Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/X2dieT6vuC7YEpZqg86FoNOIo7o.roa
File: X2dieT6vuC7YEpZqg86FoNOIo7o.roa (raw, json)
Hash identifier: b3dXZCxbKb9ZEDl9RVDh1Dzybg7dkGgPCldyLao6RZQ=
Subject key identifier: 5F:67:62:79:3E:AF:B8:2E:D8:12:96:6A:83:CE:85:A0:D3:88:A3:BA
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0DC9
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/X2dieT6vuC7YEpZqg86FoNOIo7o.roa
Signing time: Wed 29 Sep 2021 02:39:33 +0000
ROA not before: Wed 29 Sep 2021 02:39:33 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24154
IP address blocks: 210.200.4.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3529 (0xdc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:39:33 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=5F6762793EAFB82ED812966A83CE85A0D388A3BA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:63:b4:f1:88:6a:72:f2:8d:33:1d:12:03:a1:
06:16:f6:04:97:2d:0a:ae:9f:0b:bc:42:5f:0e:17:
db:2b:e6:b6:4b:3e:a4:94:f8:c1:08:bc:26:46:2b:
1a:8c:83:26:cf:5d:93:e6:9f:1a:de:ab:3e:17:d8:
7a:52:63:27:fa:26:7c:1e:22:b0:82:d0:e6:f0:f0:
91:a6:55:50:82:f4:75:70:3a:e8:ff:09:b8:23:76:
c7:c4:9f:51:2e:6b:0d:e8:c2:41:bb:4d:de:48:d9:
04:06:97:2c:58:8f:6c:b7:3a:e5:fb:e9:ce:3e:32:
3c:ef:f2:8f:ef:13:06:a4:1f:60:d8:2a:8e:48:7d:
e1:df:24:9e:46:a5:ef:00:4b:68:3d:df:3d:82:67:
39:9c:95:b5:4f:6e:8e:b4:5c:e0:8b:8f:ff:69:c7:
b5:ee:d6:50:16:38:21:7e:a6:0d:f5:03:e9:4e:b3:
11:8e:af:dc:3f:11:75:53:56:cc:4d:15:23:be:25:
58:a2:43:f2:0e:47:21:6b:52:27:54:d8:e0:84:45:
9b:08:1c:63:a9:a9:2e:b8:65:9b:9f:aa:e1:77:b2:
ed:86:6b:28:6c:e0:ee:c8:eb:80:ae:1c:df:54:c2:
2b:37:f0:48:98:8b:67:82:26:12:09:c1:11:ba:74:
51:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:67:62:79:3E:AF:B8:2E:D8:12:96:6A:83:CE:85:A0:D3:88:A3:BA
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/X2dieT6vuC7YEpZqg86FoNOIo7o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.200.4.0/22
Signature Algorithm: sha256WithRSAEncryption
44:60:e0:2a:eb:bd:74:81:c7:2b:cb:e7:0b:d2:70:30:41:61:
cf:44:63:a1:3d:a7:39:50:1f:61:0b:1c:47:c9:39:fe:68:af:
9c:fa:d8:bd:34:81:71:7b:57:50:36:5b:d1:a2:cd:de:e3:d8:
47:03:b0:fd:0f:44:88:cc:ed:08:25:f1:9f:d0:49:52:c2:1e:
ba:00:f1:a9:a8:a3:df:4a:99:63:29:74:e6:fe:d7:4e:ed:85:
bc:33:9b:43:17:1e:f5:ae:6b:7d:cd:c4:01:dd:1e:e0:92:e3:
d8:9d:9d:a5:0e:e5:99:08:bd:07:f9:ba:ca:b9:79:da:96:5e:
9d:10:1d:ab:9b:20:dd:6c:a6:d9:68:22:66:6f:4f:06:15:1d:
c7:44:e1:e4:0d:c0:2e:ef:57:c9:eb:de:69:83:c9:59:d8:1d:
84:d0:6f:91:1c:d9:5b:e1:4f:09:8f:17:08:c9:4c:b1:f5:a1:
f1:02:2e:d0:4c:a2:85:9a:9a:dd:ba:00:6e:ee:b0:22:2a:22:
c3:1e:b8:7d:ab:d4:7d:14:48:77:a9:1b:f7:89:9a:6d:4b:09:
47:c3:9d:dc:cf:57:65:45:68:f7:12:c4:3d:3c:2d:8f:bc:7a:
53:fb:13:13:90:be:4c:52:82:2f:e8:47:6d:56:46:86:6d:84:
db:17:b9:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:47:17 2025 by rpki-client