Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/0q-Rk4zgeo2RHETxqn4ZHXTyX5E.roa
File: 0q-Rk4zgeo2RHETxqn4ZHXTyX5E.roa (raw, json)
Hash identifier: LrhekdEiaBVpZmQ+o2jEUhcazdLUfnTph3L16RwZIow=
Subject key identifier: D2:AF:91:93:8C:E0:7A:8D:91:1C:44:F1:AA:7E:19:1D:74:F2:5F:91
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 12B7
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/0q-Rk4zgeo2RHETxqn4ZHXTyX5E.roa
Signing time: Fri 01 Sep 2023 08:04:54 +0000
ROA not before: Fri 01 Sep 2023 08:04:54 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24154
IP address blocks: 210.200.8.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4791 (0x12b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:04:54 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=D2AF91938CE07A8D911C44F1AA7E191D74F25F91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:03:0b:1a:83:6c:f5:29:b4:70:2a:08:ee:09:
8b:3d:fc:1c:68:6f:8e:13:6b:c0:92:92:d5:23:5a:
6e:f6:87:9a:82:0c:1a:55:a2:47:50:0b:aa:3e:b9:
ad:24:a5:10:96:2e:38:eb:12:db:e1:86:17:bd:11:
24:6a:c1:9d:66:8a:b3:d9:f0:65:60:bd:6f:5f:e7:
96:ca:b9:95:68:5f:f7:f3:9c:38:c7:b2:1f:1b:7c:
0a:d2:73:df:ad:82:83:66:d7:a5:0a:84:65:46:a3:
38:ad:01:a0:76:f2:72:e6:58:31:35:89:18:4b:e2:
14:f0:7c:06:bd:f5:ce:aa:67:6e:48:73:30:62:8c:
b4:da:e8:a6:21:30:5c:c9:78:7a:d5:f3:34:ba:b8:
9f:c4:ea:f7:fc:e5:c6:c2:28:5a:fb:08:2b:37:1a:
fd:f3:4f:03:1b:84:0b:1b:bb:b7:ab:b9:b7:78:44:
ea:7f:dd:87:d1:84:52:19:13:a4:c3:33:6d:a7:06:
8e:ac:22:a7:94:b9:6d:ac:51:41:37:df:0a:56:1f:
9e:0f:20:f5:ca:8c:c2:0a:f8:f7:2e:dc:33:db:bd:
49:cc:fc:47:45:c1:ab:d4:5e:f3:b6:11:92:ef:86:
95:1d:a6:d3:00:c0:ec:2f:28:36:59:da:f7:a4:33:
23:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:AF:91:93:8C:E0:7A:8D:91:1C:44:F1:AA:7E:19:1D:74:F2:5F:91
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/0q-Rk4zgeo2RHETxqn4ZHXTyX5E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.200.8.0/21
Signature Algorithm: sha256WithRSAEncryption
28:23:a3:44:1f:a8:79:b4:a2:9f:d1:a3:53:67:bb:9c:d3:00:
fc:ea:1c:d3:d7:1c:61:c0:3d:dc:6f:93:6d:40:55:20:04:ea:
fa:f0:48:9b:6b:e7:9a:6c:d0:38:83:0f:64:26:73:0d:96:b4:
c3:06:d7:e2:c6:db:d1:2b:82:5d:b0:65:74:4d:d9:7f:d3:b8:
ce:a9:9e:84:b3:dc:02:0c:b3:13:2f:ed:59:0a:ba:af:05:28:
09:f1:6a:94:15:3e:4e:13:2e:d5:c4:31:f2:b3:69:93:cd:72:
ff:63:ad:55:a2:b6:ef:8b:ef:07:d5:5a:65:a9:0c:58:31:67:
a5:90:12:92:7e:0d:4a:e7:e5:28:81:64:00:b1:45:21:4f:3c:
2e:94:99:ed:26:03:69:44:33:4b:a3:1a:0c:ec:8d:66:d3:b5:
5d:e2:7d:3e:0c:fd:a7:de:f0:f1:d6:9d:76:ca:51:7c:4e:3f:
cf:89:a4:f5:23:0a:59:78:5d:53:b1:ea:86:55:62:5d:c5:22:
63:23:64:27:04:aa:77:17:16:37:30:54:52:31:73:c5:98:12:
98:bc:f8:e7:21:34:a6:08:99:6c:62:2f:e0:2a:41:fa:39:68:
15:d4:c8:8f:b6:c5:f5:fd:0b:64:92:6f:eb:75:df:08:37:40:
3c:ec:7d:33
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICErcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMzA5MDEw
ODA0NTRaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEQyQUY5MTkzOENFMDdB
OEQ5MTFDNDRGMUFBN0UxOTFENzRGMjVGOTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC/Awsag2z1KbRwKgjuCYs9/Bxob44Ta8CSktUjWm72h5qCDBpV
okdQC6o+ua0kpRCWLjjrEtvhhhe9ESRqwZ1mirPZ8GVgvW9f55bKuZVoX/fznDjH
sh8bfArSc9+tgoNm16UKhGVGozitAaB28nLmWDE1iRhL4hTwfAa99c6qZ25IczBi
jLTa6KYhMFzJeHrV8zS6uJ/E6vf85cbCKFr7CCs3Gv3zTwMbhAsbu7erubd4ROp/
3YfRhFIZE6TDM22nBo6sIqeUuW2sUUE33wpWH54PIPXKjMIK+Pcu3DPbvUnM/EdF
wavUXvO2EZLvhpUdptMAwOwvKDZZ2vekMyN9AgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQU0q+Rk4zgeo2RHETxqn4ZHXTyX5EwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvMHEtUms0emdlbzJSSEVUeHFuNFpI
WFR5WDVFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA9LICDAN
BgkqhkiG9w0BAQsFAAOCAQEAKCOjRB+oebSin9GjU2e7nNMA/Ooc09ccYcA93G+T
bUBVIATq+vBIm2vnmmzQOIMPZCZzDZa0wwbX4sbb0SuCXbBldE3Zf9O4zqmehLPc
AgyzEy/tWQq6rwUoCfFqlBU+ThMu1cQx8rNpk81y/2OtVaK274vvB9VaZakMWDFn
pZASkn4NSuflKIFkALFFIU88LpSZ7SYDaUQzS6MaDOyNZtO1XeJ9Pgz9p97w8dad
dspRfE4/z4mk9SMKWXhdU7HqhlViXcUiYyNkJwSqdxcWNzBUUjFzxZgSmLz45yE0
pgiZbGIv4CpB+jloFdTIj7bF9f0LZJJv63XfCDdAPOx9Mw==
-----END CERTIFICATE-----
Generated at Mon Jan 15 22:54:32 2024 by rpki-client on console-ams.rpki-client.org