Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/2sv65AEDR1VnsK9ExivcpGQEjK8.roa
File: 2sv65AEDR1VnsK9ExivcpGQEjK8.roa (raw, json)
Hash identifier: RuPe7DN4jxNzblIS/pZSgrtNzcjvL2m20O74OTqdaes=
Subject key identifier: DA:CB:FA:E4:01:03:47:55:67:B0:AF:44:C6:2B:DC:A4:64:04:8C:AF
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0E25
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/2sv65AEDR1VnsK9ExivcpGQEjK8.roa
Signing time: Wed 29 Sep 2021 02:40:01 +0000
ROA not before: Wed 29 Sep 2021 02:40:01 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 7482
IP address blocks: 218.34.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3621 (0xe25)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:40:01 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=DACBFAE40103475567B0AF44C62BDCA464048CAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:75:5c:c8:5f:56:9c:78:22:5d:03:64:a8:27:
50:ca:a6:5e:ae:7d:9b:33:54:0c:ce:60:b8:3a:a1:
aa:fe:bc:e0:91:cf:43:3c:3a:b4:a2:44:5f:e3:59:
e6:d6:7d:c5:88:f0:40:58:93:39:03:41:03:27:14:
96:08:79:72:c6:4a:c4:50:e3:75:78:02:c4:dc:8a:
25:40:63:98:d2:8c:74:a5:c3:95:fb:b6:02:80:58:
25:fa:54:4a:c2:02:0b:9d:62:4a:ed:2f:7d:23:af:
d1:c4:a1:a7:5c:bb:6d:f9:00:22:e5:d8:73:b0:6d:
46:bf:ba:34:bf:05:38:b5:25:c4:a2:1f:5a:a9:6a:
e8:fc:1c:01:d9:1d:c8:96:2b:0b:c9:21:02:73:f9:
4c:c7:9d:2f:ba:be:7a:27:de:d5:07:1a:69:c7:58:
4b:1f:3c:6c:a0:cb:15:53:6c:03:3e:a3:35:e2:aa:
ee:d3:fa:ae:3b:38:58:99:35:b9:b7:0b:61:d6:25:
bf:3e:a5:68:04:7d:c6:90:ed:76:b3:c3:c9:1c:85:
46:89:43:77:91:8d:d1:5f:b0:5b:c1:19:02:ce:63:
d7:3d:bb:45:d7:b3:5d:8f:5d:19:b7:b0:7d:6f:de:
14:27:ab:7c:49:89:bf:61:65:63:f7:73:9b:a9:bb:
23:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:CB:FA:E4:01:03:47:55:67:B0:AF:44:C6:2B:DC:A4:64:04:8C:AF
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/2sv65AEDR1VnsK9ExivcpGQEjK8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.34.0.0/16
Signature Algorithm: sha256WithRSAEncryption
bc:c4:ab:75:93:37:77:32:e3:df:4a:d6:07:18:8e:7a:83:60:
3f:94:9f:18:31:5b:2d:44:87:1c:54:99:ad:e3:c9:51:8a:a0:
91:af:61:0c:9f:88:7a:d5:af:35:49:93:fd:50:ef:5e:59:0a:
93:1d:66:16:62:66:e4:be:b7:00:c7:a4:3a:63:26:06:b5:b4:
d0:36:89:34:07:64:4b:54:ea:ff:97:50:58:f0:4a:eb:7e:88:
7d:49:e3:db:30:d8:19:5e:5c:81:d2:88:d7:65:35:f2:41:4a:
00:85:f6:7e:22:73:91:6d:c8:66:51:1e:cf:06:47:bc:d2:c9:
c5:cd:60:30:43:74:b7:5d:ee:06:c5:41:0d:39:77:f3:ff:9c:
d0:1a:03:56:6b:5f:b2:6c:94:d2:8e:4a:ba:9d:db:14:a5:61:
61:29:f2:fb:52:db:7a:32:75:01:85:e7:3e:05:22:e7:33:db:
cd:5c:92:0f:c4:89:95:aa:ef:8e:fa:71:89:5d:55:9d:e9:3d:
de:bc:2c:be:44:41:88:62:f8:0b:14:e6:6d:f6:39:3d:4d:f0:
d1:37:a6:64:b0:8f:bb:b1:48:bd:96:16:8d:46:92:46:78:49:
33:26:3f:a3:16:bb:92:fd:55:08:2e:d4:a5:d7:bf:ac:46:01:
59:96:da:95
-----BEGIN CERTIFICATE-----
MIIEzTCCA7WgAwIBAgICDiUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMTA5Mjkw
MjQwMDFaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKERBQ0JGQUU0MDEwMzQ3
NTU2N0IwQUY0NEM2MkJEQ0E0NjQwNDhDQUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCydVzIX1aceCJdA2SoJ1DKpl6ufZszVAzOYLg6oar+vOCRz0M8
OrSiRF/jWebWfcWI8EBYkzkDQQMnFJYIeXLGSsRQ43V4AsTciiVAY5jSjHSlw5X7
tgKAWCX6VErCAgudYkrtL30jr9HEoadcu235ACLl2HOwbUa/ujS/BTi1JcSiH1qp
auj8HAHZHciWKwvJIQJz+UzHnS+6vnon3tUHGmnHWEsfPGygyxVTbAM+ozXiqu7T
+q47OFiZNbm3C2HWJb8+pWgEfcaQ7Xazw8kchUaJQ3eRjdFfsFvBGQLOY9c9u0XX
s12PXRm3sH1v3hQnq3xJib9hZWP3c5upuyORAgMBAAGjggHpMIIB5TAdBgNVHQ4E
FgQU2sv65AEDR1VnsK9ExivcpGQEjK8wHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvMnN2NjVBRURSMVZuc0s5RXhpdmNw
R1FFaks4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDANoiMA0G
CSqGSIb3DQEBCwUAA4IBAQC8xKt1kzd3MuPfStYHGI56g2A/lJ8YMVstRIccVJmt
48lRiqCRr2EMn4h61a81SZP9UO9eWQqTHWYWYmbkvrcAx6Q6YyYGtbTQNok0B2RL
VOr/l1BY8Errfoh9SePbMNgZXlyB0ojXZTXyQUoAhfZ+InORbchmUR7PBke80snF
zWAwQ3S3Xe4GxUENOXfz/5zQGgNWa1+ybJTSjkq6ndsUpWFhKfL7Utt6MnUBhec+
BSLnM9vNXJIPxImVqu+O+nGJXVWd6T3evCy+REGIYvgLFOZt9jk9TfDRN6ZksI+7
sUi9lhaNRpJGeEkzJj+jFruS/VUILtSl17+sRgFZltqV
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:59:59 2024 by rpki-client on console-ams.rpki-client.org