Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/sq6-fwX64E9-owEiKUiBMd-ojOg.roa
File: sq6-fwX64E9-owEiKUiBMd-ojOg.roa (raw, json)
Hash identifier: +4Jj7cOyFJOk7Dw66l6HiRTPgpHEX/MN7ZEDz32z8hw=
Subject key identifier: B2:AE:BE:7F:05:FA:E0:4F:7E:A3:01:22:29:48:81:31:DF:A8:8C:E8
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 10E1
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/sq6-fwX64E9-owEiKUiBMd-ojOg.roa
Signing time: Tue 16 May 2023 08:36:46 +0000
ROA not before: Tue 16 May 2023 08:36:46 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17709
IP address blocks: 202.178.128.0/17 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4321 (0x10e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:46 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=B2AEBE7F05FAE04F7EA3012229488131DFA88CE8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:6f:90:c5:f7:2b:f1:52:0a:68:ff:d3:e8:f7:
3f:61:fd:d9:1a:72:41:44:a7:10:c7:01:02:2a:05:
a6:47:8b:47:e0:96:5d:14:06:94:f7:fd:dd:2e:cb:
70:c8:2a:c1:2b:28:74:16:79:20:69:7b:98:ed:02:
52:ef:2b:35:8c:35:22:5a:9c:a0:c4:87:d5:cf:18:
1b:5d:dc:d2:2a:98:b2:4c:39:79:60:4c:32:9e:9f:
e0:41:1e:dd:f5:b5:18:d4:21:fc:9c:7b:4e:4d:f4:
34:14:a4:89:d2:2f:74:c0:d1:1d:2f:08:15:65:1c:
1e:ad:70:60:5a:77:04:68:ab:8a:45:50:84:a9:14:
4c:3e:24:0c:d4:24:8b:ad:1a:0e:18:f6:f0:9d:4d:
1b:38:ac:d3:77:7b:94:da:01:5c:cd:ca:3d:bb:35:
51:0f:a5:4b:20:71:ec:db:a0:fd:48:10:4a:c6:5c:
8f:63:88:58:ba:0c:f5:26:4d:d6:04:af:f8:e4:d3:
0f:ef:4f:03:ba:e8:4f:e5:2b:e4:38:78:2f:00:18:
7f:f8:4e:95:b7:bc:52:8e:1a:a8:8d:16:1f:b4:8d:
d4:82:83:65:80:de:fe:1d:59:74:70:e2:b9:ea:b2:
99:40:e0:d9:89:b1:9a:fa:95:87:36:73:55:0c:12:
5d:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:AE:BE:7F:05:FA:E0:4F:7E:A3:01:22:29:48:81:31:DF:A8:8C:E8
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/sq6-fwX64E9-owEiKUiBMd-ojOg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.178.128.0/17
Signature Algorithm: sha256WithRSAEncryption
8d:42:40:87:59:11:f2:33:ff:66:a2:d5:e3:f9:b2:7e:99:c2:
45:ca:a6:fb:d9:5d:ad:87:e7:55:85:27:a7:c0:3c:e3:f9:61:
9c:b3:9f:ea:9e:1d:ae:5d:a1:2c:6d:c4:3f:57:b2:55:db:e2:
14:8d:1f:1c:0e:e7:80:0c:9c:b3:7e:06:57:22:cd:17:6e:f1:
43:81:6d:d1:b9:e5:a1:96:8d:0c:85:30:94:6e:bf:8b:ef:8d:
ad:8c:45:5a:a0:73:c2:e9:4a:d0:ed:7b:65:bf:43:32:fe:01:
95:19:29:99:35:c4:cd:df:99:a5:dd:4a:6b:69:77:fc:30:5d:
dd:e2:e0:30:62:17:82:c3:20:8d:db:43:2a:15:e0:a4:24:42:
bf:c7:61:df:e4:50:6a:65:36:7f:97:da:08:4b:ef:f7:15:00:
7c:6c:05:c4:72:3c:a8:d0:a6:e5:12:cc:40:03:78:7f:98:d9:
25:3f:81:0d:9a:6b:2e:0f:46:27:c2:29:55:12:9c:2f:65:00:
01:01:d2:b5:36:a4:cc:09:a5:ae:ca:24:2e:73:92:c2:b3:d7:
b2:3c:0e:80:95:af:6e:fe:ee:fe:b1:4a:07:1b:8a:a2:97:bd:
ea:96:09:62:52:ca:4d:c8:df:d1:1e:1a:9a:d0:b1:57:ae:30:
93:8e:1d:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:42:29 2025 by rpki-client