Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/BJAdqIR8CfmvMGLKhwIkbzO1Iqg.roa
File: BJAdqIR8CfmvMGLKhwIkbzO1Iqg.roa (raw, json)
Hash identifier: 30pd9wuQAVizs3O9s0qeYeX0otrK0kCCOpGRFokimOo=
Subject key identifier: 04:90:1D:A8:84:7C:09:F9:AF:30:62:CA:87:02:24:6F:33:B5:22:A8
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 137D
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/BJAdqIR8CfmvMGLKhwIkbzO1Iqg.roa
Signing time: Tue 07 Nov 2023 05:48:14 +0000
ROA not before: Tue 07 Nov 2023 05:48:14 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9922
IP address blocks: 124.218.176.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4989 (0x137d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Nov 7 05:48:14 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=04901DA8847C09F9AF3062CA8702246F33B522A8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:fb:62:f0:70:b9:45:3f:10:91:b7:22:8e:2d:
89:a5:67:30:eb:cf:cb:b8:0c:5a:98:a8:db:70:48:
ec:51:20:f6:fc:0d:35:69:25:31:89:a0:7e:7f:32:
c2:29:9f:f3:5c:de:5c:69:98:6b:57:0a:e9:7e:32:
a2:75:78:ca:62:6a:5a:b3:1b:06:64:6e:fa:17:fe:
a5:26:7c:bc:d7:2d:60:49:9e:aa:16:d6:93:5b:18:
20:26:88:55:ab:ac:d1:28:9c:b9:ba:f0:3c:58:5e:
7c:68:22:c4:2b:6d:c9:d1:43:bc:a5:c2:a9:bb:d0:
a7:3c:bc:75:37:1c:9e:61:99:63:6c:67:11:f5:38:
4a:2e:44:d1:51:c4:97:9a:52:8d:b3:a3:10:7f:b7:
80:fd:52:6f:1b:b9:49:dd:cd:34:fb:eb:de:df:96:
84:ef:c7:d6:83:c1:63:97:40:71:da:68:57:8f:40:
18:ac:b4:00:09:08:74:89:72:3c:47:ed:0e:c6:3c:
4b:43:65:15:d6:fd:a7:35:f8:e9:72:e9:49:6a:c2:
56:da:f5:75:ba:53:82:aa:c1:04:9f:05:f0:a0:95:
a4:08:95:13:88:8e:f1:27:47:b6:e5:ab:5e:4e:b7:
9f:03:c2:98:3a:80:18:ac:2e:20:60:d0:9a:a9:e9:
52:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:90:1D:A8:84:7C:09:F9:AF:30:62:CA:87:02:24:6F:33:B5:22:A8
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/BJAdqIR8CfmvMGLKhwIkbzO1Iqg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.218.176.0/24
Signature Algorithm: sha256WithRSAEncryption
36:56:a6:f4:4c:4c:02:cc:33:02:cf:d7:be:a2:8e:57:23:cc:
3e:87:dd:e1:30:a5:58:17:ec:d6:84:94:a3:40:41:e3:67:2f:
b6:66:a3:17:58:36:a3:82:1c:3a:57:6b:8a:94:15:f9:d1:b7:
47:83:0a:19:35:ef:47:85:2f:b8:ff:58:df:28:cb:da:60:21:
f1:20:15:01:0c:eb:15:99:38:ca:e7:4e:04:64:42:3d:fa:a1:
42:5c:f1:21:f6:63:03:41:d0:7e:f6:67:a0:f2:e4:c3:38:b6:
9e:ba:48:83:5d:da:3f:f0:e9:44:79:48:54:ee:d2:bd:ac:ac:
38:6d:76:0e:14:82:58:3f:28:d3:43:67:39:c5:a0:32:4d:a6:
c7:10:87:24:8f:6c:d5:f8:24:28:72:74:81:2a:26:45:91:b6:
b5:29:53:2c:23:7a:2d:80:da:9e:4f:86:99:38:f6:d9:52:13:
4e:b2:14:11:d6:45:19:74:ea:82:62:cf:17:a5:f2:60:a3:fa:
59:7f:0e:90:43:ac:f6:2d:df:b4:0a:af:f4:3b:d0:9a:d3:82:
a9:0c:60:c2:22:1c:ea:ce:c3:6d:88:c3:cf:1c:0d:c0:16:26:
f7:5e:cc:fd:5d:15:6b:72:51:9a:67:2c:ef:65:7b:d5:d1:91:
45:b8:a1:b3
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICE30wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMzExMDcw
NTQ4MTRaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDA0OTAxREE4ODQ3QzA5
RjlBRjMwNjJDQTg3MDIyNDZGMzNCNTIyQTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDR+2LwcLlFPxCRtyKOLYmlZzDrz8u4DFqYqNtwSOxRIPb8DTVp
JTGJoH5/MsIpn/Nc3lxpmGtXCul+MqJ1eMpialqzGwZkbvoX/qUmfLzXLWBJnqoW
1pNbGCAmiFWrrNEonLm68DxYXnxoIsQrbcnRQ7ylwqm70Kc8vHU3HJ5hmWNsZxH1
OEouRNFRxJeaUo2zoxB/t4D9Um8buUndzTT7697floTvx9aDwWOXQHHaaFePQBis
tAAJCHSJcjxH7Q7GPEtDZRXW/ac1+Oly6Ulqwlba9XW6U4KqwQSfBfCglaQIlROI
jvEnR7blq15Ot58Dwpg6gBisLiBg0Jqp6VIfAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUBJAdqIR8CfmvMGLKhwIkbzO1IqgwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvQkpBZHFJUjhDZm12TUdMS2h3SWti
ek8xSXFnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHzasDAN
BgkqhkiG9w0BAQsFAAOCAQEANlam9ExMAswzAs/XvqKOVyPMPofd4TClWBfs1oSU
o0BB42cvtmajF1g2o4IcOldripQV+dG3R4MKGTXvR4UvuP9Y3yjL2mAh8SAVAQzr
FZk4yudOBGRCPfqhQlzxIfZjA0HQfvZnoPLkwzi2nrpIg13aP/DpRHlIVO7Svays
OG12DhSCWD8o00NnOcWgMk2mxxCHJI9s1fgkKHJ0gSomRZG2tSlTLCN6LYDank+G
mTj22VITTrIUEdZFGXTqgmLPF6XyYKP6WX8OkEOs9i3ftAqv9DvQmtOCqQxgwiIc
6s7DbYjDzxwNwBYm917M/V0Va3JRmmcs72V71dGRRbihsw==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:59:45 2025 by rpki-client