Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/4t_rZm6A24bYc94Vvx7GsqMgVic.roa
File: 4t_rZm6A24bYc94Vvx7GsqMgVic.roa (raw, json)
Hash identifier: YTx4/NRF19cqWD3xTtEcqjnQ1xDjC9sw5X+X9PmYl04=
Subject key identifier: E2:DF:EB:66:6E:80:DB:86:D8:73:DE:15:BF:1E:C6:B2:A3:20:56:27
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0DE9
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/4t_rZm6A24bYc94Vvx7GsqMgVic.roa
Signing time: Wed 29 Sep 2021 02:39:44 +0000
ROA not before: Wed 29 Sep 2021 02:39:44 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24154
IP address blocks: 210.202.48.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3561 (0xde9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:39:44 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=E2DFEB666E80DB86D873DE15BF1EC6B2A3205627
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:4c:17:bc:a2:cb:c4:b1:3a:4a:47:7d:d3:d8:
11:8a:4b:3e:82:42:48:45:17:3b:70:95:f4:e4:16:
02:3f:57:f2:94:c9:0a:e2:62:44:8f:e9:19:91:12:
bc:51:71:f1:11:d6:bc:4a:41:f2:da:86:05:87:ba:
3a:64:2a:c5:00:3c:32:e0:c7:c9:c4:9d:9c:ce:17:
e2:6a:96:3d:a8:52:4d:53:b4:dc:bd:19:70:86:c5:
cf:84:34:fe:23:92:3c:21:c8:c0:1c:94:86:fd:3f:
4c:89:bb:41:f8:f1:37:d9:dd:82:b0:55:aa:18:13:
9f:f2:c3:4f:26:e2:47:31:bc:37:b8:c9:bf:bf:ac:
02:7b:2c:00:62:1a:2c:69:52:c5:6f:51:09:66:be:
11:40:17:e0:b4:23:d8:b1:3f:f6:1d:4b:70:90:b2:
9b:d3:7f:1b:9d:73:47:65:3d:8e:1e:cc:9c:2f:07:
18:23:34:08:ff:fa:b3:da:6b:bf:d6:86:87:47:5b:
d9:9f:43:b7:84:82:77:dd:43:2a:95:64:b8:52:80:
22:fc:d7:de:76:a9:9a:bf:0d:be:13:66:13:bf:87:
33:b3:7c:ec:ca:89:21:cb:da:ab:fb:05:a6:8e:40:
ef:e4:fe:73:7a:21:75:c3:e4:31:77:b5:84:8d:05:
74:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:DF:EB:66:6E:80:DB:86:D8:73:DE:15:BF:1E:C6:B2:A3:20:56:27
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/4t_rZm6A24bYc94Vvx7GsqMgVic.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.202.48.0/21
Signature Algorithm: sha256WithRSAEncryption
24:1a:7c:cb:21:27:1a:7d:48:22:4c:82:02:54:6a:47:6c:ed:
ac:8c:23:28:71:55:8a:d3:1e:28:61:e2:87:d3:79:fa:5a:f6:
9d:9b:d4:7e:42:7d:fe:eb:ae:16:3e:e1:3a:ac:d6:82:53:33:
a8:3e:05:05:81:82:56:ea:ef:43:39:cb:22:8e:15:ab:35:05:
c1:f4:d3:47:f7:eb:2f:b6:da:5f:87:cf:dc:b8:51:a7:30:ce:
a0:93:3c:ae:19:71:5b:51:53:38:32:0f:2a:b6:a8:c3:01:40:
61:a3:13:1f:41:04:f3:e6:4b:27:b3:51:83:3f:a2:eb:ec:ef:
3c:14:70:dc:c8:bb:b0:8f:03:75:09:68:7f:a4:3d:28:d8:df:
fb:a4:e3:4e:74:ba:54:92:6c:9b:97:3e:45:a3:ef:0d:1f:70:
cb:29:60:8d:45:c7:c9:aa:d9:83:27:50:a8:b9:44:3a:a2:da:
06:0a:39:fb:fe:8f:f7:fe:33:fc:81:84:19:ab:38:33:b5:03:
a4:e9:f5:65:ee:40:fe:d0:08:42:dc:a5:58:d4:de:cf:9b:f9:
b0:db:bc:36:5c:24:38:58:85:88:f5:50:36:55:fc:77:8a:c5:
48:61:b7:d8:e8:b4:6d:22:85:4f:3b:50:61:39:dd:8c:03:5f:
a3:a1:4c:f2
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDekwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMTA5Mjkw
MjM5NDRaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEUyREZFQjY2NkU4MERC
ODZEODczREUxNUJGMUVDNkIyQTMyMDU2MjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC0TBe8osvEsTpKR33T2BGKSz6CQkhFFztwlfTkFgI/V/KUyQri
YkSP6RmRErxRcfER1rxKQfLahgWHujpkKsUAPDLgx8nEnZzOF+Jqlj2oUk1TtNy9
GXCGxc+ENP4jkjwhyMAclIb9P0yJu0H48TfZ3YKwVaoYE5/yw08m4kcxvDe4yb+/
rAJ7LABiGixpUsVvUQlmvhFAF+C0I9ixP/YdS3CQspvTfxudc0dlPY4ezJwvBxgj
NAj/+rPaa7/WhodHW9mfQ7eEgnfdQyqVZLhSgCL81952qZq/Db4TZhO/hzOzfOzK
iSHL2qv7BaaOQO/k/nN6IXXD5DF3tYSNBXRzAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQU4t/rZm6A24bYc94Vvx7GsqMgVicwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvNHRfclptNkEyNGJZYzk0VnZ4N0dz
cU1nVmljLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA9LKMDAN
BgkqhkiG9w0BAQsFAAOCAQEAJBp8yyEnGn1IIkyCAlRqR2ztrIwjKHFVitMeKGHi
h9N5+lr2nZvUfkJ9/uuuFj7hOqzWglMzqD4FBYGCVurvQznLIo4VqzUFwfTTR/fr
L7baX4fP3LhRpzDOoJM8rhlxW1FTODIPKraowwFAYaMTH0EE8+ZLJ7NRgz+i6+zv
PBRw3Mi7sI8DdQlof6Q9KNjf+6TjTnS6VJJsm5c+RaPvDR9wyylgjUXHyarZgydQ
qLlEOqLaBgo5+/6P9/4z/IGEGas4M7UDpOn1Ze5A/tAIQtylWNTez5v5sNu8Nlwk
OFiFiPVQNlX8d4rFSGG32Oi0bSKFTztQYTndjANfo6FM8g==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:59:59 2024 by rpki-client on console-ams.rpki-client.org