Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/oHTbkpID34DFdIVOBgWsc3ZRpcs.roa
File: oHTbkpID34DFdIVOBgWsc3ZRpcs.roa (raw, json)
Hash identifier: 9RkW0rlp4F4CHyFoU7dwSeOp7XcjhI7t++7+ErF+lmY=
Subject key identifier: A0:74:DB:92:92:03:DF:80:C5:74:85:4E:06:05:AC:73:76:51:A5:CB
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0DDD
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/oHTbkpID34DFdIVOBgWsc3ZRpcs.roa
Signing time: Wed 29 Sep 2021 02:39:39 +0000
ROA not before: Wed 29 Sep 2021 02:39:39 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 7482
IP address blocks: 210.201.64.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3549 (0xddd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:39:39 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=A074DB929203DF80C574854E0605AC737651A5CB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:fb:99:b7:f5:b3:60:15:52:dc:0f:08:8e:65:
67:42:7e:7d:aa:f6:3f:7b:63:ca:95:4d:37:86:1a:
35:e1:0a:64:0e:fc:6f:2e:90:4a:35:3f:43:55:b5:
a0:2d:cd:64:db:ae:eb:2d:08:ca:5f:ba:15:60:4c:
39:4c:c3:87:c5:37:70:fe:a0:5c:57:89:ae:72:cf:
db:52:bd:56:58:99:c3:df:ae:3f:d0:94:12:e9:ea:
19:e3:63:9e:ee:f6:ce:84:ee:c0:a5:c8:8d:8d:40:
02:e4:c7:ce:15:21:d0:c5:e7:bd:84:61:1f:bb:75:
84:e8:38:16:10:a4:c9:9c:1a:06:53:03:35:6e:03:
9b:28:2e:7c:e2:2e:47:da:db:ab:10:b9:fb:2f:10:
a6:3f:ef:a1:3e:50:e5:55:06:ee:4b:46:5f:e1:90:
71:0f:81:bb:66:98:9d:b5:0c:ae:89:f7:aa:05:12:
ca:47:85:7d:7e:65:32:40:6b:ba:69:bc:64:3d:65:
9f:35:44:16:61:3c:e2:ca:6a:c8:f5:9d:df:c0:d7:
0a:20:6d:fe:08:0d:43:71:c9:cd:df:f0:f9:1f:5e:
42:4d:5b:ec:ef:16:3e:9f:f8:5b:ff:6b:e8:ba:00:
a2:4c:3c:f7:b7:2b:17:78:3c:aa:f7:c9:55:0d:18:
60:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:74:DB:92:92:03:DF:80:C5:74:85:4E:06:05:AC:73:76:51:A5:CB
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/oHTbkpID34DFdIVOBgWsc3ZRpcs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.201.64.0/18
Signature Algorithm: sha256WithRSAEncryption
73:e3:2a:2f:f2:09:52:fb:eb:7c:7a:94:5e:cc:a2:f2:17:61:
fe:d6:0e:af:15:30:c0:f5:b1:f4:75:c1:20:09:0b:e1:a8:dd:
a4:e7:5b:f7:5b:82:14:8d:02:bc:9c:5f:11:5a:75:0a:04:ef:
fa:c0:fe:4c:5f:f9:de:7e:78:39:be:fc:de:31:a8:d6:c3:06:
42:38:c8:64:58:0e:b3:cc:9e:12:80:59:c6:33:74:98:4b:3b:
aa:8a:46:c8:23:07:c0:8c:b9:03:d3:94:fa:52:71:61:1e:02:
99:e1:18:0b:5a:7c:b8:fc:dd:ac:fe:70:17:50:3c:fb:e8:79:
b6:bb:fd:02:24:be:e4:c6:ce:e7:1b:c4:c0:3d:de:39:cf:b8:
27:8b:f6:3b:71:19:c6:a0:c6:5f:fb:6f:91:62:8f:9e:09:ac:
2a:47:ac:e0:aa:14:85:88:66:45:60:d4:84:92:26:43:50:89:
9a:e7:d2:41:f2:f5:59:b4:78:17:ea:6b:9b:58:67:98:58:50:
3f:da:07:eb:5a:77:1d:70:8f:b1:5e:04:77:ff:2f:bf:a2:08:
e5:51:06:00:9e:1e:f3:e7:b3:b8:24:f1:39:2e:26:31:44:c6:
d8:97:ab:33:7f:b4:2a:b2:2b:fa:e2:b9:47:ac:b6:85:7d:6c:
7e:e0:aa:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:48:17 2025 by rpki-client