Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/uOnTJ0djYQ711jSro_5W_r3Bxg8.roa
File: uOnTJ0djYQ711jSro_5W_r3Bxg8.roa (raw, json)
Hash identifier: R9ywXyNiglCKiuhffy3ALtoWMYLWZmhr0nEEZMSa754=
Subject key identifier: B8:E9:D3:27:47:63:61:0E:F5:D6:34:AB:A3:FE:56:FE:BD:C1:C6:0F
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0949
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/uOnTJ0djYQ711jSro_5W_r3Bxg8.roa
Signing time: Tue 29 Sep 2020 10:01:40 +0000
ROA not before: Tue 29 Sep 2020 10:01:40 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24154
IP address blocks: 203.79.200.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2377 (0x949)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:01:40 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=B8E9D3274763610EF5D634ABA3FE56FEBDC1C60F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:06:f3:32:ea:b0:b6:47:94:df:d2:64:07:ff:
5c:07:f4:8a:b8:da:75:a0:3b:98:0f:0c:05:62:b9:
aa:3b:0e:2c:d1:22:b8:a1:28:49:8a:fa:44:70:21:
0a:03:c1:e2:57:4e:a3:8f:5c:9e:b3:cb:e4:83:13:
0d:bc:9b:d0:37:e8:fd:30:eb:db:07:23:09:84:0d:
b7:99:da:d1:fc:ba:a2:33:d0:20:8d:82:7f:e5:61:
1a:f5:01:2b:da:66:98:52:e7:8b:f9:44:80:65:44:
bb:ec:b4:7b:e9:6d:8b:ce:67:1f:ec:d4:a5:ec:50:
1f:21:04:5a:18:76:99:70:5c:41:1d:d2:5f:e3:46:
2f:89:80:8c:7c:39:6c:b8:92:eb:d6:67:6c:6f:cb:
1d:ee:6a:a3:64:cc:30:5e:7c:5f:7f:d8:d3:d4:67:
85:21:0d:10:00:aa:37:b7:59:be:cb:ed:9a:09:78:
1e:7f:69:2f:d6:50:2d:c1:56:a0:2d:e7:a1:be:5c:
fd:82:3c:a4:d1:78:f9:b5:eb:a1:2f:7d:3e:8c:2a:
0a:09:6a:d3:16:57:8a:eb:f3:6b:36:46:a0:0c:52:
b7:68:96:e0:5f:06:5f:6f:ba:1f:5c:d8:c7:6e:85:
e6:87:77:ee:cf:03:38:3f:30:46:37:a0:4e:25:e8:
9f:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:E9:D3:27:47:63:61:0E:F5:D6:34:AB:A3:FE:56:FE:BD:C1:C6:0F
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/uOnTJ0djYQ711jSro_5W_r3Bxg8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.79.200.0/22
Signature Algorithm: sha256WithRSAEncryption
52:c9:00:9d:b6:41:63:bb:ea:d5:61:70:10:03:9d:2d:53:ba:
d5:c1:ed:15:40:cb:54:94:ce:58:1c:07:a1:e7:39:59:67:28:
99:a1:0a:73:cf:ba:2d:e8:e2:95:5a:fe:74:aa:0a:31:ee:08:
67:81:87:28:52:bb:c4:6c:0b:3c:bd:c3:0a:cd:8e:09:53:2e:
79:fd:96:96:db:2a:5f:30:d5:b5:8a:08:8c:8d:7f:1d:e9:01:
69:cb:7b:52:2f:6d:93:3f:4f:27:e1:38:53:95:92:d2:f7:59:
2f:70:a8:77:fb:bd:f0:13:e8:9c:bc:28:97:60:0e:b7:ec:19:
36:f6:99:62:87:da:d0:fc:8a:6f:eb:b0:3f:5b:c2:b3:50:c9:
97:e7:92:01:f0:06:21:2f:42:9f:29:8f:d5:98:ab:40:34:fe:
ee:83:d4:90:3f:40:2d:49:d2:4e:86:58:d4:02:aa:4d:b1:e5:
a9:c2:2c:9c:14:ea:86:bf:e9:77:e2:00:fa:3d:bd:16:05:e2:
d0:af:65:6c:7a:30:a6:58:b5:3b:88:f9:5b:c3:22:36:f1:14:
88:1b:52:a4:a5:f1:ce:33:b7:8e:08:93:c7:81:00:46:3c:2d:
ef:d6:89:27:9b:86:e4:64:2a:36:f7:66:f4:6a:ec:b7:17:ff:
70:06:62:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:41:49 2025 by rpki-client