Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/ZsG8kXREpDP1dX9DKNaiSKh3O5A.roa
File: ZsG8kXREpDP1dX9DKNaiSKh3O5A.roa (raw, json)
Hash identifier: ZvPOl5zpRZ3sw+JBV17ob9Rx4UsmpsOpmJvMdTYguK4=
Subject key identifier: 66:C1:BC:91:74:44:A4:33:F5:75:7F:43:28:D6:A2:48:A8:77:3B:90
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 12B0
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/ZsG8kXREpDP1dX9DKNaiSKh3O5A.roa
Signing time: Fri 01 Sep 2023 08:04:51 +0000
ROA not before: Fri 01 Sep 2023 08:04:51 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17709
IP address blocks: 210.201.72.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4784 (0x12b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:04:51 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=66C1BC917444A433F5757F4328D6A248A8773B90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:0e:34:5b:ff:99:57:0e:d8:20:8f:d2:c9:8b:
99:50:3d:88:5d:4b:33:8a:09:4e:1d:89:b9:64:0e:
05:c0:46:08:2b:a1:7e:3a:23:a1:98:f9:55:cd:ff:
a7:e0:61:31:4b:a8:62:29:be:ca:32:92:12:1c:5d:
ce:8c:e9:f3:58:ae:b9:fa:75:58:7f:fe:1b:64:b2:
f1:66:d9:b7:1a:30:be:8a:c5:2d:87:53:03:da:b8:
9a:b2:d0:7a:92:b9:b6:4b:23:4b:66:53:c5:84:2f:
a4:41:a3:a7:69:03:63:fc:18:56:46:0d:00:bb:00:
6e:fe:7d:5a:62:d7:b3:ff:67:d6:7b:14:c2:ec:de:
ee:89:e1:90:b0:81:6f:ea:36:e7:88:cc:60:c1:7a:
e0:30:23:a5:3e:44:93:8d:ca:7f:af:37:18:1f:dd:
35:ed:c5:7c:83:de:6a:3f:c7:c0:44:18:97:48:19:
25:ad:5d:47:12:d1:fa:0d:89:0a:d5:91:04:1f:6e:
23:94:fa:ce:41:12:5c:04:2f:c1:9b:7a:6e:42:9a:
39:da:46:44:38:c5:13:e5:d3:ff:2c:4f:58:cb:8d:
b5:8a:52:7e:d9:93:ac:cc:2d:c9:03:27:4d:1e:1f:
8c:91:d4:56:4f:ae:92:69:c6:bd:3a:39:6c:c0:3c:
a6:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:C1:BC:91:74:44:A4:33:F5:75:7F:43:28:D6:A2:48:A8:77:3B:90
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/ZsG8kXREpDP1dX9DKNaiSKh3O5A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.201.72.0/23
Signature Algorithm: sha256WithRSAEncryption
a1:55:25:5c:e0:58:a3:c5:ff:2b:5b:90:21:63:bd:0f:70:88:
49:00:5b:9a:a4:34:db:a6:3e:c8:7e:aa:7c:53:62:49:64:7e:
5d:17:dc:8b:3b:5d:e1:c2:b4:c0:3e:15:ee:85:2d:ce:8d:e2:
62:58:43:fe:14:0d:7f:0a:03:13:51:ea:14:94:17:24:fe:31:
18:ef:6d:71:1d:93:11:6a:94:4e:56:8b:86:7d:eb:a2:da:03:
9c:b5:68:d2:00:36:7f:f4:2a:bc:86:c9:63:13:3c:ee:a2:ea:
f3:67:19:c2:8b:77:d0:a7:06:87:69:f7:e5:f9:75:1a:d5:35:
f6:44:27:fc:69:91:18:b5:c7:27:3e:29:eb:05:b3:85:0f:15:
de:c9:e9:52:75:ae:46:75:10:f3:0e:99:68:07:80:9c:de:d7:
e1:ac:4a:c0:47:1a:6f:3c:35:5e:a5:91:1c:a5:8f:ff:66:14:
3e:5f:c0:4a:ce:0d:e8:e5:64:f4:47:c6:ce:5c:45:d2:1b:a8:
08:6e:f1:2d:5d:09:61:5f:1d:15:98:3b:1a:01:0c:c4:c9:0d:
82:07:4f:80:2c:85:45:71:70:8a:ac:f8:ef:9c:44:12:b0:2f:
78:e5:54:80:81:f5:54:d3:19:70:41:3a:6e:99:f3:25:71:79:
fe:b4:9e:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:57:28 2025 by rpki-client