Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/t1s2n_jfSFOAiM7zc1ld1Hb-l_A.roa
File: t1s2n_jfSFOAiM7zc1ld1Hb-l_A.roa (raw, json)
Hash identifier: FgfXBtlh4hJPsJfxqlZmQjgW5yQXLkdi1kuGrE7nLUk=
Subject key identifier: B7:5B:36:9F:F8:DF:48:53:80:88:CE:F3:73:59:5D:D4:76:FE:97:F0
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1085
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/t1s2n_jfSFOAiM7zc1ld1Hb-l_A.roa
Signing time: Tue 16 May 2023 08:36:18 +0000
ROA not before: Tue 16 May 2023 08:36:18 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 7482
IP address blocks: 203.79.232.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4229 (0x1085)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:18 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=B75B369FF8DF48538088CEF373595DD476FE97F0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:eb:86:8a:4a:9f:6e:16:92:04:9b:da:02:50:
cd:b7:20:fd:5f:51:72:42:06:f8:56:b5:0c:85:91:
05:d0:a9:19:0f:e4:d3:dd:22:fc:5d:30:1e:35:60:
76:98:26:23:66:c3:68:7e:4c:bd:4d:4d:71:0d:e4:
98:dc:5c:eb:17:cd:94:b5:12:75:1a:4c:37:47:4e:
b6:83:7b:0c:8e:64:d4:00:0a:7a:a7:cf:6a:2c:49:
53:71:6c:56:52:4c:fd:59:cd:be:0b:e8:35:9e:2c:
9c:bd:3a:40:69:f9:5b:14:ed:95:6e:49:44:f4:01:
32:04:55:02:f9:3c:71:49:ef:1a:d4:c7:e3:df:96:
cd:12:ec:93:28:2a:05:c8:ab:0f:a9:31:d0:fc:8a:
4c:e8:8c:75:f9:4c:d1:a9:c3:a7:84:23:e1:a6:2a:
27:ef:a3:2f:5a:6e:47:ad:66:b8:a9:94:b4:2a:94:
8e:d4:97:94:26:94:cc:ef:68:20:91:50:c6:02:01:
fa:a8:7e:c9:21:06:52:24:49:10:58:01:d8:29:67:
dd:6c:4b:09:db:0c:65:df:2b:d8:c1:23:54:44:d1:
b2:7e:d7:6e:43:66:b2:3c:82:b7:f4:37:c0:e7:6e:
32:ca:61:73:2a:d5:ff:0e:fe:07:63:d1:e6:96:a9:
35:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:5B:36:9F:F8:DF:48:53:80:88:CE:F3:73:59:5D:D4:76:FE:97:F0
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/t1s2n_jfSFOAiM7zc1ld1Hb-l_A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.79.232.0/21
Signature Algorithm: sha256WithRSAEncryption
1f:eb:5c:f1:aa:30:71:cf:a6:56:27:97:dc:95:8b:6c:fe:65:
0d:25:2e:18:d5:93:bf:82:94:e4:68:76:31:92:43:55:65:f7:
cc:04:29:07:36:58:b7:c1:81:2f:da:36:e3:95:c9:11:b7:74:
59:da:a0:04:e8:4b:7c:1a:1c:ce:5f:96:07:33:28:40:e8:1b:
df:d2:fd:58:ea:41:c8:a4:ed:50:e8:82:8e:9a:02:d7:73:ba:
00:36:46:3b:c0:2d:65:43:a1:2e:e9:e7:57:37:a4:03:81:1b:
8c:8b:91:68:03:8b:b4:c7:0f:2e:07:30:d0:02:fe:eb:8d:5f:
57:eb:15:e4:4a:65:9e:a4:d6:ce:d9:de:37:ce:8c:97:3e:d8:
51:52:26:2f:18:2d:5b:10:3e:b6:77:df:49:ea:8d:69:79:8b:
98:2b:74:e7:93:34:cb:78:1b:e9:f6:15:49:f4:ba:88:8b:45:
bb:41:c1:5a:d7:3e:9b:73:9e:0d:a3:b8:27:51:a0:07:4a:1f:
d3:2e:89:db:cf:cf:fc:35:d5:b0:f8:7a:af:1b:53:a2:00:20:
70:dd:7f:ad:5f:4f:26:4f:22:3b:c5:c7:6a:60:9a:41:65:99:
a3:07:77:4f:25:3a:87:71:a1:f8:8e:c5:b3:cc:a2:3b:c2:1f:
38:4b:81:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:39:23 2025 by rpki-client