Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/v6yGZbDKEF7d1VI2Z3_ZGcurTvM.roa
File: v6yGZbDKEF7d1VI2Z3_ZGcurTvM.roa (raw, json)
Hash identifier: druwLhlTjelp9q9ogNlkNYN0XkOzU4zClA0IJrq/1II=
Subject key identifier: BF:AC:86:65:B0:CA:10:5E:DD:D5:52:36:67:7F:D9:19:CB:AB:4E:F3
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 10AF
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/v6yGZbDKEF7d1VI2Z3_ZGcurTvM.roa
Signing time: Tue 16 May 2023 08:36:30 +0000
ROA not before: Tue 16 May 2023 08:36:30 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9311
IP address blocks: 203.79.224.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4271 (0x10af)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:30 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=BFAC8665B0CA105EDDD55236677FD919CBAB4EF3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:12:ab:ea:f3:ef:00:b1:a1:e0:60:be:f0:cf:
66:42:a9:44:ef:6e:a4:86:72:c2:77:d7:9d:3a:71:
9a:2c:ed:7c:8f:16:ec:39:e5:72:1c:8c:a7:3e:1c:
49:c9:1e:fb:70:53:eb:ce:95:7f:f6:b2:3e:ab:1d:
93:dd:fa:83:fa:f9:98:ad:34:a3:02:1a:d6:4e:20:
44:63:91:73:c1:bf:26:a6:13:64:73:ca:7c:c1:d5:
d9:57:fb:58:07:a7:37:7d:9a:79:de:b2:00:72:ec:
4f:ed:f1:f2:50:72:98:f1:d8:f3:27:e1:13:32:2b:
56:81:a2:9a:01:6a:6d:fb:a5:5d:ce:4d:cc:cf:df:
88:29:9d:c9:03:26:c9:d5:07:91:8a:f1:b6:d5:4d:
f5:74:14:30:35:f5:b7:2e:40:7d:a5:a8:fe:ca:70:
06:14:0a:6b:49:71:4d:80:ed:98:59:a5:0d:61:9e:
c4:1e:92:10:24:86:af:e9:bd:3e:c3:93:4a:dc:57:
69:a8:ef:d1:73:1e:a9:bc:6a:63:8d:33:13:7b:47:
cc:d8:36:4a:44:e6:12:66:9a:d0:94:fd:a6:ac:31:
63:b7:82:42:3f:61:ad:d2:2f:ce:f8:13:69:6e:a9:
f2:bd:69:13:e6:1a:9b:ce:1f:a7:bd:ec:8d:03:73:
43:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:AC:86:65:B0:CA:10:5E:DD:D5:52:36:67:7F:D9:19:CB:AB:4E:F3
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/v6yGZbDKEF7d1VI2Z3_ZGcurTvM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.79.224.0/22
Signature Algorithm: sha256WithRSAEncryption
02:ed:3d:28:b6:0c:fc:39:86:e5:2b:c6:cb:4f:2a:86:d2:84:
c2:5e:78:b7:48:87:53:3a:60:62:94:cf:3e:19:bc:54:0b:30:
93:30:8b:6e:35:94:7b:fd:58:b7:fe:70:80:69:be:2e:35:de:
1e:0a:4c:77:ba:92:b2:ce:fa:b7:64:24:07:9c:85:40:19:90:
4f:e0:a5:24:f9:6d:66:6a:28:1e:43:c1:45:a8:15:98:11:ed:
f0:58:aa:0f:d1:5b:ab:32:1d:8b:e2:60:30:3a:08:92:52:16:
77:0d:bc:e6:6e:43:75:3d:58:51:25:02:95:6f:a4:73:b4:05:
6f:b3:d3:8e:ee:bd:45:32:82:ca:76:fe:70:97:89:63:b3:5b:
7e:c3:cc:13:3e:20:bb:ea:c4:3e:5c:8e:87:f3:0f:cb:d8:4d:
6a:24:25:7b:50:f8:e8:8a:aa:37:8c:63:05:fc:1e:be:02:a9:
93:25:18:d6:53:aa:10:87:8c:74:92:4a:4d:3d:f3:4f:de:84:
ac:b4:5d:1e:61:20:ca:29:5a:6a:99:10:16:cc:e5:81:89:03:
f4:f1:ec:ac:c3:2d:1f:cb:88:a6:6c:c6:4b:43:74:de:1c:80:
c3:12:9a:fd:04:0a:3e:01:27:ce:10:65:44:45:62:00:39:1d:
1a:50:91:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:07:17 2025 by rpki-client