Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/QFcQc_mhgRB0ls_VaoQq54ZvK8I.roa
File: QFcQc_mhgRB0ls_VaoQq54ZvK8I.roa (raw, json)
Hash identifier: euMJ9fk8ZgqXUwOqM7mbzLPqarR7yu7DrVKnR6f+c8E=
Subject key identifier: 40:57:10:73:F9:A1:81:10:74:96:CF:D5:6A:84:2A:E7:86:6F:2B:C2
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 13D1
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/QFcQc_mhgRB0ls_VaoQq54ZvK8I.roa
Signing time: Fri 05 Jan 2024 09:07:11 +0000
ROA not before: Fri 05 Jan 2024 09:07:11 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17709
IP address blocks: 218.184.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5073 (0x13d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Jan 5 09:07:11 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=40571073F9A181107496CFD56A842AE7866F2BC2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:4c:4d:d9:b9:d6:40:ee:69:65:f8:cc:4b:99:
79:76:b6:50:bb:af:38:72:e8:9b:c0:0f:35:d1:b8:
4b:e4:a1:64:f3:21:dd:ad:98:41:c4:71:d1:ec:c3:
7f:45:9c:46:aa:ff:2a:20:a0:e7:3b:ff:6f:13:a1:
51:cc:e1:e9:48:3f:1e:19:3d:21:84:98:ea:a2:52:
03:58:be:8f:c6:02:fb:9f:ec:04:ed:d8:34:74:b0:
8b:3d:72:29:10:b7:72:c7:ae:ec:c9:7f:f3:c3:ca:
f8:91:5b:cb:4a:16:e5:e5:43:62:98:e4:8d:3f:43:
89:8f:33:6d:93:1f:2b:09:94:81:c5:10:8c:c0:15:
bd:1e:7f:6d:ea:bf:61:97:73:f9:b3:f9:f3:57:4f:
60:94:c2:d7:4b:f9:a6:e3:b3:48:80:70:2a:d3:cd:
08:e8:8e:9d:2f:6f:88:3d:30:5b:d6:ef:5f:7b:d5:
dd:bb:15:1f:47:e1:3b:69:75:85:f6:ca:45:85:87:
29:fb:cb:7a:35:88:44:22:fb:2e:4e:49:12:4a:ee:
5b:a0:5d:44:30:18:43:b4:70:e0:85:2e:d9:d2:75:
07:fa:6a:3b:bd:18:8a:da:f2:22:ff:09:59:38:0c:
56:b2:3d:88:91:11:90:98:65:2f:35:92:ab:e4:6c:
09:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:57:10:73:F9:A1:81:10:74:96:CF:D5:6A:84:2A:E7:86:6F:2B:C2
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/QFcQc_mhgRB0ls_VaoQq54ZvK8I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.184.0.0/16
Signature Algorithm: sha256WithRSAEncryption
8a:d4:2b:09:33:82:a1:0c:d5:11:d0:db:d9:65:f6:34:6d:39:
23:54:ab:b5:ea:5c:10:13:40:78:d8:0a:3c:30:64:11:e3:02:
0b:6e:f1:0f:45:6c:dd:23:b1:a2:ce:88:e1:ce:56:2a:1b:73:
61:f0:04:10:2b:f5:b1:39:b7:53:81:50:00:58:bb:46:78:d1:
a1:61:ad:45:3f:a7:eb:89:80:0b:f9:03:e0:60:bd:87:2f:7d:
34:19:15:7e:06:08:eb:9e:6b:07:89:26:fb:bc:2c:22:24:2b:
e7:e6:49:88:09:2f:d9:18:ce:91:05:03:ab:3b:ba:bd:25:2b:
66:ac:9a:60:ac:09:b9:21:1e:fd:46:43:53:73:a7:74:27:cc:
c7:c4:38:a0:20:38:f5:cd:40:6b:ec:6f:66:0c:5e:49:a4:17:
c8:cb:62:61:9f:8c:7f:67:eb:83:c9:19:39:92:ea:a8:ec:0e:
2f:a8:d3:84:8b:ca:43:85:02:b1:e8:c3:d5:ca:18:56:d1:5a:
76:c9:27:c4:85:9e:da:b5:7b:a2:ab:cb:e9:da:b3:c3:b0:a8:
ab:7e:60:9b:f0:c2:ca:d8:bb:98:2f:95:d7:aa:d8:47:bf:c6:
78:12:b0:19:5d:0b:f7:98:2e:53:74:4f:e9:08:9c:e7:7d:1d:
3d:9b:55:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 19 01:28:26 2025 by rpki-client