Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/lwHZVSzD34C29XP_1hIJgXhBVG8.roa
File: lwHZVSzD34C29XP_1hIJgXhBVG8.roa (raw, json)
Hash identifier: 0131hv0lvgNCjWoEyJPdD3OvJdryBQNPcSppG+UUaW8=
Subject key identifier: 97:01:D9:55:2C:C3:DF:80:B6:F5:73:FF:D6:12:09:81:78:41:54:6F
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0DBC
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/lwHZVSzD34C29XP_1hIJgXhBVG8.roa
Signing time: Wed 29 Sep 2021 02:39:30 +0000
ROA not before: Wed 29 Sep 2021 02:39:30 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131142
IP address blocks: 203.79.204.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3516 (0xdbc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:39:30 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=9701D9552CC3DF80B6F573FFD61209817841546F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:b2:2b:d4:7f:71:f6:49:e8:84:69:76:98:1a:
87:bd:d6:ac:6b:18:7e:30:40:b4:b1:2c:d7:9a:1e:
66:c0:92:65:5a:a1:13:8e:5e:21:85:3e:61:b5:c7:
a2:8f:5f:cb:4d:a8:27:f1:a2:83:c4:6b:9e:5b:72:
8e:83:a6:30:d5:d7:1e:d6:57:bb:09:74:9c:64:73:
38:7d:3b:cb:87:13:c4:6a:21:e2:1e:a9:f7:0a:1a:
f1:46:78:a1:9c:82:f5:7b:29:54:a0:de:8d:01:b6:
1d:56:66:47:5f:98:af:8f:ed:4a:d5:ac:b5:f6:9c:
3a:7f:27:ce:92:ce:91:23:95:d7:d1:55:b4:a5:1b:
6a:0c:ff:24:c0:8c:62:c5:7b:7d:e4:4d:d7:6d:a8:
8d:58:b7:b7:97:20:12:aa:a6:17:0a:b9:bd:c4:b5:
22:3d:b6:6b:bc:f2:4d:27:9c:a8:69:e3:df:65:6f:
44:e9:dc:75:29:ed:99:80:3e:d8:48:3b:59:d2:28:
4a:f3:4d:fd:69:cd:89:5c:ad:fe:1e:40:2e:be:bd:
f8:cd:5c:40:45:94:bb:6f:0b:63:a5:7f:4b:05:e6:
c9:9b:0e:c5:27:e0:c9:ab:50:4c:e5:ad:47:c5:9f:
34:6b:7a:b6:40:25:45:ef:e3:7a:42:38:78:1f:9a:
13:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:01:D9:55:2C:C3:DF:80:B6:F5:73:FF:D6:12:09:81:78:41:54:6F
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/lwHZVSzD34C29XP_1hIJgXhBVG8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.79.204.0/23
Signature Algorithm: sha256WithRSAEncryption
87:85:20:b3:ab:6c:45:6a:90:a3:99:90:70:8d:4b:36:3a:ab:
b8:98:d4:ab:05:0a:de:62:88:11:d3:6c:e2:0f:18:cd:9a:76:
1e:3b:38:89:7d:36:01:2b:28:45:5e:07:d8:4e:27:1b:c4:67:
b6:b5:dd:8d:9c:a1:0b:a7:84:a0:99:a0:c7:d1:c2:cf:31:df:
0c:f6:07:1a:51:cc:f5:bf:c4:37:bb:0a:eb:1b:8a:9a:73:c0:
a7:4e:bd:89:8d:ff:fc:fa:ae:6c:f3:79:50:95:ab:f4:8f:eb:
51:ea:98:ab:49:0a:c4:fd:3c:02:23:43:a8:27:68:00:6a:3e:
79:d8:df:73:00:a3:0c:90:a9:3a:25:fe:c0:9e:59:64:df:a2:
db:e2:81:cb:59:7a:1f:d9:b9:ae:41:24:76:1c:07:e3:53:0c:
af:51:f9:4e:e4:bf:bc:b6:0f:10:8b:37:0f:9e:05:3f:03:ff:
10:b9:38:7b:7d:97:6b:a7:6c:4b:41:11:54:67:23:51:57:95:
dd:d8:f7:2f:e8:22:ba:f0:e8:a6:9b:29:7e:63:86:c5:fb:a4:
7f:99:36:65:eb:8f:3a:e3:ab:fd:10:69:3f:ca:7f:ba:6b:fa:
91:24:fb:e8:65:3b:92:5e:5b:2a:87:24:2b:ce:13:49:34:7c:
01:10:5e:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:02:20 2025 by rpki-client