Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/1vTlMXKCD1tYZa5AUT9gFgw9Gek.roa
File: 1vTlMXKCD1tYZa5AUT9gFgw9Gek.roa (raw, json)
Hash identifier: oWkmPuljKu2hXBJnlXhS4weGJF304iDED2KvaCzAwZ4=
Subject key identifier: D6:F4:E5:31:72:82:0F:5B:58:65:AE:40:51:3F:60:16:0C:3D:19:E9
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 10A9
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/1vTlMXKCD1tYZa5AUT9gFgw9Gek.roa
Signing time: Tue 16 May 2023 08:36:28 +0000
ROA not before: Tue 16 May 2023 08:36:28 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17709
IP address blocks: 210.85.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4265 (0x10a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:28 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=D6F4E53172820F5B5865AE40513F60160C3D19E9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:7d:ed:46:fc:14:fd:74:ae:6e:e0:2a:82:41:
e7:d7:fc:bb:02:29:d7:44:51:73:e1:c9:c9:4d:fc:
2a:e2:1b:ce:cf:ab:84:7e:6b:23:ea:30:e8:b0:34:
4d:52:77:9b:23:1c:81:21:5c:de:22:c1:ad:83:6f:
ac:2a:fb:15:a4:a8:6f:a9:91:7b:70:6e:a5:17:6e:
30:28:f7:b8:4c:9b:cb:b9:dd:f6:c7:0a:43:7c:3d:
6d:38:f4:94:42:df:c4:c9:7e:91:ac:e3:51:e8:ca:
3b:b0:85:91:c3:2e:1c:e9:ab:20:a7:94:38:83:f0:
ab:cf:82:0a:bc:90:68:6d:a0:8e:e1:89:cc:a8:d3:
a7:e4:d3:4c:f7:78:73:a0:63:44:d6:5a:1e:de:96:
d6:6f:c9:92:af:87:c4:54:a4:bc:81:a5:af:5c:2c:
9a:8b:86:5a:6c:4b:da:94:bb:21:83:07:a9:31:f5:
54:54:f4:fb:df:bb:01:9e:8f:46:b1:3a:00:e9:b1:
38:4f:4f:74:e7:49:f9:de:6f:06:1e:8f:f5:11:e3:
fc:13:be:d9:5f:ad:7c:85:4b:bf:38:6b:ce:88:4c:
55:21:2f:15:2e:46:0d:7b:58:e1:5f:e9:e8:4f:05:
5a:d0:6e:39:a7:1d:4e:88:31:04:f9:24:f4:ed:94:
26:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:F4:E5:31:72:82:0F:5B:58:65:AE:40:51:3F:60:16:0C:3D:19:E9
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/1vTlMXKCD1tYZa5AUT9gFgw9Gek.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.85.0.0/16
Signature Algorithm: sha256WithRSAEncryption
17:86:82:75:7d:42:6b:c4:5b:4b:ad:fe:4c:3f:b9:5b:c3:e7:
2e:3f:cf:d5:fb:2b:8a:de:11:75:23:b0:b3:06:95:3b:d9:f3:
b6:db:04:7e:cb:37:9f:0a:fc:65:cf:eb:d4:a1:d7:a4:0a:a9:
bf:26:3e:b0:72:02:9e:86:3b:a5:ed:b2:b8:7e:85:4d:3f:6b:
45:b3:37:67:80:42:28:5f:aa:95:55:f0:4b:26:64:40:92:7d:
6b:f2:16:f4:25:03:49:a3:22:39:91:0d:06:63:9e:40:14:eb:
43:f8:b5:ca:ec:78:36:86:f0:19:8b:97:14:08:1d:d0:6c:06:
ed:f8:7a:4a:6b:77:ee:6d:0d:48:e0:58:6c:9f:63:1a:e9:31:
4b:f6:a1:76:81:2d:2b:34:dd:94:29:c1:15:d7:0c:69:77:6a:
91:05:39:1b:35:82:8c:cd:d7:95:ab:0e:a8:03:35:35:ce:91:
b0:ac:0b:c6:46:14:06:d8:2e:ba:87:37:c3:cd:a2:c5:7f:57:
c5:b7:7a:24:35:9b:06:09:47:0f:f6:e3:9e:36:ab:2b:f7:21:
0a:55:14:d4:93:53:d9:74:ee:04:6e:5d:bf:63:d9:2c:4c:1d:
be:29:90:1a:f9:c3:2e:c6:74:7d:36:1f:cc:f6:f3:1e:35:c4:
da:70:d4:f9
-----BEGIN CERTIFICATE-----
MIIEzTCCA7WgAwIBAgICEKkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMzA1MTYw
ODM2MjhaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEQ2RjRFNTMxNzI4MjBG
NUI1ODY1QUU0MDUxM0Y2MDE2MEMzRDE5RTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDWfe1G/BT9dK5u4CqCQefX/LsCKddEUXPhyclN/CriG87Pq4R+
ayPqMOiwNE1Sd5sjHIEhXN4iwa2Db6wq+xWkqG+pkXtwbqUXbjAo97hMm8u53fbH
CkN8PW049JRC38TJfpGs41HoyjuwhZHDLhzpqyCnlDiD8KvPggq8kGhtoI7hicyo
06fk00z3eHOgY0TWWh7eltZvyZKvh8RUpLyBpa9cLJqLhlpsS9qUuyGDB6kx9VRU
9PvfuwGej0axOgDpsThPT3TnSfnebwYej/UR4/wTvtlfrXyFS784a86ITFUhLxUu
Rg17WOFf6ehPBVrQbjmnHU6IMQT5JPTtlCbbAgMBAAGjggHpMIIB5TAdBgNVHQ4E
FgQU1vTlMXKCD1tYZa5AUT9gFgw9GekwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvMXZUbE1YS0NEMXRZWmE1QVVUOWdG
Z3c5R2VrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDANJVMA0G
CSqGSIb3DQEBCwUAA4IBAQAXhoJ1fUJrxFtLrf5MP7lbw+cuP8/V+yuK3hF1I7Cz
BpU72fO22wR+yzefCvxlz+vUodekCqm/Jj6wcgKehjul7bK4foVNP2tFszdngEIo
X6qVVfBLJmRAkn1r8hb0JQNJoyI5kQ0GY55AFOtD+LXK7Hg2hvAZi5cUCB3QbAbt
+HpKa3fubQ1I4Fhsn2Ma6TFL9qF2gS0rNN2UKcEV1wxpd2qRBTkbNYKMzdeVqw6o
AzU1zpGwrAvGRhQG2C66hzfDzaLFf1fFt3okNZsGCUcP9uOeNqsr9yEKVRTUk1PZ
dO4Ebl2/Y9ksTB2+KZAa+cMuxnR9Nh/M9vMeNcTacNT5
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org