Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/ovTY9ZNyxkWjXHxID75SGfjFwgs.roa
File: ovTY9ZNyxkWjXHxID75SGfjFwgs.roa (raw, json)
Hash identifier: gPXb4Pp2uoU53qe/DqVy8I4dISlw3EK9utXLEFW0LXE=
Subject key identifier: A2:F4:D8:F5:93:72:C6:45:A3:5C:7C:48:0F:BE:52:19:F8:C5:C2:0B
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 12BA
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/ovTY9ZNyxkWjXHxID75SGfjFwgs.roa
Signing time: Fri 01 Sep 2023 08:04:55 +0000
ROA not before: Fri 01 Sep 2023 08:04:55 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17709
IP address blocks: 210.200.148.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4794 (0x12ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:04:55 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=A2F4D8F59372C645A35C7C480FBE5219F8C5C20B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:5b:13:a3:50:81:6c:bb:25:53:6c:48:2a:88:
85:78:21:ac:37:51:dd:7b:12:e9:a0:4e:9d:6d:66:
94:b7:45:8d:80:4a:aa:a6:8b:e9:e6:d4:e5:38:c7:
27:f1:d0:fa:d4:d2:5e:5e:e2:44:7a:8f:2a:b8:a4:
31:bf:9f:30:68:e1:3f:2a:72:99:07:bd:7c:16:7a:
69:63:89:ae:47:2b:11:2e:3f:60:0d:b5:97:4f:74:
00:d3:d1:a4:b3:09:00:1e:e1:cd:f7:21:79:bf:09:
0a:2b:e7:a2:93:a0:00:d7:6d:04:d1:2f:bc:02:d3:
7d:cf:85:6a:27:03:c4:a1:4a:d4:7a:f9:08:cc:2d:
22:05:27:98:5c:ad:fa:e3:03:39:c6:a3:6e:96:0e:
cc:2d:50:cf:8f:d1:83:8b:78:32:d7:6b:27:dd:16:
14:02:8f:58:6d:f6:e6:6a:1d:3a:38:59:9b:ee:70:
a1:6f:e1:d1:3c:95:71:71:42:8c:99:a2:f3:07:75:
ea:47:ae:36:83:c9:ce:59:6f:d6:cb:45:62:cf:ac:
21:a5:17:a3:d6:62:15:f2:78:ea:e6:3d:f2:c1:e8:
0e:89:b5:2e:86:62:7d:66:53:7a:ee:d8:14:00:ab:
07:de:02:ca:50:b9:69:0a:20:fd:c2:12:d7:0e:cf:
c8:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:F4:D8:F5:93:72:C6:45:A3:5C:7C:48:0F:BE:52:19:F8:C5:C2:0B
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/ovTY9ZNyxkWjXHxID75SGfjFwgs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.200.148.0/22
Signature Algorithm: sha256WithRSAEncryption
90:f3:0a:b6:7e:1d:3d:26:c6:7a:e3:9d:4c:0d:c3:55:53:ec:
ee:b1:03:e2:3b:db:9f:c6:42:23:a4:48:5e:4d:e4:3a:2a:fb:
12:f9:8e:83:f4:00:37:da:c9:ad:0c:eb:ab:df:a1:bb:c4:2a:
c7:c4:0c:bb:94:7c:c6:b7:69:e6:78:09:9c:e9:61:12:76:73:
e4:a0:38:24:c9:86:2e:4d:5b:13:b4:08:9e:8e:b1:d4:74:3d:
e4:26:e6:c9:e8:8a:41:aa:01:36:43:e3:40:db:df:60:86:17:
4d:75:0d:b8:4b:c5:fc:6c:dc:ca:65:b6:41:b1:3b:6f:d1:d5:
fe:7c:1e:5e:28:6f:de:64:bb:e7:c1:6b:0b:93:f3:02:4f:f9:
c5:3d:25:f4:85:4b:bd:69:1c:31:f4:b5:ff:e9:0a:9d:de:bf:
ca:c1:68:8e:1d:48:61:ed:fa:89:88:4c:0a:20:40:d4:3a:4e:
4b:81:81:20:7c:fc:18:60:2f:d9:05:d1:3e:8d:c2:98:b3:b2:
54:73:43:1b:09:74:d4:32:05:0e:1c:b4:a3:69:90:8a:e0:8a:
8e:ea:34:71:ce:6b:41:5b:8a:58:25:94:a3:fb:ad:1c:56:09:
7f:96:26:80:85:b4:dc:0e:66:65:5a:6a:38:e1:9b:80:fc:c6:
02:6c:85:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:55:47 2025 by rpki-client