Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/wVq0_0rbtzjjZkm4W9jdRn09KJI.roa
File: wVq0_0rbtzjjZkm4W9jdRn09KJI.roa (raw, json)
Hash identifier: eWkarG4YsQYIr0Ek2L1u8K7Ne5bUWXRgeIC2lqMVPzM=
Subject key identifier: C1:5A:B4:FF:4A:DB:B7:38:E3:66:49:B8:5B:D8:DD:46:7D:3D:28:92
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 13D5
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/wVq0_0rbtzjjZkm4W9jdRn09KJI.roa
Signing time: Fri 05 Jan 2024 09:17:12 +0000
ROA not before: Fri 05 Jan 2024 09:17:12 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17709
IP address blocks: 222.250.128.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5077 (0x13d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Jan 5 09:17:12 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=C15AB4FF4ADBB738E36649B85BD8DD467D3D2892
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:2b:58:6a:1d:cc:40:43:cc:0e:06:27:5e:a9:
8a:a6:b0:62:65:31:f2:42:49:91:07:2a:3a:b7:0f:
60:63:f4:3c:84:ac:33:30:53:0c:cd:e1:f1:36:33:
51:e9:02:0e:69:f4:82:77:c9:af:97:2f:72:ae:43:
b3:fb:d3:ed:26:05:6e:cd:94:56:a9:e8:2f:78:9e:
e9:44:80:ee:f2:46:a9:35:5e:b2:df:65:35:3c:a2:
d1:40:05:c6:bc:ef:77:00:1c:82:d7:a5:4a:9e:18:
92:c1:63:54:85:d2:9a:00:8b:47:ef:df:82:d3:15:
6d:36:ae:53:78:e4:b4:d5:e0:cc:a2:31:77:af:e2:
3a:1b:a6:c6:01:94:b0:0a:62:c8:6d:38:ba:84:01:
23:fc:66:ad:6d:1e:31:92:ff:cd:11:30:e9:97:7e:
be:26:c6:4e:b5:3e:67:1e:8c:e1:21:0f:7e:29:7c:
52:b9:b2:65:31:d7:81:6c:e0:30:a2:70:ea:b8:e0:
f4:cc:5d:a0:a6:65:f2:6c:ad:3d:5b:dc:ed:8f:c2:
89:46:44:1d:f6:58:8d:a6:57:60:23:31:07:70:b4:
0c:bf:2e:ea:8c:01:b0:4a:64:9d:a7:7f:1d:91:46:
19:60:ff:fc:5b:4b:e5:4e:be:3f:dd:8b:4f:9f:79:
fe:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:5A:B4:FF:4A:DB:B7:38:E3:66:49:B8:5B:D8:DD:46:7D:3D:28:92
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/wVq0_0rbtzjjZkm4W9jdRn09KJI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
222.250.128.0/18
Signature Algorithm: sha256WithRSAEncryption
0f:9e:0d:2d:b5:cc:00:cd:db:88:6d:23:9b:7b:5f:0f:d1:41:
3e:e5:97:95:81:74:90:3e:b5:54:f1:a4:30:d9:cb:20:af:15:
20:4f:f4:20:9b:ce:72:5c:56:49:24:ed:79:fc:a6:4d:b0:fa:
ef:2d:ef:3f:e4:64:fc:54:c5:82:f0:3e:d6:f5:fa:d1:e4:dc:
92:e6:b3:84:ce:eb:d0:5d:aa:60:0c:16:9f:5c:c4:d1:38:d0:
02:60:44:a7:3f:e8:87:d3:4f:1e:2c:46:99:50:08:d5:95:29:
81:30:51:c0:01:77:ef:b5:bd:5f:36:08:03:91:69:df:d9:6d:
c3:be:b6:57:de:99:13:3a:3f:45:85:db:10:ee:7e:a4:fc:c0:
3a:c1:23:01:67:d5:21:06:64:86:e8:40:fd:8a:03:cd:36:01:
d7:bc:0e:d6:d7:a5:5c:75:18:ba:7e:7c:5d:0d:61:ed:b1:ef:
0e:13:6e:60:19:72:47:38:8e:7e:22:b1:94:9b:80:9f:95:16:
4e:17:b5:bc:5e:d5:b7:94:88:3b:b1:ed:dc:32:8f:a0:8e:4f:
bc:4d:bd:38:1e:04:17:80:3c:08:0c:ba:5c:18:c5:85:6f:e3:
8a:f3:de:e2:71:bb:5b:d1:46:62:34:0f:ac:99:4d:28:a1:60:
f7:7b:6c:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 22 16:41:09 2025 by rpki-client