Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/C4x1XiDgHexDDbH-we-6R_wiigw.roa
File: C4x1XiDgHexDDbH-we-6R_wiigw.roa (raw, json)
Hash identifier: FilTTqbjL5LgESYBchpyU6x0xc1JZ/tOJ6sgxzwZME4=
Subject key identifier: 0B:8C:75:5E:20:E0:1D:EC:43:0D:B1:FE:C1:EF:BA:47:FC:22:8A:0C
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 13D1
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/C4x1XiDgHexDDbH-we-6R_wiigw.roa
Signing time: Fri 05 Jan 2024 09:07:11 +0000
ROA not before: Fri 05 Jan 2024 09:07:11 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17709
IP address blocks: 222.250.128.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5073 (0x13d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Jan 5 09:07:11 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=0B8C755E20E01DEC430DB1FEC1EFBA47FC228A0C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:06:eb:df:79:da:e7:ab:9d:ab:c0:36:b2:6b:
02:35:e4:0e:71:dc:03:e0:85:de:f8:19:0d:50:b5:
46:4b:07:95:a3:a6:0c:05:20:11:2c:ce:aa:8f:a1:
79:b5:40:48:b6:0f:9a:fc:ed:80:48:b5:71:3d:14:
60:8b:b2:a0:bb:2c:d5:93:3c:f8:21:61:04:4e:c2:
30:1d:4e:f3:a6:73:28:e0:88:4f:a5:9e:0d:60:f6:
af:e4:16:2f:ab:b1:8a:d9:df:f1:71:25:89:1e:80:
04:91:b2:7a:7a:1d:1a:24:19:fb:27:c4:d1:b3:7e:
c0:9e:fe:73:b4:b4:c3:e2:8b:0b:4e:12:06:d1:15:
0a:77:d1:67:f7:8a:d3:aa:c4:65:38:26:20:f8:a7:
3f:a9:46:37:f0:19:d3:51:db:b0:19:6a:44:da:ed:
3f:73:bc:51:a7:fc:bb:9d:81:c3:7c:f4:7c:ab:5a:
5d:21:72:18:7b:8f:a3:d7:49:cf:6d:82:d0:29:d4:
da:88:47:16:5f:78:97:d6:f0:38:1e:24:7b:9c:a1:
44:6b:72:68:15:13:72:91:f3:5b:31:d2:c2:71:e8:
57:ea:f7:a5:1f:13:03:f3:95:2c:4c:56:52:f1:d9:
22:f6:09:1e:93:24:0a:f6:6a:63:88:a4:12:4b:7a:
54:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:8C:75:5E:20:E0:1D:EC:43:0D:B1:FE:C1:EF:BA:47:FC:22:8A:0C
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/C4x1XiDgHexDDbH-we-6R_wiigw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
222.250.128.0/18
Signature Algorithm: sha256WithRSAEncryption
90:86:aa:16:f0:40:de:2d:c8:9e:b7:6c:19:a8:7e:dd:22:c3:
39:49:92:46:59:4c:25:28:8a:a6:db:29:1c:6d:09:39:9c:06:
b8:ae:4b:f8:3e:fd:df:48:0c:43:9b:7e:f4:6b:f8:e3:83:93:
b0:33:80:00:df:a4:73:23:64:43:e2:f3:6b:40:ec:36:9e:28:
19:0f:5e:28:d8:bc:3c:11:d0:84:86:32:a1:0d:e6:a1:4e:05:
b9:4f:20:48:30:45:74:c3:d1:d8:e6:bd:bb:bc:c0:11:83:98:
ad:59:8f:b7:da:fc:00:03:08:70:39:f9:a5:b5:e9:90:c7:52:
a4:67:1d:14:f1:74:bc:b5:f1:92:d8:e3:12:e3:77:36:10:2e:
09:eb:3e:c0:62:3d:28:be:c5:20:53:d9:1d:8e:0c:91:be:59:
3f:d5:79:94:69:9e:d3:57:6a:cf:9f:b4:07:b9:9f:e8:ed:8a:
2b:81:b9:3c:e8:ca:ea:bd:5b:b7:33:db:86:12:75:f2:1a:6b:
5b:47:0e:5e:b7:4f:3b:d1:77:af:a0:0d:45:20:45:31:a9:5a:
fc:a7:d1:f9:c8:13:5a:53:c8:4c:9f:06:82:4b:00:e0:ca:fa:
19:b6:01:7a:9c:01:78:3b:24:49:41:53:b9:0c:e3:4f:01:ed:
79:29:1d:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 19 00:32:36 2025 by rpki-client