Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/z1H4EuCwmLfUwb_8S39MpdSx3Hg.roa
File: z1H4EuCwmLfUwb_8S39MpdSx3Hg.roa (raw, json)
Hash identifier: n1v0iHQIjsh+w1IZX4RObLVOuGNIeS6UphGQkNrbvCQ=
Subject key identifier: CF:51:F8:12:E0:B0:98:B7:D4:C1:BF:FC:4B:7F:4C:A5:D4:B1:DC:78
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 12BD
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/z1H4EuCwmLfUwb_8S39MpdSx3Hg.roa
Signing time: Fri 01 Sep 2023 08:04:55 +0000
ROA not before: Fri 01 Sep 2023 08:04:55 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17709
IP address blocks: 203.79.248.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4797 (0x12bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:04:55 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=CF51F812E0B098B7D4C1BFFC4B7F4CA5D4B1DC78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:fa:d5:fa:60:35:49:28:96:e6:11:13:76:44:
5d:39:5e:8e:68:fb:07:4d:df:3e:c6:5f:fa:6b:10:
78:a2:4e:0a:e5:94:38:e7:17:72:5c:ef:1f:c3:9e:
6c:1d:a5:9f:1d:69:15:89:63:9e:40:39:55:67:01:
d3:31:16:3d:53:f7:bc:df:50:19:61:18:31:3b:50:
9a:13:6c:32:fe:6d:f6:ba:44:82:d7:20:0b:68:14:
a3:5f:af:fe:34:73:c2:14:2a:c1:d6:07:dd:c5:08:
06:c1:86:14:ff:e0:ff:1f:f1:c1:c6:8a:51:7f:53:
9d:dc:5c:35:56:28:bf:0c:bf:aa:4d:f0:3c:67:95:
8c:bc:75:35:3a:f7:70:9d:62:e1:d8:33:74:f3:5d:
9e:16:c7:55:3b:f5:b9:62:8e:1a:04:f8:7d:16:19:
fa:0a:87:fc:31:9d:81:f8:af:e3:31:eb:e6:1d:bc:
a5:d0:09:db:92:03:aa:cf:fd:9e:71:5b:64:5d:e0:
5b:65:39:0f:d7:82:aa:f4:8a:1a:f8:42:60:81:c1:
ec:41:70:76:9a:2b:51:93:d3:e6:62:86:9e:2f:ff:
7d:0f:86:d4:f1:cb:c8:4c:5a:e9:21:9f:7f:96:14:
31:27:6f:dd:98:c2:c3:24:fe:fa:6d:f8:bd:4c:b1:
f9:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:51:F8:12:E0:B0:98:B7:D4:C1:BF:FC:4B:7F:4C:A5:D4:B1:DC:78
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/z1H4EuCwmLfUwb_8S39MpdSx3Hg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.79.248.0/21
Signature Algorithm: sha256WithRSAEncryption
8f:8f:1d:e3:09:37:75:3e:15:18:82:52:85:30:2c:cd:78:72:
36:d1:2a:cd:95:e2:35:86:50:38:8f:8b:3b:cb:a7:19:b7:70:
2a:0f:e6:5f:6c:b3:61:87:b9:64:49:2d:95:31:8c:84:70:84:
eb:b3:50:b8:74:ec:25:21:dc:8c:09:76:61:9b:f0:b1:65:30:
1a:7f:2d:53:29:5d:75:9f:11:7b:08:2b:62:bc:d1:33:81:ae:
81:33:f1:7d:12:0f:f5:2b:97:f7:65:b7:b4:9f:8a:df:fd:11:
8d:db:37:1f:19:a5:54:71:f5:46:e5:f2:d5:f0:bf:58:46:5e:
69:b1:2f:d3:e2:b7:4a:c1:57:fa:cf:47:9c:1f:06:03:35:01:
c5:9d:ea:04:76:35:82:d1:c7:11:31:0c:e9:88:90:f2:f7:aa:
5e:b6:7b:e8:cc:01:65:e1:ad:1a:b5:4d:36:09:d2:bf:c2:ec:
cd:e2:93:57:d8:f5:85:78:79:6b:d6:ea:df:93:8f:34:2d:e9:
a6:58:0d:03:0d:d6:5b:02:fe:bc:d1:1d:d3:d5:41:08:9b:73:
8a:7a:a5:e1:de:89:20:38:93:aa:78:fe:22:41:db:1d:2d:bc:
82:fa:a4:2d:1e:f4:0b:07:f2:6d:5b:73:91:85:25:5c:01:4a:
b8:45:91:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:44:14 2025 by rpki-client