Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/3e-C-H2oiewP1nSFa8Z9Bb2rLeE.roa
File: 3e-C-H2oiewP1nSFa8Z9Bb2rLeE.roa (raw, json)
Hash identifier: cm7noLWf4fOxQWKASpCSK2QY11SDV+Db11jMIfhFrvA=
Subject key identifier: DD:EF:82:F8:7D:A8:89:EC:0F:D6:74:85:6B:C6:7D:05:BD:AB:2D:E1
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0E4F
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/3e-C-H2oiewP1nSFa8Z9Bb2rLeE.roa
Signing time: Wed 29 Sep 2021 02:40:14 +0000
ROA not before: Wed 29 Sep 2021 02:40:14 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131597
IP address blocks: 218.35.64.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3663 (0xe4f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:40:14 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=DDEF82F87DA889EC0FD674856BC67D05BDAB2DE1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:5b:e6:50:3a:2d:40:0c:02:fe:56:8e:a2:19:
46:48:16:f2:7e:90:6b:46:48:25:a5:34:de:40:22:
43:90:7d:2c:28:8b:0a:1e:ba:3e:e8:41:70:3c:14:
a3:85:51:39:e7:67:60:91:de:d4:66:a3:3b:83:92:
3b:71:d3:4b:83:0d:22:e9:cf:10:ff:04:ae:75:bc:
53:e3:12:e9:55:10:d5:94:eb:06:99:c3:30:9d:5a:
3b:2f:e8:6a:13:7c:22:21:01:39:76:2d:68:45:ae:
3d:3a:69:52:1c:04:66:b9:7d:3b:8a:86:bb:3b:2b:
08:92:2b:c2:ae:c8:42:ce:96:42:8b:01:2a:7a:d5:
af:d4:10:f3:55:6e:81:fb:20:95:3b:b8:c5:64:ea:
66:22:3c:a6:2d:5c:f0:a4:15:87:ce:da:f1:2d:73:
2b:7c:31:68:8c:24:32:c0:91:42:98:ab:ed:f0:f6:
85:a6:c0:6e:4a:72:de:da:43:87:cc:22:2c:73:64:
e0:70:9f:86:f1:e8:b2:78:a6:9f:88:62:77:1e:ee:
c6:97:d2:c6:af:4f:23:77:f3:64:8f:3a:89:e0:18:
17:c6:62:f5:4c:e9:61:e1:1c:a6:9a:e6:91:1e:bf:
d7:99:d4:b0:96:f2:be:a0:46:29:f3:2c:5f:3f:30:
a3:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:EF:82:F8:7D:A8:89:EC:0F:D6:74:85:6B:C6:7D:05:BD:AB:2D:E1
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/3e-C-H2oiewP1nSFa8Z9Bb2rLeE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.35.64.0/19
Signature Algorithm: sha256WithRSAEncryption
22:c0:d3:79:d5:a9:38:9d:09:b1:96:9b:3d:f4:98:c5:8b:29:
4e:11:c9:27:58:6a:1d:18:d2:6d:06:d9:37:ac:80:44:ec:f9:
37:cd:30:7b:5e:57:6c:54:a1:b4:a5:67:6c:13:6d:b3:50:fa:
dc:9b:0d:e0:eb:e9:28:0b:89:14:57:3f:66:6c:07:c0:b4:01:
4e:9a:c1:d5:e3:12:2c:99:be:10:83:d8:86:45:cf:8f:9e:90:
76:7b:ba:5f:9d:a6:aa:35:9c:d3:dd:5c:5a:c0:ef:cb:db:eb:
53:d2:f6:82:ae:01:45:d8:42:3f:40:1d:01:b2:7b:e5:14:60:
4f:9d:36:54:b5:5c:6a:14:1e:4c:10:40:a1:8e:25:83:d3:71:
c9:e6:fe:86:ac:d9:ef:8f:74:d3:6f:54:cb:7c:e5:be:52:19:
d2:35:6b:fc:39:38:54:41:ab:f7:97:a1:82:56:d2:b8:3d:8d:
5f:76:9b:95:f5:bb:13:0b:82:c8:38:ed:28:32:14:9d:63:2f:
81:c3:1a:aa:87:e2:d1:37:78:56:03:2d:c9:24:c3:0c:c8:f6:
8c:c4:90:3a:4a:5b:7b:6c:c7:98:46:dc:84:47:d9:57:4f:2a:
ff:d6:55:2c:51:db:3b:ab:61:35:38:58:17:c6:b4:ab:aa:7b:
d8:3d:55:5f
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDk8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMTA5Mjkw
MjQwMTRaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKERERUY4MkY4N0RBODg5
RUMwRkQ2NzQ4NTZCQzY3RDA1QkRBQjJERTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDSW+ZQOi1ADAL+Vo6iGUZIFvJ+kGtGSCWlNN5AIkOQfSwoiwoe
uj7oQXA8FKOFUTnnZ2CR3tRmozuDkjtx00uDDSLpzxD/BK51vFPjEulVENWU6waZ
wzCdWjsv6GoTfCIhATl2LWhFrj06aVIcBGa5fTuKhrs7KwiSK8KuyELOlkKLASp6
1a/UEPNVboH7IJU7uMVk6mYiPKYtXPCkFYfO2vEtcyt8MWiMJDLAkUKYq+3w9oWm
wG5Kct7aQ4fMIixzZOBwn4bx6LJ4pp+IYnce7saX0savTyN382SPOongGBfGYvVM
6WHhHKaa5pEev9eZ1LCW8r6gRinzLF8/MKPNAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQU3e+C+H2oiewP1nSFa8Z9Bb2rLeEwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvM2UtQy1IMm9pZXdQMW5TRmE4WjlC
YjJyTGVFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBdojQDAN
BgkqhkiG9w0BAQsFAAOCAQEAIsDTedWpOJ0JsZabPfSYxYspThHJJ1hqHRjSbQbZ
N6yAROz5N80we15XbFShtKVnbBNts1D63JsN4OvpKAuJFFc/ZmwHwLQBTprB1eMS
LJm+EIPYhkXPj56Qdnu6X52mqjWc091cWsDvy9vrU9L2gq4BRdhCP0AdAbJ75RRg
T502VLVcahQeTBBAoY4lg9Nxyeb+hqzZ7490029Uy3zlvlIZ0jVr/Dk4VEGr95eh
glbSuD2NX3ablfW7EwuCyDjtKDIUnWMvgcMaqofi0Td4VgMtySTDDMj2jMSQOkpb
e2zHmEbchEfZV08q/9ZVLFHbO6thNThYF8a0q6p72D1VXw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org