Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/o6CEtoRNikbpijsrBrur2WqctdM.roa
File: o6CEtoRNikbpijsrBrur2WqctdM.roa (raw, json)
Hash identifier: dA/Z27CQq/okHsN7lG5uZHlwgrwZyMCGBk3X/XXNeEU=
Subject key identifier: A3:A0:84:B6:84:4D:8A:46:E9:8A:3B:2B:06:BB:AB:D9:6A:9C:B5:D3
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0C69
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/o6CEtoRNikbpijsrBrur2WqctdM.roa
Signing time: Sun 07 Feb 2021 11:36:01 +0000
ROA not before: Sun 07 Feb 2021 11:36:01 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131142
IP address blocks: 223.22.254.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3177 (0xc69)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 11:36:01 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=A3A084B6844D8A46E98A3B2B06BBABD96A9CB5D3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:cf:8b:56:67:39:2c:70:67:f0:bf:76:8c:fd:
a9:cb:5a:9b:b4:b8:bb:db:cd:92:97:c0:9b:d1:15:
ab:ae:0a:dd:2c:ca:c1:ab:46:4b:45:05:68:f1:69:
9a:86:23:86:f1:89:32:69:3b:05:37:05:78:50:23:
df:61:5b:29:a4:8e:12:f1:54:2a:7c:99:b4:b7:58:
96:5c:8c:4e:61:d2:59:53:4e:cf:f2:85:45:16:16:
47:e5:32:bb:36:8a:0d:65:c2:17:6d:e3:ed:86:df:
63:1d:a2:37:05:dd:60:10:05:22:af:c5:af:0d:70:
ee:76:72:79:d5:3b:ae:e9:d9:dc:f4:1c:d1:9e:b6:
e7:55:fe:ea:d3:e3:99:b3:ba:63:50:e7:f3:fb:16:
87:0a:4b:39:ea:90:27:cd:79:01:21:3b:dc:fe:34:
43:c8:50:ee:c2:c1:1f:e0:01:f9:45:76:f1:f9:0d:
f0:0a:b0:79:08:17:28:1c:ae:48:5d:79:af:e9:26:
c6:af:59:ef:db:19:4b:38:7e:ac:0b:7a:49:6c:ba:
77:fc:29:2e:38:aa:98:32:ba:d9:17:4f:22:d1:68:
c6:a9:10:80:ce:c1:43:a9:66:b3:34:05:7f:58:ee:
bd:aa:13:26:9e:59:04:68:67:24:f1:6a:cd:e1:94:
cd:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:A0:84:B6:84:4D:8A:46:E9:8A:3B:2B:06:BB:AB:D9:6A:9C:B5:D3
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/o6CEtoRNikbpijsrBrur2WqctdM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.22.254.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:b5:d3:23:1e:67:1a:fa:71:1e:74:22:4c:69:0e:2b:09:f9:
1a:b4:cb:3f:b7:34:ab:49:82:28:e6:21:7a:66:81:b3:e1:8d:
28:0e:2d:25:ab:3c:b3:12:ea:06:47:18:86:e7:50:f5:c5:16:
ed:01:5c:4c:28:32:00:24:bf:10:4c:8f:70:9c:b9:a3:0e:19:
fc:12:b8:d8:24:23:a5:ad:f4:78:53:4d:06:df:4e:af:f6:6e:
ea:06:0b:35:a1:c6:84:5a:3d:58:ed:bb:c8:c1:9b:05:1a:7a:
ce:17:7f:3e:05:27:bf:9c:b0:97:ea:ef:3e:76:a5:5f:0e:73:
33:b3:8e:e8:8a:08:69:0c:18:75:c2:12:b2:5e:67:50:79:14:
cf:30:14:fa:e0:f1:13:9b:af:ef:a2:6a:d8:6d:f2:9f:e2:17:
bf:2f:14:c9:52:db:a6:dd:ef:8f:56:d2:01:e6:ee:6a:3c:a9:
b8:ae:f8:79:25:df:7a:a2:a0:59:92:93:8f:94:67:03:cf:9b:
bb:be:e3:95:fe:34:ce:e1:41:b0:7c:32:02:9e:58:28:7e:dc:
e8:18:ea:10:59:02:77:21:95:48:46:de:ef:ca:e0:1d:2a:ce:
9b:82:92:e8:87:77:29:15:0b:53:1e:e2:df:db:c8:f6:26:d0:
86:8e:2d:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:03:21 2025 by rpki-client