Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/deR5fFIRQGl4HZ9CKMfQ3ZHtpco.roa
File: deR5fFIRQGl4HZ9CKMfQ3ZHtpco.roa (raw, json)
Hash identifier: SdKnW+NS3ghDbzbwgCTZY0Z4aSp3ci1dVFJFd6o02LU=
Subject key identifier: 75:E4:79:7C:52:11:40:69:78:1D:9F:42:28:C7:D0:DD:91:ED:A5:CA
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0935
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/deR5fFIRQGl4HZ9CKMfQ3ZHtpco.roa
Signing time: Tue 29 Sep 2020 10:01:35 +0000
ROA not before: Tue 29 Sep 2020 10:01:35 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131597
IP address blocks: 218.35.64.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2357 (0x935)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:01:35 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=75E4797C52114069781D9F4228C7D0DD91EDA5CA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:fc:3b:68:e2:9c:51:9e:70:bb:17:f7:04:e2:
d3:5e:88:9c:c4:46:9d:f2:0c:b4:c7:0d:b6:c5:b7:
b7:f1:f5:32:ca:8f:78:fd:b4:df:75:82:fe:57:ba:
1f:51:ed:d1:21:f5:e2:60:0d:07:ea:87:a6:db:0d:
0c:d1:76:f2:80:39:c5:9f:e2:15:2f:cb:43:e9:fb:
0b:46:c1:93:fe:c1:20:44:c4:f8:c0:ed:6a:eb:3f:
fd:11:b5:e6:39:59:69:82:56:b1:ef:34:b1:b7:aa:
cc:37:dd:47:71:db:48:7b:f7:87:e0:1d:ab:78:4d:
d3:73:8d:b5:cd:18:db:68:67:05:83:50:2d:1a:95:
c6:c6:96:3c:57:07:b8:46:d0:72:0f:8b:fd:00:a7:
8a:cd:0a:56:5e:cc:bb:52:ca:a1:0f:65:94:97:f5:
58:4e:7b:b6:e8:8f:8d:35:9b:b9:7e:94:bd:3b:b0:
ef:2c:6e:97:b5:bb:57:cf:b7:1c:eb:c0:a7:b0:c2:
66:94:23:7e:a7:fc:42:69:4e:4e:78:14:a6:09:b1:
82:b4:a5:0e:c2:df:be:9e:7c:59:33:8f:66:f3:ed:
68:3d:46:ef:5e:e2:ed:86:23:a1:0f:ea:5e:02:70:
e5:9e:6a:a2:99:87:d6:b0:47:7d:a4:25:c1:12:8e:
39:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:E4:79:7C:52:11:40:69:78:1D:9F:42:28:C7:D0:DD:91:ED:A5:CA
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/deR5fFIRQGl4HZ9CKMfQ3ZHtpco.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.35.64.0/19
Signature Algorithm: sha256WithRSAEncryption
0c:89:ff:cb:ab:f8:88:00:bc:7b:bc:b6:91:82:11:91:b7:2f:
29:11:da:46:f6:d5:67:26:3a:3e:ab:c4:54:cf:26:8d:a3:0f:
51:b4:f0:0c:b5:3b:11:6f:11:af:c2:24:9a:84:6d:9f:20:49:
ff:3a:3b:2d:6b:d0:3c:5a:9d:82:5a:dc:1b:7b:f2:d8:c6:3b:
54:26:8b:83:45:22:cc:41:3f:7c:e6:eb:8d:27:d3:27:03:b6:
90:42:45:23:fd:b1:f6:b4:57:39:fb:ed:71:fe:9e:43:1f:fa:
93:3f:84:74:03:8b:04:62:15:36:32:27:45:20:e2:1d:03:ea:
a8:ae:f7:3b:96:c5:56:5b:52:80:6a:28:ac:fc:0f:d6:10:d9:
02:85:93:35:b0:34:fc:97:00:74:fe:8d:93:a1:61:cd:67:2f:
85:a8:be:7c:71:b6:e1:7d:31:d4:85:35:b4:35:95:7c:7d:a9:
37:d6:85:9c:86:55:07:07:0c:93:d7:96:b1:01:22:32:b0:30:
6f:df:84:d5:c2:40:d5:39:3f:81:ab:08:e4:46:98:0d:71:87:
81:b6:22:92:0c:db:a2:0e:d3:6d:40:af:72:cf:00:59:1a:e9:
f8:36:1f:8e:28:0c:b9:f8:c6:5f:81:fd:74:47:80:f0:bd:8c:
4c:33:29:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:00:37 2025 by rpki-client