Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/aWD5v6Hpw_mLmuApbw4ZIh-dRmM.roa
File: aWD5v6Hpw_mLmuApbw4ZIh-dRmM.roa (raw, json)
Hash identifier: IQPTI8HdAS5K5ynOYuMjxBv+u0AhCimq1Wo2sf1Mgi8=
Subject key identifier: 69:60:F9:BF:A1:E9:C3:F9:8B:9A:E0:29:6F:0E:19:22:1F:9D:46:63
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 12C0
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/aWD5v6Hpw_mLmuApbw4ZIh-dRmM.roa
Signing time: Fri 01 Sep 2023 08:04:57 +0000
ROA not before: Fri 01 Sep 2023 08:04:57 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 7482
IP address blocks: 210.58.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4800 (0x12c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:04:57 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=6960F9BFA1E9C3F98B9AE0296F0E19221F9D4663
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:be:55:bd:89:36:89:c7:22:74:f0:dd:9b:c6:
fa:42:a4:0c:89:77:5c:e0:e8:1c:af:5c:fa:23:a2:
1d:0a:19:ec:be:5d:72:a8:a2:a3:e6:f6:f5:3b:6d:
8a:fb:d4:43:8f:39:de:be:2b:8a:cb:b7:ba:a4:d6:
e9:6c:35:b7:42:b0:05:96:9d:fb:15:8e:3a:86:92:
b3:a9:0a:68:96:39:64:18:8f:85:00:35:48:b6:94:
3d:9f:3a:fc:a3:9a:6e:9f:81:37:02:91:77:a3:1a:
8e:8d:82:5d:05:51:ae:1d:ef:41:5c:5c:94:cc:9c:
24:be:a2:25:42:98:2c:f1:fb:32:e1:c8:fa:79:2c:
f3:04:5c:3b:4f:10:c2:6b:a4:48:46:a7:e5:2a:d7:
9e:f4:a5:a8:c8:77:0b:2b:55:8a:80:ad:62:e8:79:
6e:d1:6d:c3:bf:4f:12:f2:e1:9b:4f:86:92:2a:8b:
80:13:0f:6f:01:9e:8b:fd:44:da:59:68:71:f3:a5:
e2:fd:d7:27:76:57:9a:46:08:06:bf:a4:bc:3d:a8:
41:92:25:82:b5:cb:06:fc:a7:2d:3a:cc:da:4a:bf:
5c:35:45:34:7b:92:8d:07:f9:3e:c9:f6:34:da:77:
64:e3:97:26:cf:05:5c:cf:15:43:8d:66:15:45:b7:
95:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:60:F9:BF:A1:E9:C3:F9:8B:9A:E0:29:6F:0E:19:22:1F:9D:46:63
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/aWD5v6Hpw_mLmuApbw4ZIh-dRmM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.58.0.0/16
Signature Algorithm: sha256WithRSAEncryption
0d:bb:6f:77:2c:f6:2e:3a:09:77:df:dd:01:14:23:1a:5f:52:
60:41:e5:47:d5:81:47:fb:e2:51:92:b7:3c:a1:03:ad:9b:7e:
4d:9b:92:a7:b6:93:27:97:79:f6:45:91:aa:e1:c9:3c:44:82:
29:03:b7:55:58:b4:3f:5a:4f:dd:be:1f:fd:0e:5b:fd:6e:af:
69:23:0e:62:43:8b:d0:c2:49:9d:f1:49:f2:25:20:b6:b3:25:
ca:92:1f:c8:4e:ac:8c:c1:eb:d3:0a:d7:1f:f7:2a:86:9a:d0:
f5:eb:53:ed:ec:0c:67:86:69:d7:2a:2b:34:36:02:2b:0e:c0:
ad:e9:6b:ff:c9:41:7c:66:02:1d:e5:ae:8a:ad:3c:76:16:df:
a1:8b:8f:f6:11:38:29:78:59:f7:e4:5a:98:45:dd:07:76:6f:
c7:9f:3d:82:89:79:6f:f6:4a:02:6a:e1:f6:a1:a8:40:57:73:
02:e5:84:67:3c:84:65:78:40:08:c1:3f:2f:ae:bf:a9:11:a1:
d2:92:0b:c3:2c:b4:7c:20:92:7e:ce:10:6b:33:d7:57:ba:cb:
3b:13:70:44:13:26:a0:6b:7a:12:80:1b:33:b9:07:3b:67:7c:
b1:03:f5:43:c6:3a:8a:f3:dc:f1:62:61:e3:49:50:bf:02:6a:
b5:6d:05:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:41:50 2025 by rpki-client