Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/hFLJAzvi9YiwDoe8U5BkIz7svTo.roa
File: hFLJAzvi9YiwDoe8U5BkIz7svTo.roa (raw, json)
Hash identifier: g5vNx+5v6qIB+PZRpM5GSDwPpYjI/mG2HJuABSdXL7Q=
Subject key identifier: 84:52:C9:03:3B:E2:F5:88:B0:0E:87:BC:53:90:64:23:3E:EC:BD:3A
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 10D9
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/hFLJAzvi9YiwDoe8U5BkIz7svTo.roa
Signing time: Tue 16 May 2023 08:36:43 +0000
ROA not before: Tue 16 May 2023 08:36:43 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17709
IP address blocks: 218.35.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4313 (0x10d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:43 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=8452C9033BE2F588B00E87BC539064233EECBD3A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:f9:7a:a5:0c:69:0d:aa:68:58:29:c0:f4:bf:
26:44:3f:ac:26:c8:2f:3f:02:fb:c9:f9:bc:69:90:
6f:44:12:73:a9:7e:59:da:8f:58:54:ba:77:89:59:
36:24:22:53:4d:5b:a9:6d:ac:df:ad:3a:09:d1:e0:
75:07:6d:17:e2:3c:4e:32:59:28:fe:40:1d:ea:c8:
d9:d5:07:ec:20:be:bb:64:4b:18:8e:f2:3d:05:61:
66:f3:e5:44:c8:7b:b1:ca:c6:23:4e:e2:06:33:38:
87:90:00:be:f5:12:3c:76:a9:3d:2e:8e:12:3a:81:
f3:89:52:40:51:2b:6a:03:03:ae:7d:d5:99:4b:06:
b8:e1:29:f7:82:a6:eb:58:23:fd:b3:2e:7c:fc:24:
81:8c:8b:5b:69:84:05:64:ed:61:74:80:e1:50:f9:
61:31:f4:e6:36:ec:ed:62:80:0f:dd:44:e8:a1:ed:
ac:b9:5b:d2:d4:dc:a9:9c:7b:15:19:60:75:dc:2d:
0d:44:38:ef:b2:37:f9:ab:76:44:fc:11:6d:a2:df:
c0:59:9d:06:a9:94:57:2c:6e:37:24:9b:0f:30:e1:
30:43:2e:a0:5a:a2:3b:19:4d:92:9d:29:30:2e:3c:
82:ac:5f:a2:f8:5a:a4:ff:ff:71:be:9e:9d:fe:5d:
5c:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:52:C9:03:3B:E2:F5:88:B0:0E:87:BC:53:90:64:23:3E:EC:BD:3A
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/hFLJAzvi9YiwDoe8U5BkIz7svTo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.35.0.0/16
Signature Algorithm: sha256WithRSAEncryption
05:51:f4:d9:b1:b7:fc:4d:2a:1f:de:16:86:8c:22:c1:d0:73:
ce:a4:cf:f5:ae:24:ef:74:9d:3a:40:d1:48:2b:4a:98:53:e0:
b1:8e:32:6e:ae:ab:fe:d3:f6:7a:fa:97:32:a4:bf:3c:41:18:
c5:7c:91:f0:de:06:c7:05:13:d2:db:c1:53:5a:53:df:cc:3b:
12:e1:0e:b8:ff:ba:10:22:0e:87:72:90:e0:04:cd:05:b8:1e:
10:e0:2d:c4:1b:fb:f2:1e:91:dc:b9:c2:ee:58:c5:99:9b:ac:
ec:e1:70:22:25:be:20:b7:41:c1:ce:b1:c3:48:de:8c:20:f8:
82:cd:75:40:2a:c6:6d:b6:fc:b8:e5:8b:99:5b:a5:c3:57:99:
93:e2:7f:cf:a5:28:17:c3:b2:a6:49:d7:09:c3:a2:12:d6:eb:
e3:a6:16:19:e9:f1:40:9e:93:18:c5:19:45:90:50:2e:1d:f2:
dd:3f:4e:bc:b7:67:2b:af:36:75:2e:06:94:ab:1f:32:d4:37:
02:3b:35:46:86:27:d7:f9:5c:98:83:09:c9:f6:e1:b9:ed:8c:
15:ac:15:18:95:4d:ff:d9:b0:cd:be:1c:34:ed:b8:85:0a:8c:
18:5e:1a:64:52:7e:7a:b4:f1:05:f9:82:48:68:f6:9b:63:78:
11:c3:38:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:47:38 2025 by rpki-client