Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/ZGXTtS_S49Jbm-DbbuTUgiTFIA8.roa
File: ZGXTtS_S49Jbm-DbbuTUgiTFIA8.roa (raw, json)
Hash identifier: 2rRjMVmr6hwnTuzTxJgpVM1/MgOtswCGigIOE1k9Mwk=
Subject key identifier: 64:65:D3:B5:2F:D2:E3:D2:5B:9B:E0:DB:6E:E4:D4:82:24:C5:20:0F
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0DF6
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/ZGXTtS_S49Jbm-DbbuTUgiTFIA8.roa
Signing time: Wed 29 Sep 2021 02:39:48 +0000
ROA not before: Wed 29 Sep 2021 02:39:48 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17709
IP address blocks: 210.58.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3574 (0xdf6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:39:48 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=6465D3B52FD2E3D25B9BE0DB6EE4D48224C5200F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:1d:0f:f8:85:17:7b:98:93:3d:e0:4a:e0:e5:
c4:4b:ad:0a:42:c3:f0:29:73:9a:36:40:07:c0:7f:
8f:79:19:a4:fe:76:20:0e:83:95:c2:4e:ca:ce:b4:
aa:1a:03:0e:f6:68:b3:f5:e6:1d:b7:e1:e4:13:b8:
d5:31:fb:b6:e4:ab:9a:da:3a:f0:23:99:2d:51:05:
b7:8e:2b:12:88:e0:da:41:97:09:ef:25:d0:ce:e6:
c2:b1:9d:83:72:fb:eb:14:ea:ce:e2:c9:c8:d0:60:
a4:52:ca:1a:c0:65:b5:a7:15:48:9d:1c:02:78:c4:
b5:d6:71:cd:87:51:0b:57:97:ee:02:77:2d:31:00:
7e:85:d2:34:b8:54:76:11:fb:8a:e0:7f:64:2d:78:
1c:1f:4c:92:d7:b2:6d:82:a6:6d:83:c1:7d:a1:5c:
e2:4c:19:39:d1:da:24:83:6f:a9:b2:dc:63:22:70:
63:f8:c6:50:f7:f5:89:7f:d2:e8:67:7e:d7:63:9a:
41:2e:b4:c3:36:0e:a0:73:ea:47:aa:b1:48:24:66:
08:e0:a9:2d:08:ec:af:2d:24:67:12:32:05:1e:8c:
d2:77:e0:4a:70:74:50:a9:8b:80:10:bb:52:fc:4a:
35:22:50:9b:99:e9:dd:32:17:b9:dd:16:4f:7f:c7:
11:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:65:D3:B5:2F:D2:E3:D2:5B:9B:E0:DB:6E:E4:D4:82:24:C5:20:0F
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/ZGXTtS_S49Jbm-DbbuTUgiTFIA8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.58.0.0/16
Signature Algorithm: sha256WithRSAEncryption
08:1d:53:a3:0d:3a:3b:25:ea:62:6d:74:0f:55:04:b6:4e:ea:
bb:85:49:45:dc:fa:86:ad:d4:33:5e:ac:bd:bf:97:33:ad:09:
d4:41:86:aa:eb:94:58:32:c8:a0:42:65:71:0f:a4:ae:42:88:
2f:13:9e:7c:ca:bc:02:cb:e3:e0:77:49:e8:46:c3:7b:b3:4e:
5d:23:24:8e:f6:46:6a:43:61:85:d4:f3:d9:45:6f:28:e5:c7:
4f:02:cb:ac:ca:73:95:77:31:4e:dc:e7:34:8a:94:f1:72:25:
1b:16:19:28:10:3e:91:6e:6f:24:92:55:ed:ac:89:65:ba:a1:
1b:82:1e:68:0c:1b:60:ef:b9:d2:2b:53:df:95:46:1f:97:53:
63:95:c3:a4:b2:6a:e8:a2:8b:57:2f:96:64:e1:60:62:89:d2:
37:6d:64:ac:f5:90:1b:a7:63:30:36:20:9b:24:9a:10:22:bb:
ee:92:e1:64:44:a3:b6:97:6d:35:db:fa:42:22:ae:ad:39:24:
7b:73:dd:c6:a7:06:b8:e2:97:c4:f4:1d:a4:24:45:34:0d:66:
1f:6f:23:dc:b2:4d:d9:40:ed:a1:1d:95:24:d2:30:96:9b:ad:
12:36:0d:99:57:d5:49:de:91:70:ae:c9:0b:71:5f:35:ea:d4:
a9:46:c7:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:09:20 2025 by rpki-client