Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/8ODBm7hIxbpt3_VVj1QrKHvRc3E.roa
File: 8ODBm7hIxbpt3_VVj1QrKHvRc3E.roa (raw, json)
Hash identifier: v0CYAEvHh9pkdOFxWjBxetlyiVlM059Y18hXvUsIkQc=
Subject key identifier: F0:E0:C1:9B:B8:48:C5:BA:6D:DF:F5:55:8F:54:2B:28:7B:D1:73:71
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 13D1
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/8ODBm7hIxbpt3_VVj1QrKHvRc3E.roa
Signing time: Fri 05 Jan 2024 09:07:11 +0000
ROA not before: Fri 05 Jan 2024 09:07:11 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17709
IP address blocks: 222.250.0.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5073 (0x13d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Jan 5 09:07:11 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=F0E0C19BB848C5BA6DDFF5558F542B287BD17371
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:5c:5c:04:4e:6e:ac:e0:18:0d:ca:dc:df:63:
4b:2d:02:14:e5:3b:32:a8:24:42:4b:b7:8f:2e:93:
81:82:15:43:c3:06:17:df:f1:b2:9c:52:80:fe:24:
2d:93:dd:80:7c:53:03:39:0e:fd:6f:15:9f:78:ba:
9c:db:2d:93:e3:3f:df:ab:1b:24:8e:67:84:b0:80:
07:39:cf:c7:dd:35:c6:65:e9:4a:ac:6b:07:e1:8c:
8c:ad:7b:61:80:5a:2d:8a:2e:1c:22:9b:3e:d4:cb:
b0:f3:49:8e:20:dc:0f:a8:35:12:ac:86:7a:d9:be:
4a:b0:77:0d:83:06:51:2b:b6:39:ac:ec:89:93:35:
77:59:29:a1:fb:74:e0:c3:c5:d9:c5:bd:7b:9d:15:
7c:b3:71:66:70:82:33:e1:31:da:c4:ed:83:c9:7c:
aa:ba:32:62:66:6d:21:3a:03:4a:37:ce:e8:ca:8d:
a5:58:77:c4:42:a4:b2:6f:64:99:35:00:3c:de:89:
8c:3f:eb:0d:7d:76:0f:b3:2b:fb:84:25:67:a5:60:
7a:a9:ed:a6:fb:81:9b:c9:15:52:63:1c:0d:ff:db:
11:34:21:ae:4d:c5:07:f5:78:ee:a9:61:eb:90:e4:
e7:8f:30:33:3d:63:d0:f6:40:26:13:a3:cc:cd:a8:
e1:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:E0:C1:9B:B8:48:C5:BA:6D:DF:F5:55:8F:54:2B:28:7B:D1:73:71
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/8ODBm7hIxbpt3_VVj1QrKHvRc3E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
222.250.0.0/18
Signature Algorithm: sha256WithRSAEncryption
7d:9c:f5:33:1b:17:76:1d:10:74:90:7d:df:e2:f6:d7:59:59:
ef:42:05:8b:95:7d:09:df:b3:ca:5a:a3:94:11:99:27:04:93:
d2:86:4c:e4:10:c8:00:75:86:b7:1d:73:6b:92:92:1a:76:71:
20:8d:fb:d3:c5:82:e8:40:3e:be:70:b4:0f:bc:cd:58:29:ec:
c8:76:bc:ef:6f:5b:f2:1e:26:0c:2c:66:b7:bf:57:e5:d8:f7:
de:88:68:35:9b:0a:12:ec:80:73:1c:7c:a8:f8:c5:ba:99:86:
21:8e:9c:c9:13:2f:67:04:91:ff:d6:77:8f:57:d3:7c:58:f1:
88:39:84:2d:6a:44:b8:16:0e:14:ba:d0:bc:e8:bc:92:95:d2:
0b:3f:49:8d:e6:6c:87:d6:41:23:bb:b9:77:f7:ba:ed:1b:a1:
2e:b5:0b:a7:3d:7d:42:68:cc:58:fb:cc:b7:93:7d:da:ce:c3:
3f:6e:98:e4:2c:d3:3b:d5:ab:09:79:89:51:e4:12:de:66:b3:
aa:a7:2a:ef:76:19:6a:8b:cd:f8:b6:1a:23:47:05:3e:a7:ad:
d6:b1:3f:58:ed:f3:b9:b7:6d:5b:fd:e1:4a:af:1f:f0:38:fc:
9e:99:f8:c3:c4:56:af:33:86:bd:20:f4:6f:06:64:76:11:f8:
e3:13:7f:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 19 00:52:44 2025 by rpki-client