c0:6a:cd:03:
08:3d:8b:08:d0:92:6e:45:64:1e:f8:48:c1:66:40:
00:ca:e7:ad:73:b0:f2:8b:be:3b:ec:17:6c:c6:f4:
b8:6d:41:ab:87:4f:f2:f6:74:db:8e:5f:b4:97:1a:
fa:02:f5:bf:05:aa:b9:05:0b:39:52:45:1b:d7:67:
b7:a1:13:28:5e:e6:e1:fa:62:b0:79:c1:78:bf:27:
96:7a:e2:fd:09:8f:72:c3:b3:13:7a:8c:8c:fe:ec:
8f:9e:19:9f:1d:ae:d8:86:c5:83:dc:69:02:11:1d:
70:21:ed:1c:cb:1a:7e:ed:d0:b6:83:33:b0:f8:d7:
61:7f:43:24:d1:d3:5a:a1:03:1c:3d:59:b3:1b:cf:
e9:67:c1:b3:f9:b7:a3:4a:b6:a6:75:69:b3:08:8f:
43:fd:de:ac:e8:9e:34:93:54:78:59:45:fd:ef:26:
e6:a9:69:5a:a1:15:88:54:ed:4d:ab:18:1b:9f:7a:
90:47:94:81:2a:5f:f0:18:30:5d:a0:63:79:4e:22:
76:c8:1b:80:b5:da:9d:18:a4:dc:f6:7e:7d:68:a9:
d7:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:26:D4:4C:58:1B:E6:E3:FE:F1:3B:37:32:53:A7:D9:F0:8B:13:22
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/OSbUTFgb5uP-8Ts3MlOn2fCLEyI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.79.248.0/21
Signature Algorithm: sha256WithRSAEncryption
96:32:ba:63:2f:b8:ea:de:77:e1:f1:9b:74:39:b9:1a:c2:4e:
42:ff:82:86:33:9b:c6:fc:43:4c:8d:ce:37:b8:3f:5c:d1:24:
4b:dc:7d:43:84:a0:c4:ca:ac:b6:13:49:09:ea:9f:91:ab:ff:
56:e8:42:8d:ff:e2:3b:2e:8d:b7:b9:98:f6:0d:a8:02:da:88:
14:7a:b4:92:32:4c:4d:59:5a:74:ba:b1:30:12:74:46:f0:87:
e7:91:49:5d:c9:0d:f8:e7:cb:2f:1d:2d:cf:5a:b7:ba:37:b8:
86:8a:b9:a7:38:41:c2:71:9e:d7:34:87:99:f5:6b:8e:d4:78:
61:0d:fd:e0:aa:05:07:2a:9e:9a:f3:96:df:74:ce:be:66:80:
bc:88:29:88:c5:43:04:fd:28:48:91:f1:f0:0e:2a:82:4f:da:
70:5c:71:b5:d7:19:b2:ae:a5:d2:e4:cd:f4:18:0f:7a:84:6c:
06:3a:89:2d:2e:d4:83:e8:51:67:d4:37:53:6e:49:e0:63:96:
77:46:55:57:9d:83:23:f5:30:4e:7c:b7:6c:06:46:e1:d2:3f:
9d:24:fc:39:b8:f7:ad:9d:86:03:62:29:0e:d5:aa:bc:d6:86:
61:7c:80:3d:58:dd:89:df:23:8c:3e:74:30:26:ff:9e:5c:d5:
99:b6:a0:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:02:51 2025 by rpki-client