Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/hKYuRoqFo_BJ6nhyPwlZpwB7Zbc.roa
File: hKYuRoqFo_BJ6nhyPwlZpwB7Zbc.roa (raw, json)
Hash identifier: qzmmJLk1jNcwxTc6OHun+6Rxd4U7MXcGkGKPlpXdEuo=
Subject key identifier: 84:A6:2E:46:8A:85:A3:F0:49:EA:78:72:3F:09:59:A7:00:7B:65:B7
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0BAF
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/hKYuRoqFo_BJ6nhyPwlZpwB7Zbc.roa
Signing time: Sun 07 Feb 2021 11:33:34 +0000
ROA not before: Sun 07 Feb 2021 11:33:34 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 7482
IP address blocks: 203.79.192.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2991 (0xbaf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 11:33:34 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=84A62E468A85A3F049EA78723F0959A7007B65B7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:cb:07:f3:71:e7:30:e3:27:c0:9f:22:b4:b4:
54:d7:e4:b1:32:e7:97:cb:b4:04:40:08:cc:94:c3:
78:c6:43:34:27:61:0b:4b:08:33:e3:4d:20:6f:85:
4c:28:fa:65:f3:87:a7:39:f1:5c:75:d3:7d:82:e0:
05:eb:9f:87:35:3c:b3:8d:40:a3:a2:58:ce:f7:6c:
16:d0:35:cb:80:c3:87:3b:71:05:54:8a:02:90:88:
90:8f:0b:94:46:0d:cb:bc:de:08:74:d4:e9:c8:96:
6e:94:14:4d:4e:90:1f:3e:0c:4f:e0:a8:bc:78:00:
10:8a:c2:0d:9f:b9:ea:45:59:ca:8a:4d:7c:af:d1:
16:c9:71:a9:40:89:fa:9b:e7:c6:38:92:90:96:27:
10:17:73:c9:a1:8e:c4:6f:53:ce:9d:1a:cd:9f:d7:
e9:fb:82:5a:5d:ca:fb:20:7a:b9:02:9d:6e:14:2e:
61:49:d5:8e:cb:4b:34:e9:38:73:3e:c9:d7:b6:ac:
19:21:ea:43:1b:27:ad:7c:c7:96:8c:a5:1e:34:35:
23:ec:4d:24:e2:cb:05:f7:4c:64:c7:26:bb:b4:12:
91:58:fb:7d:33:a2:62:a2:f1:7d:7c:59:eb:39:bd:
7f:ac:5d:82:d4:73:69:09:8d:6b:c8:b2:f2:72:d1:
ab:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:A6:2E:46:8A:85:A3:F0:49:EA:78:72:3F:09:59:A7:00:7B:65:B7
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/hKYuRoqFo_BJ6nhyPwlZpwB7Zbc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.79.192.0/22
Signature Algorithm: sha256WithRSAEncryption
ad:be:93:e5:9a:fb:bd:35:6b:93:f0:f4:42:41:e0:6d:19:a2:
c9:34:52:61:8c:72:7f:b6:07:45:f2:f2:2b:53:31:90:3c:94:
56:bf:e2:ce:ee:b4:26:42:e7:5d:5e:bc:55:ac:f6:c7:8d:a5:
13:59:ec:d1:6c:66:04:55:ca:98:0e:0f:83:a1:3c:9d:1d:cd:
f9:7e:3b:be:94:77:94:89:23:eb:60:6a:19:f1:67:d1:e0:4e:
c5:b8:50:af:92:f0:2b:e9:88:f6:9a:45:1a:04:fb:38:86:18:
f0:a0:e4:95:62:cf:e3:04:c0:4e:6a:8b:a7:23:d9:fd:15:72:
77:5c:32:af:0b:5f:0a:d4:4d:45:19:7d:bc:1f:01:23:bd:f6:
d4:96:fd:82:73:35:3c:82:63:56:a8:91:1e:9a:6d:82:db:c3:
06:da:b0:5d:68:23:d0:09:7d:5a:28:cb:46:14:8e:4a:1a:74:
78:b3:f5:a4:a7:2c:83:be:c8:e1:1e:ae:20:a8:c0:39:5b:44:
32:fb:2c:a5:23:c7:bd:11:90:86:f8:93:cc:d2:c0:56:b9:21:
15:e7:99:1e:7d:d1:97:b7:f3:6d:a5:44:04:7f:02:e4:1e:81:
72:e5:9d:58:b9:17:d9:e4:8b:f9:57:f2:c5:23:30:7e:4b:74:
5a:b1:c1:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:45:10 2025 by rpki-client