Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/19aVc0ZpDP698OSmJvKWqGhLKws.roa
File: 19aVc0ZpDP698OSmJvKWqGhLKws.roa (raw, json)
Hash identifier: kXN0n453BqTtRTzTXL+A818Bencq4EgOWjX7zOfFeV8=
Subject key identifier: D7:D6:95:73:46:69:0C:FE:BD:F0:E4:A6:26:F2:96:A8:68:4B:2B:0B
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0DED
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/19aVc0ZpDP698OSmJvKWqGhLKws.roa
Signing time: Wed 29 Sep 2021 02:39:45 +0000
ROA not before: Wed 29 Sep 2021 02:39:45 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17709
IP address blocks: 210.202.128.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3565 (0xded)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:39:45 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=D7D6957346690CFEBDF0E4A626F296A8684B2B0B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:d3:2e:c6:a0:96:7b:36:ae:f0:83:85:2a:de:
8b:1c:c1:d4:ce:fe:59:38:7e:60:b0:27:14:1e:8f:
27:59:af:3e:46:a6:31:19:87:1f:f8:9e:89:2b:49:
02:d3:7c:20:37:80:df:d9:e1:e0:8b:19:02:4b:35:
09:61:0d:8d:b0:5e:7a:fa:f4:89:25:c6:74:c3:0d:
44:7d:0e:1b:6d:18:ed:ae:ba:42:54:e6:9f:e7:81:
9a:75:93:93:d6:56:30:6d:21:16:26:4e:e4:f1:a0:
35:a0:80:83:35:bc:bd:3c:51:d0:53:2d:de:9c:fa:
4a:a9:3c:2c:e0:75:23:0f:4e:20:b4:1c:5c:bd:2d:
a8:3e:da:16:63:5c:8e:8a:86:c2:d5:17:1b:61:15:
20:4f:08:a4:ec:02:40:75:8c:52:e6:21:42:cc:1e:
a1:21:2a:64:04:c6:fb:7b:b4:48:36:b2:1c:b7:53:
7d:d0:cc:56:64:03:33:99:aa:b7:a1:3a:42:9e:ab:
55:96:c3:00:2d:d7:41:99:ff:99:69:ae:9e:b6:61:
86:93:3b:c7:df:79:4a:9e:40:89:cf:d6:ff:2d:07:
d0:b2:23:1c:fe:ee:6d:ad:01:49:6a:7e:cd:f1:6a:
9f:5a:e1:fe:96:5e:ad:57:16:46:10:99:ff:e0:bf:
b7:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:D6:95:73:46:69:0C:FE:BD:F0:E4:A6:26:F2:96:A8:68:4B:2B:0B
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/19aVc0ZpDP698OSmJvKWqGhLKws.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.202.128.0/18
Signature Algorithm: sha256WithRSAEncryption
75:f1:de:38:b2:8a:1d:e4:0b:73:d4:29:fe:fb:7f:fa:ad:8b:
4a:6e:ed:8d:da:26:c7:c7:8a:69:4b:8f:73:01:a2:14:e3:de:
13:02:f6:3c:48:3e:ac:eb:a0:ea:61:9f:48:22:cf:87:c3:30:
20:5e:33:ea:80:35:f8:27:83:9f:ab:07:3e:9f:c7:7b:ae:54:
ec:ce:ef:3b:46:4b:ea:5c:c7:4b:1c:6e:43:d6:e5:32:ca:a2:
1e:1f:43:6d:44:b3:32:01:60:de:ec:71:a5:30:cd:ae:c1:85:
a8:48:86:2a:61:07:31:78:a3:67:26:fc:4b:a7:a7:d4:6c:75:
05:6e:af:a1:79:1e:60:84:53:9a:0c:01:47:b4:1c:12:60:e4:
20:01:82:1f:ca:ab:f6:81:a6:f6:ce:d7:3d:2f:62:63:22:4c:
cb:c4:1d:2d:31:b2:40:a2:6b:48:00:fa:0e:e4:95:f9:80:92:
38:55:95:91:dc:0c:36:af:b6:68:f5:9f:f9:ec:87:f8:a6:57:
b2:06:ae:83:56:32:e5:61:ed:86:f4:a6:c7:1c:c7:a7:7a:c0:
7c:02:25:b8:44:51:f1:53:9b:45:8c:19:75:e4:99:97:21:7f:
e3:a8:e0:87:cb:b0:75:06:4b:98:ab:c4:7e:a0:a0:7f:b9:b5:
da:22:76:46
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDe0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMTA5Mjkw
MjM5NDVaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEQ3RDY5NTczNDY2OTBD
RkVCREYwRTRBNjI2RjI5NkE4Njg0QjJCMEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCa0y7GoJZ7Nq7wg4Uq3oscwdTO/lk4fmCwJxQejydZrz5GpjEZ
hx/4nokrSQLTfCA3gN/Z4eCLGQJLNQlhDY2wXnr69IklxnTDDUR9DhttGO2uukJU
5p/ngZp1k5PWVjBtIRYmTuTxoDWggIM1vL08UdBTLd6c+kqpPCzgdSMPTiC0HFy9
Lag+2hZjXI6KhsLVFxthFSBPCKTsAkB1jFLmIULMHqEhKmQExvt7tEg2shy3U33Q
zFZkAzOZqrehOkKeq1WWwwAt10GZ/5lprp62YYaTO8ffeUqeQInP1v8tB9CyIxz+
7m2tAUlqfs3xap9a4f6WXq1XFkYQmf/gv7cjAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQU19aVc0ZpDP698OSmJvKWqGhLKwswHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvMTlhVmMwWnBEUDY5OE9TbUp2S1dx
R2hMS3dzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBtLKgDAN
BgkqhkiG9w0BAQsFAAOCAQEAdfHeOLKKHeQLc9Qp/vt/+q2LSm7tjdomx8eKaUuP
cwGiFOPeEwL2PEg+rOug6mGfSCLPh8MwIF4z6oA1+CeDn6sHPp/He65U7M7vO0ZL
6lzHSxxuQ9blMsqiHh9DbUSzMgFg3uxxpTDNrsGFqEiGKmEHMXijZyb8S6en1Gx1
BW6voXkeYIRTmgwBR7QcEmDkIAGCH8qr9oGm9s7XPS9iYyJMy8QdLTGyQKJrSAD6
DuSV+YCSOFWVkdwMNq+2aPWf+eyH+KZXsgaug1Yy5WHthvSmxxzHp3rAfAIluERR
8VObRYwZdeSZlyF/46jgh8uwdQZLmKvEfqCgf7m12iJ2Rg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org