Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/5fNf_B4ko_LEj02VEi4aqhBgpBs.roa
File: 5fNf_B4ko_LEj02VEi4aqhBgpBs.roa (raw, json)
Hash identifier: zzoTv5sOWRsB0QdWrur6ypw6G4rdRoJ2b8LF04bp2IY=
Subject key identifier: E5:F3:5F:FC:1E:24:A3:F2:C4:8F:4D:95:12:2E:1A:AA:10:60:A4:1B
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 10AD
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/5fNf_B4ko_LEj02VEi4aqhBgpBs.roa
Signing time: Tue 16 May 2023 08:36:29 +0000
ROA not before: Tue 16 May 2023 08:36:29 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131142
IP address blocks: 210.200.64.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4269 (0x10ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:29 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=E5F35FFC1E24A3F2C48F4D95122E1AAA1060A41B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:dd:a0:9e:6f:b0:90:4c:16:1b:8f:1c:d9:03:
d9:62:b9:99:7d:76:b7:22:db:9e:ae:1f:a7:da:7a:
39:c4:8d:ae:ad:7f:c9:65:30:76:3c:16:65:fc:7c:
2b:fb:72:11:c0:72:d2:71:d9:a1:33:a5:5e:21:02:
dd:e9:21:a6:6c:b6:5e:a1:75:5d:f5:be:7d:53:0d:
3e:69:e2:36:59:ed:e7:bc:1b:05:77:59:bc:5b:42:
fd:49:88:54:cf:80:39:7e:15:0d:2a:ef:b1:62:8a:
ca:61:1a:fe:44:3a:53:f8:1c:d0:c6:9b:22:df:bd:
e0:86:30:96:d0:da:e7:de:c1:27:5e:e4:6c:05:34:
66:89:7f:00:15:e4:62:ac:d9:72:8a:47:d4:54:3a:
58:e7:93:fa:00:fd:df:0f:8a:0a:5e:59:0f:9b:61:
11:e8:5a:17:4d:17:af:4d:4f:de:5b:02:53:56:71:
8a:98:13:38:99:e9:a8:88:8c:d9:2a:53:4b:98:d8:
af:7c:00:ab:88:03:8f:95:7c:18:48:af:aa:3a:4e:
8e:16:1a:a0:94:af:2e:e2:05:0a:78:f5:6d:6a:0a:
69:0f:68:2e:b6:e5:8c:42:dc:57:97:60:29:bd:b9:
c7:7a:77:a4:9c:69:3d:dc:7c:f4:a9:71:4a:2c:97:
d3:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:F3:5F:FC:1E:24:A3:F2:C4:8F:4D:95:12:2E:1A:AA:10:60:A4:1B
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/5fNf_B4ko_LEj02VEi4aqhBgpBs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.200.64.0/20
Signature Algorithm: sha256WithRSAEncryption
96:29:00:ef:3a:30:15:9a:63:cc:6b:59:bc:6f:e3:f9:f7:33:
7b:9c:62:bc:c4:ac:dd:13:28:a4:cd:99:9b:4c:d5:99:cc:5b:
7e:55:ac:54:9f:63:1c:6d:24:7c:98:24:dc:9b:06:58:a6:cd:
2a:61:22:c9:e8:a5:f1:ed:34:1f:a7:8c:4a:85:2e:eb:4f:a4:
55:96:9f:23:69:84:bd:28:3a:88:0e:2b:d8:91:00:1c:b0:d1:
f9:fe:9e:d7:a3:fb:d1:6d:ae:ea:60:2e:e5:bd:0c:e4:a1:cc:
9c:93:1a:53:97:fc:e6:e9:1e:fc:bd:ac:27:ea:65:0a:fa:8c:
63:69:e0:34:68:55:a7:ec:01:a3:af:f7:0f:d0:8b:02:f3:2d:
ce:a1:89:12:a8:97:ee:ef:71:8f:19:86:0c:7b:40:d8:fd:c1:
6f:24:ad:99:cd:62:d5:35:e0:41:b2:96:0b:84:e0:9b:8a:a5:
81:ef:68:da:d8:9a:3b:97:3a:90:0b:a8:58:e0:91:89:29:22:
61:18:a6:c9:ce:cb:e4:89:03:6a:9e:85:ac:22:f5:be:06:78:
d1:98:f3:51:7b:b3:2e:5f:8a:84:bb:7a:d2:2f:bf:9b:24:d3:
42:30:f1:e5:23:46:44:06:e1:7c:54:42:0e:47:07:c6:3f:33:
81:b5:11:51
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICEK0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMzA1MTYw
ODM2MjlaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEU1RjM1RkZDMUUyNEEz
RjJDNDhGNEQ5NTEyMkUxQUFBMTA2MEE0MUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDR3aCeb7CQTBYbjxzZA9liuZl9drci256uH6faejnEja6tf8ll
MHY8FmX8fCv7chHActJx2aEzpV4hAt3pIaZstl6hdV31vn1TDT5p4jZZ7ee8GwV3
WbxbQv1JiFTPgDl+FQ0q77FiisphGv5EOlP4HNDGmyLfveCGMJbQ2ufewSde5GwF
NGaJfwAV5GKs2XKKR9RUOljnk/oA/d8PigpeWQ+bYRHoWhdNF69NT95bAlNWcYqY
EziZ6aiIjNkqU0uY2K98AKuIA4+VfBhIr6o6To4WGqCUry7iBQp49W1qCmkPaC62
5YxC3FeXYCm9ucd6d6ScaT3cfPSpcUosl9MfAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQU5fNf/B4ko/LEj02VEi4aqhBgpBswHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvNWZOZl9CNGtvX0xFajAyVkVpNGFx
aEJncEJzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBNLIQDAN
BgkqhkiG9w0BAQsFAAOCAQEAlikA7zowFZpjzGtZvG/j+fcze5xivMSs3RMopM2Z
m0zVmcxbflWsVJ9jHG0kfJgk3JsGWKbNKmEiyeil8e00H6eMSoUu60+kVZafI2mE
vSg6iA4r2JEAHLDR+f6e16P70W2u6mAu5b0M5KHMnJMaU5f85uke/L2sJ+plCvqM
Y2ngNGhVp+wBo6/3D9CLAvMtzqGJEqiX7u9xjxmGDHtA2P3BbyStmc1i1TXgQbKW
C4Tgm4qlge9o2tiaO5c6kAuoWOCRiSkiYRimyc7L5IkDap6FrCL1vgZ40ZjzUXuz
Ll+KhLt60i+/myTTQjDx5SNGRAbhfFRCDkcHxj8zgbURUQ==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:53:49 2025 by rpki-client