Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/AvBANbrkiUgu8f4hmw7IL4j6y_g.roa
File: AvBANbrkiUgu8f4hmw7IL4j6y_g.roa (raw, json)
Hash identifier: YEKMat4r1dX5394bDDMKuZAU1kgoAUD3HQeRyUHl300=
Subject key identifier: 02:F0:40:35:BA:E4:89:48:2E:F1:FE:21:9B:0E:C8:2F:88:FA:CB:F8
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 12F7
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/AvBANbrkiUgu8f4hmw7IL4j6y_g.roa
Signing time: Fri 01 Sep 2023 08:05:13 +0000
ROA not before: Fri 01 Sep 2023 08:05:13 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17709
IP address blocks: 210.58.112.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4855 (0x12f7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:05:13 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=02F04035BAE489482EF1FE219B0EC82F88FACBF8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:b4:ab:c5:57:9c:e8:47:6e:b9:c6:6b:c4:1b:
49:57:69:cf:96:1c:91:51:98:73:0b:4b:f1:58:40:
fd:2c:b8:3a:a3:cb:f3:46:a3:0d:f4:63:58:68:0a:
d0:1d:d8:81:d2:2b:ff:e2:75:b9:de:c3:84:73:ac:
5d:73:83:b2:c9:e0:49:30:fa:f4:12:b6:46:9b:58:
7a:1e:28:5f:f2:a6:3f:62:c6:f9:d6:d0:29:ed:64:
93:18:e3:dd:bf:7a:a7:7c:e4:d2:1e:99:d9:73:c1:
63:d2:04:0c:19:a9:b1:74:c6:3c:4e:01:b9:3e:0c:
60:40:54:1d:2a:ba:99:d1:76:f9:07:eb:7b:d1:ac:
91:bc:e5:ea:80:62:d3:f5:2e:51:02:e4:75:21:f7:
77:68:c0:dc:b1:0f:3f:15:06:9d:8a:41:83:71:07:
cd:af:0e:21:17:d8:77:19:08:19:79:d2:10:de:d7:
4c:6c:0b:24:cf:5a:f1:37:e2:91:ee:1b:9a:98:be:
34:4f:33:07:13:e5:ee:40:f7:21:e2:04:2c:45:61:
d0:42:cd:03:57:ed:f5:59:ca:7d:d0:20:f2:b1:15:
20:e9:60:76:08:03:18:c3:6a:e0:aa:c7:d0:dc:29:
94:38:41:4e:1a:d2:21:a5:71:8d:78:be:01:d3:81:
4e:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:F0:40:35:BA:E4:89:48:2E:F1:FE:21:9B:0E:C8:2F:88:FA:CB:F8
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/AvBANbrkiUgu8f4hmw7IL4j6y_g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.58.112.0/20
Signature Algorithm: sha256WithRSAEncryption
55:0e:f8:5d:36:0d:53:f0:2c:1e:c9:60:bb:e2:44:ed:58:78:
68:28:fd:84:52:cf:f1:65:60:d5:6e:3a:6c:50:fe:a3:44:63:
f5:4f:13:99:51:b9:be:f1:8f:39:f1:cc:76:3d:7d:fe:69:14:
43:76:f6:21:ac:17:9a:e0:fc:74:0f:64:22:75:03:ce:fb:fc:
e9:62:a5:82:32:b1:5a:aa:c9:10:32:39:e4:ea:d9:15:b6:9f:
6b:35:67:42:05:64:ef:10:d1:e3:3c:b4:c8:75:af:7d:bb:65:
19:d1:b8:9d:df:8a:63:e6:1f:26:65:eb:93:47:98:43:91:f6:
78:81:e2:7a:8b:e2:4a:a5:78:a8:43:89:3c:6b:f6:a3:e7:15:
2e:06:99:e8:9b:ab:8b:19:e0:4a:aa:67:15:7d:51:69:25:6c:
93:24:79:d5:80:b8:18:76:ac:8b:3e:0e:dd:28:e2:dd:ca:ba:
12:4b:d1:60:85:5b:49:91:3e:f3:0f:2d:c0:ea:43:46:f1:c1:
f8:9d:bf:06:39:9b:36:03:4c:48:42:81:ef:45:ac:a0:a9:12:
be:1e:99:63:31:d1:f0:3d:76:94:cf:91:29:5a:c9:bc:62:33:
a5:18:8f:a0:ee:f3:c7:e5:b3:f0:2b:18:ab:44:a5:1c:d4:16:
47:90:ef:cd
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICEvcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMzA5MDEw
ODA1MTNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDAyRjA0MDM1QkFFNDg5
NDgyRUYxRkUyMTlCMEVDODJGODhGQUNCRjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDmtKvFV5zoR265xmvEG0lXac+WHJFRmHMLS/FYQP0suDqjy/NG
ow30Y1hoCtAd2IHSK//idbnew4RzrF1zg7LJ4Ekw+vQStkabWHoeKF/ypj9ixvnW
0CntZJMY492/eqd85NIemdlzwWPSBAwZqbF0xjxOAbk+DGBAVB0qupnRdvkH63vR
rJG85eqAYtP1LlEC5HUh93dowNyxDz8VBp2KQYNxB82vDiEX2HcZCBl50hDe10xs
CyTPWvE34pHuG5qYvjRPMwcT5e5A9yHiBCxFYdBCzQNX7fVZyn3QIPKxFSDpYHYI
AxjDauCqx9DcKZQ4QU4a0iGlcY14vgHTgU7RAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUAvBANbrkiUgu8f4hmw7IL4j6y/gwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvQXZCQU5icmtpVWd1OGY0aG13N0lM
NGo2eV9nLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBNI6cDAN
BgkqhkiG9w0BAQsFAAOCAQEAVQ74XTYNU/AsHslgu+JE7Vh4aCj9hFLP8WVg1W46
bFD+o0Rj9U8TmVG5vvGPOfHMdj19/mkUQ3b2IawXmuD8dA9kInUDzvv86WKlgjKx
WqrJEDI55OrZFbafazVnQgVk7xDR4zy0yHWvfbtlGdG4nd+KY+YfJmXrk0eYQ5H2
eIHieoviSqV4qEOJPGv2o+cVLgaZ6JurixngSqpnFX1RaSVskyR51YC4GHasiz4O
3Sji3cq6EkvRYIVbSZE+8w8twOpDRvHB+J2/BjmbNgNMSEKB70WsoKkSvh6ZYzHR
8D12lM+RKVrJvGIzpRiPoO7zx+Wz8CsYq0SlHNQWR5DvzQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org