Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/vBf6ITUFzkRRMRtRuDHeyY7_bRQ.roa
File: vBf6ITUFzkRRMRtRuDHeyY7_bRQ.roa (raw, json)
Hash identifier: HlsAp3ocj3FOWLJM1BYCFwgWbXvR5WknOJqLlPJAiAI=
Subject key identifier: BC:17:FA:21:35:05:CE:44:51:31:1B:51:B8:31:DE:C9:8E:FF:6D:14
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/vBf6ITUFzkRRMRtRuDHeyY7_bRQ.roa
Signing time: Thu 15 Sep 2022 02:40:13 +0000
ROA not before: Thu 15 Sep 2022 02:40:13 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24154
IP address blocks: 210.200.0.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:40:13 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=BC17FA213505CE4451311B51B831DEC98EFF6D14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:ce:1b:f8:9f:4a:14:62:97:31:c2:11:7f:8d:
45:c4:30:9a:eb:82:03:85:c0:4f:19:1a:6d:55:59:
01:84:46:7c:a0:e7:a4:31:a0:ae:ef:08:df:ff:3f:
ee:10:da:de:61:2e:b0:3a:d3:51:1e:6a:41:75:7c:
73:23:33:cc:fc:11:65:5b:30:77:03:3b:75:f6:7e:
22:f5:a4:17:ab:d9:d0:45:a8:87:3a:64:39:bc:9d:
be:9f:5d:c5:15:8d:a1:41:c5:38:fe:e3:7c:ec:e1:
39:eb:90:d2:2d:8f:88:25:18:ee:66:02:50:b4:bc:
22:37:93:38:71:6c:4b:09:b4:a2:b5:26:f3:3d:5d:
23:ac:3f:bb:9a:e5:46:a6:c0:79:48:30:88:25:8e:
56:1f:46:71:05:76:8e:14:31:a1:7d:84:71:fa:58:
fe:d0:78:9a:ae:1d:c4:f3:40:7c:48:65:8e:82:24:
52:79:34:64:70:a3:eb:2f:9e:3d:7e:bb:7c:39:9c:
7e:d5:2a:35:f0:03:94:94:35:78:a4:33:f0:4f:8d:
e5:19:6c:cc:18:51:05:81:6e:7b:8f:a4:b8:a7:d8:
37:24:c5:e2:ab:78:92:b4:4b:d9:44:c2:43:bc:03:
20:b8:10:c9:08:f2:3b:2d:72:d6:fd:89:80:d0:92:
6b:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:17:FA:21:35:05:CE:44:51:31:1B:51:B8:31:DE:C9:8E:FF:6D:14
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/vBf6ITUFzkRRMRtRuDHeyY7_bRQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.200.0.0/19
Signature Algorithm: sha256WithRSAEncryption
18:26:c5:08:e5:45:4c:05:8e:14:11:76:b3:77:65:bb:9b:31:
e6:1d:2e:b0:54:b0:07:5d:20:55:76:6c:e6:0d:14:d0:0c:d5:
f7:54:07:85:1c:15:83:96:9a:d3:7f:9b:ad:db:38:76:77:2c:
df:4e:1e:7f:5c:d7:bb:5a:66:63:9c:e4:7b:96:ef:12:f3:02:
c9:65:69:00:cc:a5:af:ea:6e:95:f6:59:c4:68:17:d0:d2:26:
c6:5e:05:18:4a:a1:be:91:8e:ec:e9:f4:5f:51:01:fe:ca:c4:
01:5c:2e:e0:d8:88:ba:c6:33:05:b2:cf:9e:d3:b5:6a:18:26:
7a:d9:b3:76:65:42:0b:fd:a1:06:e1:15:b3:8a:9d:b3:27:97:
f1:23:a1:89:3a:f0:ae:cc:13:3a:d5:af:19:e6:0d:9c:e0:db:
05:72:ad:fd:8a:a0:7c:85:a3:85:ba:4c:ff:53:e4:ba:0e:37:
96:58:3a:24:bd:a0:15:3d:81:a6:4b:da:20:c9:fc:d0:aa:ed:
42:b4:0b:c6:1d:a1:9f:fc:a3:4d:c1:0f:78:bf:88:19:c4:ed:
f9:61:21:39:8f:90:95:88:e8:7e:d8:d5:e5:3b:97:59:cd:1f:
e5:32:3c:71:71:31:0c:36:8b:d0:b8:66:57:60:eb:af:08:7f:
a3:24:58:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:32:37 2025 by rpki-client