Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/Rk-SSHrSnhJerIwT2NY1GH0rX_k.roa
File: Rk-SSHrSnhJerIwT2NY1GH0rX_k.roa (raw, json)
Hash identifier: d8RmOH9R/A8TbsmmCWeibGwcYsj+J9nTHCHMIY024+4=
Subject key identifier: 46:4F:92:48:7A:D2:9E:12:5E:AC:8C:13:D8:D6:35:18:7D:2B:5F:F9
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 13D1
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/Rk-SSHrSnhJerIwT2NY1GH0rX_k.roa
Signing time: Fri 05 Jan 2024 09:07:10 +0000
ROA not before: Fri 05 Jan 2024 09:07:10 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17709
IP address blocks: 222.250.192.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5073 (0x13d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Jan 5 09:07:10 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=464F92487AD29E125EAC8C13D8D635187D2B5FF9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:6e:c6:f5:ea:da:1e:4c:3d:c8:7c:a9:78:b2:
4e:ba:d1:dd:fa:98:d5:5c:01:96:35:e4:c1:dc:4d:
39:67:70:f6:f9:cf:c7:d6:b3:ca:49:b7:aa:d7:d4:
12:71:2e:eb:52:9c:70:c8:da:3e:c6:a5:dc:9f:79:
5c:de:6a:a0:5b:cc:82:89:b7:37:10:4b:d5:54:ed:
0b:32:27:5c:6c:44:a2:22:3d:47:10:2d:8d:09:02:
3e:99:65:2f:e0:0a:d0:a0:56:2c:5e:57:91:4f:dc:
48:6e:c7:b8:db:80:fd:38:cb:df:6a:9b:8f:86:52:
58:7d:54:d3:13:ab:c6:4f:28:e2:c1:21:56:29:50:
3e:55:96:1a:d6:63:b2:7e:fe:c9:9a:b3:b7:0b:ac:
04:04:05:b6:4c:c0:b0:3e:94:ea:d5:9b:5e:ad:48:
dc:8b:bb:5d:39:59:89:dd:cc:b2:00:ce:77:23:26:
64:09:36:0d:37:5c:97:29:15:9f:64:aa:66:29:f9:
9b:e3:6b:cd:2e:d3:dc:a1:ac:c7:f4:4c:48:2d:6b:
5a:7f:5f:28:4e:49:d5:7d:5e:b4:80:68:02:97:be:
b1:07:9d:47:36:21:5c:87:64:ab:c8:58:87:ea:3b:
b0:cd:7c:74:d3:59:89:45:e0:d0:12:28:30:2f:f3:
fd:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:4F:92:48:7A:D2:9E:12:5E:AC:8C:13:D8:D6:35:18:7D:2B:5F:F9
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/Rk-SSHrSnhJerIwT2NY1GH0rX_k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
222.250.192.0/22
Signature Algorithm: sha256WithRSAEncryption
08:a6:b9:0c:c7:80:a9:c0:34:99:5b:ea:5e:db:a9:94:5a:48:
63:40:6b:7a:fc:7e:da:f2:67:51:44:cc:2c:9b:2c:50:e9:35:
4e:78:74:15:f9:0e:a5:ca:59:68:21:19:eb:20:2b:b4:52:95:
3f:aa:9b:e1:d9:aa:dc:3e:39:df:cb:07:0c:3d:05:eb:a2:dc:
c0:5d:29:32:20:c1:26:89:8f:41:60:7d:bd:f5:1d:c6:7f:b9:
09:89:cf:16:d1:64:70:66:31:2b:c9:b4:ba:24:c9:2d:aa:56:
aa:d4:a7:ad:08:45:27:5e:80:98:db:88:94:09:f1:32:09:60:
d7:8a:9b:05:25:20:86:04:47:34:f2:99:9a:31:d0:4e:74:fd:
e4:46:fd:0f:49:f7:58:c2:fc:90:4d:98:8d:a7:d0:4b:7f:ef:
12:b5:5f:9d:e4:1b:2d:66:8e:e0:f9:d8:e6:9e:ba:54:42:71:
10:e8:44:d3:0a:ba:3f:d6:70:c2:3b:89:d8:58:80:66:58:8d:
f2:76:25:06:4d:a8:f0:6d:53:73:55:8e:b8:5e:48:20:33:aa:
31:c6:3f:4a:28:30:8b:c6:25:35:1b:8f:9f:43:78:7d:c9:8f:
10:b9:bf:44:a3:de:2a:25:ff:4f:7e:19:86:d3:6a:b3:d3:5b:
05:de:67:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 19 04:31:41 2025 by rpki-client