Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/2WDq8nnpODpYiT3jROMVd54VeKU.roa
File: 2WDq8nnpODpYiT3jROMVd54VeKU.roa (raw, json)
Hash identifier: mDazzPR+h9Al2wcySKienZhXc5QHa83rObSdT41iOsI=
Subject key identifier: D9:60:EA:F2:79:E9:38:3A:58:89:3D:E3:44:E3:15:77:9E:15:78:A5
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0C15
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/2WDq8nnpODpYiT3jROMVd54VeKU.roa
Signing time: Sun 07 Feb 2021 11:34:49 +0000
ROA not before: Sun 07 Feb 2021 11:34:49 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 7482
IP address blocks: 210.202.96.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3093 (0xc15)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 11:34:49 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D960EAF279E9383A58893DE344E315779E1578A5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:61:e7:d1:63:7f:76:07:44:cf:3b:8d:4d:98:
c2:55:de:8d:2f:bd:d9:87:59:2d:42:fa:f0:79:84:
da:6d:0f:76:47:c3:b8:84:83:4a:2c:de:2d:30:c9:
a3:e5:de:22:5e:d3:5e:54:65:74:cf:9c:48:37:e8:
91:42:e8:c0:ce:bc:a6:42:e7:aa:45:69:86:6e:b4:
fa:53:bd:4f:9c:5d:a7:43:dd:c2:c6:82:52:61:52:
f9:5e:6b:77:40:3d:c3:fd:5d:7f:93:bf:f7:66:71:
cb:24:b3:b4:8d:15:df:23:af:94:3a:a6:80:ef:50:
fe:51:6a:25:68:b2:f2:c1:f8:1e:5e:53:3d:d7:86:
99:21:bd:8a:6b:8e:0b:59:60:67:d8:2a:b4:12:69:
fa:3a:fe:c3:91:27:da:de:db:bb:1b:c7:fd:a5:b6:
fa:24:a1:dc:a3:e7:11:3a:60:66:1a:8c:a2:ab:df:
b4:7c:65:db:88:e1:ad:42:49:df:7c:ba:8e:f8:8d:
23:a1:eb:6d:2e:8e:ed:2e:5c:2d:92:7b:3e:f0:74:
02:16:c2:92:c0:5d:a7:6e:a5:da:89:59:8d:9e:40:
7c:95:78:74:c1:1b:93:eb:e1:e2:ef:12:e9:4e:38:
54:03:fe:00:97:83:61:b2:b4:a1:86:77:04:44:54:
97:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:60:EA:F2:79:E9:38:3A:58:89:3D:E3:44:E3:15:77:9E:15:78:A5
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/2WDq8nnpODpYiT3jROMVd54VeKU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.202.96.0/20
Signature Algorithm: sha256WithRSAEncryption
61:21:e5:f9:9a:91:0e:e3:da:41:0a:77:95:14:bf:68:57:4a:
97:91:07:eb:29:80:e6:76:11:b8:3c:89:e5:7a:32:de:e0:89:
d4:3f:ee:47:d5:50:9b:72:0b:16:a3:b8:1c:1b:bb:8e:25:0b:
a6:74:03:fa:f7:62:79:5c:e2:c4:6b:b6:c3:82:02:1c:4c:fa:
f2:92:2b:2c:f3:86:e9:04:e3:23:6e:cc:cb:61:74:95:bf:ea:
00:53:fc:b1:69:f1:34:32:de:7b:81:e7:67:09:08:d4:61:d1:
08:34:de:c2:cf:e5:31:dc:de:a3:0d:56:1d:86:30:25:ff:6b:
e3:03:13:43:23:01:a4:10:0e:97:02:51:08:fd:9e:92:a4:83:
7c:59:f3:7e:e8:77:da:37:b2:1f:59:36:a1:ee:41:f7:25:77:
d1:b0:79:a5:2d:98:3e:4a:2e:17:6b:b1:11:1b:1e:9d:40:6d:
63:15:fc:fb:29:c3:80:77:60:fb:c3:50:a4:34:d5:20:28:44:
39:68:44:e7:aa:2f:18:5a:63:e8:f8:79:fd:6b:fb:ed:3f:4d:
94:b4:92:67:51:35:7e:d6:5b:63:ca:1c:a8:f2:57:1a:ec:be:
df:0c:61:a1:24:fc:25:f7:37:75:ab:19:9a:a6:d0:72:bb:bc:
0a:5b:a7:e1
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDBUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMTAyMDcx
MTM0NDlaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEQ5NjBFQUYyNzlFOTM4
M0E1ODg5M0RFMzQ0RTMxNTc3OUUxNTc4QTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDvYefRY392B0TPO41NmMJV3o0vvdmHWS1C+vB5hNptD3ZHw7iE
g0os3i0wyaPl3iJe015UZXTPnEg36JFC6MDOvKZC56pFaYZutPpTvU+cXadD3cLG
glJhUvlea3dAPcP9XX+Tv/dmccsks7SNFd8jr5Q6poDvUP5RaiVosvLB+B5eUz3X
hpkhvYprjgtZYGfYKrQSafo6/sORJ9re27sbx/2ltvokodyj5xE6YGYajKKr37R8
ZduI4a1CSd98uo74jSOh620uju0uXC2Sez7wdAIWwpLAXadupdqJWY2eQHyVeHTB
G5Pr4eLvEulOOFQD/gCXg2GytKGGdwREVJfxAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQU2WDq8nnpODpYiT3jROMVd54VeKUwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvMldEcThubnBPRHBZaVQzalJPTVZk
NTRWZUtVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBNLKYDAN
BgkqhkiG9w0BAQsFAAOCAQEAYSHl+ZqRDuPaQQp3lRS/aFdKl5EH6ymA5nYRuDyJ
5Xoy3uCJ1D/uR9VQm3ILFqO4HBu7jiULpnQD+vdieVzixGu2w4ICHEz68pIrLPOG
6QTjI27My2F0lb/qAFP8sWnxNDLee4HnZwkI1GHRCDTews/lMdzeow1WHYYwJf9r
4wMTQyMBpBAOlwJRCP2ekqSDfFnzfuh32jeyH1k2oe5B9yV30bB5pS2YPkouF2ux
ERsenUBtYxX8+ynDgHdg+8NQpDTVIChEOWhE56ovGFpj6Ph5/Wv77T9NlLSSZ1E1
ftZbY8ocqPJXGuy+3wxhoST8Jfc3dasZmqbQcru8Clun4Q==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:59:59 2024 by rpki-client on console-ams.rpki-client.org