Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/a9fpB7WRy-rZ-hUS7XpI7WVBDuc.roa
File: a9fpB7WRy-rZ-hUS7XpI7WVBDuc.roa (raw, json)
Hash identifier: ckbIAq0WfUQf9aaSBiWjJAGQxpRwKGnK4qdgJPAAf2A=
Subject key identifier: 6B:D7:E9:07:B5:91:CB:EA:D9:FA:15:12:ED:7A:48:ED:65:41:0E:E7
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0DF7
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/a9fpB7WRy-rZ-hUS7XpI7WVBDuc.roa
Signing time: Wed 29 Sep 2021 02:39:48 +0000
ROA not before: Wed 29 Sep 2021 02:39:48 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9311
IP address blocks: 210.58.96.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3575 (0xdf7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:39:48 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=6BD7E907B591CBEAD9FA1512ED7A48ED65410EE7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ad:b6:75:0a:36:1d:ce:f7:e5:3f:46:95:8b:
54:96:76:75:a9:cb:e5:da:f0:77:f3:fb:50:7a:14:
3c:6b:c2:de:48:83:31:64:2d:89:bc:c4:8d:d1:f5:
4e:02:c0:ad:46:04:2a:24:58:44:2a:88:ae:de:b4:
34:b3:0b:f8:da:6b:63:59:74:dc:88:67:43:53:e1:
4a:5f:34:f5:94:49:ac:55:92:a2:b9:9e:89:fe:66:
77:62:fe:b1:b3:8b:3f:a9:8d:e8:66:50:52:bc:4f:
49:97:91:a6:fe:a6:6c:f5:7e:74:73:06:a8:79:df:
65:92:4a:77:16:2c:80:a7:d5:1e:43:53:c4:5c:97:
9f:e2:c1:7d:88:3f:9f:0d:1e:57:da:40:d2:19:c8:
6b:1f:83:6c:66:f4:9f:30:22:08:0e:8b:eb:a0:df:
ca:b5:6b:86:ba:f2:d8:6e:fa:72:99:44:8c:09:81:
1e:ec:4e:ac:3d:56:5d:f4:f1:47:6d:8f:f0:71:5f:
03:db:68:34:0f:63:51:35:9e:a5:ee:75:33:95:fc:
0d:29:21:68:c1:58:6b:7f:be:6b:67:c7:5d:3e:a6:
18:79:f3:90:84:2c:88:32:bb:81:c6:8e:a0:c9:54:
d7:ca:10:9c:06:e2:24:2d:ff:4f:60:b0:b5:c6:c2:
60:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:D7:E9:07:B5:91:CB:EA:D9:FA:15:12:ED:7A:48:ED:65:41:0E:E7
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/a9fpB7WRy-rZ-hUS7XpI7WVBDuc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.58.96.0/21
Signature Algorithm: sha256WithRSAEncryption
27:c8:9e:fa:16:31:20:22:ab:e3:64:0f:40:01:53:04:c7:58:
8a:1b:df:c8:e3:52:f6:65:6d:c8:f6:8b:7b:db:45:a9:45:67:
2a:92:20:26:cb:ce:07:7e:ba:f6:5b:24:84:df:69:da:43:4f:
9e:03:9b:75:9f:aa:76:17:46:7f:5f:4b:2b:c0:53:8f:df:50:
86:23:7a:6f:9b:60:ef:d1:38:e6:c6:b8:d9:14:95:0d:99:96:
77:c2:79:74:70:8e:94:38:b1:58:46:6f:ce:7c:c6:68:f7:45:
a6:2f:a5:80:65:63:92:45:9d:e3:65:da:5c:44:04:03:24:fd:
bb:26:8e:76:e9:9e:0b:d5:f5:c6:0e:93:1c:67:92:06:59:01:
07:91:0f:e2:f6:9c:2f:fe:a6:18:6b:c4:2c:d7:b8:6a:5f:f3:
23:69:d4:b6:57:40:6e:00:18:c3:97:0e:a9:be:3c:9b:f1:4d:
dc:2a:07:55:d3:41:6d:50:37:51:87:60:05:e2:90:30:5c:7b:
21:87:d7:55:57:b6:7f:f3:59:55:62:07:75:fc:6f:ca:2b:37:
48:ba:50:83:68:be:80:e5:6e:72:29:58:17:aa:d2:b2:6d:90:
12:a8:d1:e3:99:bb:03:e6:f0:59:1b:5d:3f:6e:56:77:44:93:
2d:a6:db:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:57:32 2025 by rpki-client