Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/11WbI0q-epdmxh7LLc3GUjdOuds.roa
File: 11WbI0q-epdmxh7LLc3GUjdOuds.roa (raw, json)
Hash identifier: 6NF+mtJrF9YRAddRl7rURpoYbzpKPCPV0MOg1b2MaPk=
Subject key identifier: D7:55:9B:23:4A:BE:7A:97:66:C6:1E:CB:2D:CD:C6:52:37:4E:B9:DB
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0DB1
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/11WbI0q-epdmxh7LLc3GUjdOuds.roa
Signing time: Wed 29 Sep 2021 02:39:26 +0000
ROA not before: Wed 29 Sep 2021 02:39:26 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17709
IP address blocks: 202.178.128.0/17 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3505 (0xdb1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:39:26 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=D7559B234ABE7A9766C61ECB2DCDC652374EB9DB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:58:f7:0d:12:fb:3e:6b:ac:aa:c3:a6:06:37:
1b:c4:89:fb:b7:0d:ef:b8:ad:b3:a5:07:ec:6b:f3:
5a:79:27:0c:ed:f1:f4:2b:8f:90:e5:5e:9f:11:2a:
20:43:87:15:56:cd:fd:bc:7a:80:4c:e4:ac:05:f1:
6a:e0:0c:88:68:bc:21:a0:59:72:be:c5:47:c1:92:
b9:ef:99:d7:5c:96:0c:2b:e2:33:74:8b:14:94:3e:
0d:d6:ff:05:36:bc:95:dd:dd:5d:b6:c0:5b:d7:4b:
a5:c8:22:3a:fd:97:05:4d:97:64:31:30:b1:3e:34:
99:b8:76:4a:1f:4e:67:50:ad:81:8c:fc:7a:1f:d9:
fb:69:b9:53:e1:e9:e9:d3:48:54:32:d8:3a:7f:e7:
5a:0c:ec:f0:d3:1a:61:9c:91:66:c0:e2:6b:76:fe:
22:7d:ce:3d:46:6f:4c:e9:dc:24:36:b7:8b:3b:8d:
2b:3e:1d:f7:bb:f1:59:f9:2a:0c:a4:a8:f2:40:fd:
c2:46:bd:fc:48:76:87:b0:78:80:8c:b4:75:e7:b9:
c1:f8:5a:a4:2f:93:21:95:8b:9c:64:ed:6d:6d:e6:
d5:87:a1:a6:29:99:2e:25:8b:8b:6a:c7:ef:ab:25:
2d:bf:a2:77:f8:35:20:45:6a:d4:9f:2b:11:1e:1c:
c8:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:55:9B:23:4A:BE:7A:97:66:C6:1E:CB:2D:CD:C6:52:37:4E:B9:DB
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/11WbI0q-epdmxh7LLc3GUjdOuds.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.178.128.0/17
Signature Algorithm: sha256WithRSAEncryption
57:f9:b4:e5:27:c3:62:fc:5c:c3:b9:5e:e6:3d:c3:91:00:10:
41:59:92:05:b8:5a:17:a9:4c:3a:7a:3e:f7:ff:c4:e5:a1:e8:
57:32:d9:5d:e9:c5:3a:f6:23:d6:7d:a8:50:ee:b4:d6:24:44:
97:7c:e8:92:cf:06:1d:64:cd:d3:6b:87:33:ba:b1:c0:c8:17:
0a:fd:a2:36:93:73:d8:22:75:3a:b9:2d:29:40:ca:11:07:57:
3d:0c:1e:91:ea:f6:8c:82:dc:4b:e4:32:ba:d0:8d:aa:6d:35:
00:cd:68:fd:9c:d7:12:3d:2d:76:32:a8:26:26:06:1f:50:a8:
02:cc:ad:7c:09:dd:96:9d:3d:6a:75:73:7c:75:46:8a:bd:72:
36:bf:29:11:8d:22:8a:24:6c:5d:d1:71:6a:c9:3c:8d:26:23:
71:6c:65:e6:b0:7c:c0:08:3d:ce:11:43:63:47:42:2a:e3:0a:
f4:78:32:e8:99:29:39:e1:15:1e:77:f4:51:af:20:a5:46:db:
07:a2:78:aa:66:4c:32:b8:b6:85:dc:30:70:f3:c5:1d:9d:a1:
3d:8e:bb:16:1e:00:4d:a4:c3:90:a8:e6:e1:f4:90:62:df:47:
0d:32:7a:2f:73:ba:f1:40:2b:e6:d1:bd:c4:1c:47:45:79:e9:
2d:6f:fb:06
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDbEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMTA5Mjkw
MjM5MjZaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEQ3NTU5QjIzNEFCRTdB
OTc2NkM2MUVDQjJEQ0RDNjUyMzc0RUI5REIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDPWPcNEvs+a6yqw6YGNxvEifu3De+4rbOlB+xr81p5Jwzt8fQr
j5DlXp8RKiBDhxVWzf28eoBM5KwF8WrgDIhovCGgWXK+xUfBkrnvmddclgwr4jN0
ixSUPg3W/wU2vJXd3V22wFvXS6XIIjr9lwVNl2QxMLE+NJm4dkofTmdQrYGM/Hof
2ftpuVPh6enTSFQy2Dp/51oM7PDTGmGckWbA4mt2/iJ9zj1Gb0zp3CQ2t4s7jSs+
Hfe78Vn5KgykqPJA/cJGvfxIdoeweICMtHXnucH4WqQvkyGVi5xk7W1t5tWHoaYp
mS4li4tqx++rJS2/onf4NSBFatSfKxEeHMjHAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQU11WbI0q+epdmxh7LLc3GUjdOudswHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvMTFXYkkwcS1lcGRteGg3TExjM0dV
amRPdWRzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEB8qygDAN
BgkqhkiG9w0BAQsFAAOCAQEAV/m05SfDYvxcw7le5j3DkQAQQVmSBbhaF6lMOno+
9//E5aHoVzLZXenFOvYj1n2oUO601iREl3zoks8GHWTN02uHM7qxwMgXCv2iNpNz
2CJ1OrktKUDKEQdXPQweker2jILcS+QyutCNqm01AM1o/ZzXEj0tdjKoJiYGH1Co
AsytfAndlp09anVzfHVGir1yNr8pEY0iiiRsXdFxask8jSYjcWxl5rB8wAg9zhFD
Y0dCKuMK9Hgy6JkpOeEVHnf0Ua8gpUbbB6J4qmZMMri2hdwwcPPFHZ2hPY67Fh4A
TaTDkKjm4fSQYt9HDTJ6L3O68UAr5tG9xBxHRXnpLW/7Bg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:59:59 2024 by rpki-client on console-ams.rpki-client.org