Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/o6oQqFwxXj5zqCAxKlt8MoZtVMk.roa
File: o6oQqFwxXj5zqCAxKlt8MoZtVMk.roa (raw, json)
Hash identifier: qtYKgrXn5LzhU3rPSUh+aK5gmRR9dBHDgLGHW29Z7kY=
Subject key identifier: A3:AA:10:A8:5C:31:5E:3E:73:A8:20:31:2A:5B:7C:32:86:6D:54:C9
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 12D3
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/o6oQqFwxXj5zqCAxKlt8MoZtVMk.roa
Signing time: Fri 01 Sep 2023 08:05:02 +0000
ROA not before: Fri 01 Sep 2023 08:05:02 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 7482
IP address blocks: 210.200.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4819 (0x12d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:05:02 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=A3AA10A85C315E3E73A820312A5B7C32866D54C9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:bb:88:6d:91:9d:7d:f5:b6:33:77:17:a4:f1:
ce:a2:35:f1:2d:fc:4a:3a:94:33:11:33:d5:05:70:
14:e8:7d:ad:78:d9:8d:28:3d:de:43:c0:e4:96:3f:
ed:f8:c1:b7:26:e5:51:76:e8:4b:b9:a5:63:de:fe:
23:c7:fb:76:2c:a3:04:f1:2a:7b:b5:c6:30:ed:27:
dc:c7:e5:41:f2:b2:92:40:76:1b:6a:db:1f:b7:bc:
6c:e3:67:1a:df:f3:68:98:c3:25:2f:d8:d3:1d:a9:
94:2f:6d:35:51:65:92:b9:fd:04:02:7c:20:e3:f6:
55:fe:c0:6e:8d:d3:6c:cd:b2:c3:5e:4a:5d:00:bc:
f9:1a:54:c1:c0:eb:da:ff:75:b2:37:2a:b5:9b:ee:
92:0b:3c:30:a6:a9:0c:8e:23:01:b6:af:d3:eb:8c:
4e:dd:53:ae:53:40:2f:90:e7:b1:f1:d1:05:87:0f:
60:98:4e:13:22:0f:a4:e8:d1:12:68:31:fb:d2:d9:
74:00:87:33:5c:91:6b:12:26:8a:db:7b:2a:c2:77:
db:1c:4c:49:e5:63:26:c2:11:d2:89:87:3d:a9:c2:
b3:e3:51:0c:26:d3:83:95:ca:af:39:95:2b:96:02:
d2:3b:e1:71:a0:c8:84:b1:04:a3:ad:5d:a9:21:db:
6d:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:AA:10:A8:5C:31:5E:3E:73:A8:20:31:2A:5B:7C:32:86:6D:54:C9
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/o6oQqFwxXj5zqCAxKlt8MoZtVMk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.200.0.0/16
Signature Algorithm: sha256WithRSAEncryption
07:ad:96:6b:cb:a9:8e:20:a5:96:9b:27:cf:20:04:1a:50:f0:
2e:aa:c4:78:1d:fd:20:84:51:af:11:87:86:9a:fa:85:0c:b0:
ce:09:7f:1f:6d:7d:77:22:12:9f:9a:96:4e:e0:37:fd:5a:fb:
09:83:56:96:6e:62:ef:2d:a4:1e:f7:58:60:a5:f8:10:47:73:
f4:09:b4:86:43:7d:cc:3d:f0:d4:48:bd:8d:74:e1:ff:a5:5d:
3c:88:72:13:11:b0:17:b6:45:f8:09:82:b3:4c:ad:d3:cc:3f:
d6:b0:8b:81:38:6f:ae:bc:cd:65:f0:46:18:83:a0:d4:4c:b5:
10:fa:76:1c:81:44:35:c3:85:d5:3e:91:bf:bc:7f:ee:46:f4:
00:51:aa:4d:14:f3:09:79:06:77:ff:6d:79:10:d0:80:b9:9a:
43:a4:40:ce:6f:c9:18:b2:e1:55:05:9e:6b:dd:ff:a7:e6:99:
74:7f:e9:70:be:bb:7e:f9:13:95:44:96:d5:68:55:ae:ca:3d:
02:ed:9e:34:55:4c:12:96:7f:92:c1:64:43:97:0f:07:62:c3:
b7:89:74:7a:81:88:3c:24:86:46:01:f6:e9:65:a4:c6:6c:ef:
f4:b7:46:f1:7b:b2:68:3b:ef:a0:59:45:27:c3:dd:0a:96:0a:
59:22:f6:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:51:37 2025 by rpki-client