Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/WdCMSKLWuSLTCRqAJauZTh95XY4.roa
File: WdCMSKLWuSLTCRqAJauZTh95XY4.roa (raw, json)
Hash identifier: WQhZRPdGUYYez5jICtrIxuIML32HlWB9d4XDq0L+GMg=
Subject key identifier: 59:D0:8C:48:A2:D6:B9:22:D3:09:1A:80:25:AB:99:4E:1F:79:5D:8E
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 13D1
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/WdCMSKLWuSLTCRqAJauZTh95XY4.roa
Signing time: Fri 05 Jan 2024 09:07:11 +0000
ROA not before: Fri 05 Jan 2024 09:07:11 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17709
IP address blocks: 218.34.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5073 (0x13d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Jan 5 09:07:11 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=59D08C48A2D6B922D3091A8025AB994E1F795D8E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:b1:ac:6b:2d:be:82:08:67:c7:64:ad:7a:5f:
d3:c6:64:05:cc:a7:81:f3:fb:00:93:b1:16:28:65:
59:f9:77:bb:af:e5:ad:ba:f4:21:f4:88:23:4c:f0:
16:f8:de:00:fe:32:41:c5:45:3f:21:30:0d:df:8b:
87:5a:10:5b:d6:78:4c:c6:dc:46:10:d8:28:56:0f:
66:39:27:0b:c4:1f:fa:66:ea:24:3f:b0:7f:01:f7:
72:fe:a1:14:8e:f0:27:56:f6:7c:a5:f7:78:df:86:
ba:0d:cb:e2:1f:3f:0a:6b:13:ca:7f:b4:f7:e4:78:
29:fc:b2:63:74:dc:96:5a:6c:4a:e8:c7:65:c3:4c:
5d:46:45:7d:07:36:6e:41:70:55:f5:f9:c9:34:66:
71:f5:ca:e2:7c:f5:2e:4e:c9:16:e2:91:4e:c3:9d:
2a:f4:a9:28:06:4b:2e:1d:8e:1c:cc:bb:d6:64:80:
38:24:06:8a:b1:85:d2:da:95:8a:27:7d:bd:a5:d2:
16:08:fd:97:2a:d3:23:9d:06:6a:bd:9f:96:21:0e:
52:a7:f0:44:a7:0a:03:0f:8c:7c:5e:53:93:3a:23:
88:d4:e9:66:3b:d5:c7:1f:8a:bc:52:67:15:03:cd:
9a:80:f5:96:c5:89:4a:a0:f7:30:44:53:8a:a6:cb:
f0:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:D0:8C:48:A2:D6:B9:22:D3:09:1A:80:25:AB:99:4E:1F:79:5D:8E
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/WdCMSKLWuSLTCRqAJauZTh95XY4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.34.0.0/16
Signature Algorithm: sha256WithRSAEncryption
c1:70:8c:c5:bb:f3:01:b1:0f:9e:90:bd:2a:e7:04:df:eb:84:
40:44:cb:2f:1a:b2:fc:fa:55:0f:ad:6b:b3:b2:f8:b9:60:5e:
0a:34:92:42:04:39:9a:e6:f2:57:c7:37:cf:90:0b:f0:ed:93:
2b:c3:58:39:8c:f8:55:20:40:73:36:dd:5e:79:72:dd:bd:c7:
79:fa:d3:a1:76:ba:72:64:8a:8f:a0:6d:43:82:89:7c:6e:2f:
8b:08:08:0f:1d:2e:cd:10:93:d8:2c:9b:c0:90:a2:fd:10:b5:
b4:b3:33:72:02:24:0f:f2:c5:2d:b4:dd:7a:10:68:d4:93:5b:
4b:46:2a:79:80:15:f1:e0:64:96:d7:3a:ca:51:73:0a:a4:8e:
68:10:62:fa:a3:b0:d3:04:5b:1a:54:07:74:56:9f:e6:ae:51:
72:36:5f:41:ac:5a:01:61:ef:c6:9e:67:43:e8:7e:da:84:57:
41:06:c4:30:c8:9d:bd:c7:d1:ae:e1:e7:c8:6a:a8:63:a7:3b:
c5:f6:3e:4c:a1:5a:5d:2c:6f:85:18:46:4b:1d:68:67:10:21:
ce:6a:08:ef:d4:10:15:1f:41:5a:e6:21:6b:88:7c:47:a8:00:
8e:a3:40:6c:f5:6f:60:2f:c6:be:f4:03:03:d7:0e:68:5b:4d:
76:c4:57:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 19 00:43:22 2025 by rpki-client