Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/jfCpg3As5sguUh0SDl49HiXORFA.roa
File: jfCpg3As5sguUh0SDl49HiXORFA.roa (raw, json)
Hash identifier: oJjP7DGhNoHFWwNTQ6qnUsrXXdYJd2MPBjuX6hLCMrQ=
Subject key identifier: 8D:F0:A9:83:70:2C:E6:C8:2E:52:1D:12:0E:5E:3D:1E:25:CE:44:50
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1059
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/jfCpg3As5sguUh0SDl49HiXORFA.roa
Signing time: Tue 16 May 2023 08:36:05 +0000
ROA not before: Tue 16 May 2023 08:36:05 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17709
IP address blocks: 210.200.64.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4185 (0x1059)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:05 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=8DF0A983702CE6C82E521D120E5E3D1E25CE4450
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:3f:b8:d6:07:87:3c:4e:9a:6a:f2:5a:48:79:
e9:7f:25:d1:c4:f8:b0:35:99:5c:b8:a6:89:95:ff:
b8:0c:f3:71:b4:6f:70:7f:fa:15:6f:58:ef:f6:29:
f5:33:6a:e7:f9:e4:23:6b:0b:6e:71:b4:a5:d2:a8:
26:47:05:fc:e1:40:bf:ef:a2:14:2b:22:62:6f:ce:
86:7b:9d:91:a3:38:4c:64:62:1e:2f:ca:99:f1:f3:
d2:17:eb:49:ad:6b:09:8b:1e:65:e1:b5:d0:f9:9d:
a0:5f:26:ec:03:8d:16:b2:29:78:55:d8:ad:94:2b:
5a:32:00:68:f4:77:2f:1f:d3:7c:1f:d4:78:3f:b7:
20:13:d1:01:c2:cd:14:6f:a2:da:52:fb:79:37:6b:
a3:68:85:91:a6:b8:00:4e:fc:24:bd:85:f7:d6:23:
b4:1b:e1:3f:bb:00:ea:9d:e7:52:71:3d:26:29:ff:
d4:da:b7:bc:5b:e8:07:04:9d:42:4a:4f:b9:de:25:
ba:fc:ec:99:86:e2:5c:f0:dc:c8:ff:27:55:74:53:
7b:7c:ca:af:08:f5:86:cb:97:b6:0f:32:97:94:df:
59:7c:e0:2a:e9:ca:b2:ca:28:02:16:67:42:9c:73:
54:36:be:bb:74:68:72:32:c6:01:4e:16:c1:f8:2f:
18:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:F0:A9:83:70:2C:E6:C8:2E:52:1D:12:0E:5E:3D:1E:25:CE:44:50
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/jfCpg3As5sguUh0SDl49HiXORFA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.200.64.0/18
Signature Algorithm: sha256WithRSAEncryption
16:29:7b:e6:e8:b3:6f:7f:6b:31:23:e5:50:ea:b8:98:73:25:
9f:9e:6f:6d:04:0b:cf:33:31:00:55:82:87:fc:6f:18:34:64:
a5:e0:e2:a7:6b:57:8e:9c:15:8b:d8:0d:b7:7d:dd:1b:7a:ea:
60:92:f7:ba:c5:d4:02:a8:68:ab:38:5f:a6:ba:72:c2:64:2b:
f1:b5:0a:14:2f:36:7e:fc:e0:db:95:01:ae:32:e9:f9:6a:dd:
fd:d5:83:ca:91:33:a1:04:1a:58:4f:97:c9:22:c5:68:d7:a0:
fd:76:8a:b1:a2:38:8d:24:bc:da:87:48:de:44:b4:3e:97:6c:
c4:1e:bd:67:f6:f1:e7:66:1e:9d:45:f0:a5:65:41:05:bf:55:
a5:8c:5f:1f:df:af:4a:d2:88:13:ae:da:35:d1:a5:78:71:fd:
d3:81:c2:e6:19:18:54:40:bb:16:25:ed:84:e8:93:3e:7d:0c:
17:7f:01:4a:38:2f:de:f3:3c:20:47:b4:14:66:9e:08:f7:ab:
5a:75:df:22:c7:23:0e:cd:3d:27:a6:a4:d4:fa:f8:a4:67:3e:
4e:fe:26:88:24:33:f3:a0:b8:d1:8f:56:14:19:2a:ab:1a:77:
a0:cf:a0:96:70:d7:b8:0e:6e:af:fd:f6:68:4f:03:8c:d3:90:
d5:da:fe:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:04:58 2025 by rpki-client