Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/ekqdpaY5z6BHupIYjqOfICjcb_o.roa
File: ekqdpaY5z6BHupIYjqOfICjcb_o.roa (raw, json)
Hash identifier: Zl3tL2ba0E9fnrJQRFA2hOgH0bA2DiduQZ1gzjxYz8s=
Subject key identifier: 7A:4A:9D:A5:A6:39:CF:A0:47:BA:92:18:8E:A3:9F:20:28:DC:6F:FA
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 08ED
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/ekqdpaY5z6BHupIYjqOfICjcb_o.roa
Signing time: Tue 29 Sep 2020 10:01:15 +0000
ROA not before: Tue 29 Sep 2020 10:01:15 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131142
IP address blocks: 210.200.80.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2285 (0x8ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:01:15 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=7A4A9DA5A639CFA047BA92188EA39F2028DC6FFA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:8e:98:b1:21:a5:2f:5f:1d:f0:a7:1e:f6:e4:
78:32:c7:19:ea:21:69:fa:00:b1:40:76:1f:49:c3:
d7:3f:20:83:85:ee:77:a7:43:9e:63:51:74:9d:1c:
d7:76:15:5b:66:b6:2c:7a:35:6c:3d:d2:36:ec:17:
c8:85:ed:01:47:31:03:e5:1e:d2:3f:bb:7c:03:42:
e9:6a:07:87:20:c6:c8:1a:1a:c2:00:3c:4c:3e:97:
b8:a7:ba:f0:d6:80:85:5c:14:80:5a:b7:2c:c6:71:
f4:01:6f:3d:57:14:66:06:5e:e1:7c:8c:fd:91:16:
e2:e1:d5:db:f9:b6:b9:50:3c:51:03:b8:2c:20:cc:
8a:c5:00:bf:bc:91:2a:c7:4b:87:a3:16:80:bd:4c:
5a:8d:e6:75:8c:6b:5c:63:89:c7:a8:bf:7e:ed:03:
8c:2e:17:53:f3:0d:c6:b1:71:e4:a6:ef:5c:c4:33:
3a:f5:82:56:85:98:8a:c3:cf:c0:0e:e0:f8:f9:bf:
bc:76:3e:19:51:b2:e1:50:b2:7a:0b:75:ad:c1:c6:
8f:c7:32:d2:a3:e7:c9:ef:94:5a:cd:f8:5f:4c:39:
68:c4:29:09:34:5d:38:fe:8d:a7:56:d0:0d:ae:a9:
b7:10:6c:f0:26:ea:8f:be:bf:d9:b7:a9:b3:4a:db:
f3:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:4A:9D:A5:A6:39:CF:A0:47:BA:92:18:8E:A3:9F:20:28:DC:6F:FA
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/ekqdpaY5z6BHupIYjqOfICjcb_o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.200.80.0/22
Signature Algorithm: sha256WithRSAEncryption
87:0f:57:b3:7b:4d:b0:1d:c3:f4:44:52:01:81:ec:87:14:1c:
bf:fa:6e:5f:1a:9f:4a:e2:53:f4:3b:fd:5f:fa:26:2a:45:6a:
84:eb:24:cb:01:d4:37:c1:04:94:92:22:99:a8:4d:28:ec:13:
95:1c:ff:5b:74:54:b3:b2:98:ea:87:f6:40:2f:98:30:c1:35:
25:46:d8:43:01:df:76:a9:53:98:c3:fb:99:47:25:a3:6f:9c:
1e:a1:84:f0:02:0a:d9:1b:97:5f:bd:56:61:c4:bb:f8:7b:8c:
dc:3f:68:12:e7:08:45:88:79:07:86:4b:8a:f8:16:2a:df:49:
7c:e4:b6:8d:00:2f:3f:d5:4b:ab:d6:45:b5:c1:64:83:54:eb:
56:c8:6e:ae:c4:b5:4d:72:bd:0b:2b:8f:6b:52:5c:78:e3:be:
17:0b:df:d1:78:ff:1f:15:eb:ed:a2:43:c7:ff:a1:0e:7e:db:
15:5f:70:bb:07:e7:34:67:7c:21:1b:24:0e:60:8b:ec:94:31:
ab:77:69:1c:b3:72:0f:5c:69:9c:99:34:1d:16:c0:3a:e9:dd:
8b:7a:be:8d:9c:dc:38:47:95:3b:c0:d0:58:a4:0f:39:71:63:
18:8d:ad:94:af:7d:ef:21:76:88:0b:8f:e1:bb:d8:d2:a3:13:
53:c4:fa:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:39:20 2025 by rpki-client