Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/DCk64uwQZt38_0FDdzcZrcSu3EM.roa
File: DCk64uwQZt38_0FDdzcZrcSu3EM.roa (raw, json)
Hash identifier: ArNSBEDdxMvYukFyeCJr2ZqCLhmUYPAb5wF1LsjShM4=
Subject key identifier: 0C:29:3A:E2:EC:10:66:DD:FC:FF:41:43:77:37:19:AD:C4:AE:DC:43
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/DCk64uwQZt38_0FDdzcZrcSu3EM.roa
Signing time: Thu 15 Sep 2022 02:39:46 +0000
ROA not before: Thu 15 Sep 2022 02:39:46 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17709
IP address blocks: 202.178.180.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:39:46 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=0C293AE2EC1066DDFCFF4143773719ADC4AEDC43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:cd:9e:81:82:f9:79:86:08:87:eb:9a:f3:6a:
a1:38:4d:d5:4b:31:17:51:e2:a1:7f:d6:6f:41:03:
36:28:bc:34:e5:3c:fb:6d:46:7e:0b:18:7c:0a:f5:
6c:d2:25:96:4a:bf:ee:28:6f:ba:c0:fa:d3:fe:c0:
05:d7:9d:e1:c4:0b:1d:e9:60:fa:a7:13:08:ec:f9:
3c:2b:80:0d:ae:a5:15:ae:00:0b:e3:d3:e9:33:88:
bb:0b:31:61:30:da:2c:d5:ab:0d:73:5a:32:b9:90:
ca:16:7a:32:c4:58:eb:5b:0a:3b:5e:e9:08:fd:b9:
e4:1d:99:13:ce:07:d3:9d:dd:67:b5:4e:f0:ee:43:
a6:68:da:d8:f9:69:23:97:35:af:52:b1:9e:8c:06:
8b:64:a1:fc:79:d8:2e:16:62:be:c7:82:2c:7b:5f:
ac:4d:b6:20:e8:aa:27:6f:5f:b2:cc:dc:48:c7:f6:
f0:48:b4:8b:be:78:12:11:6f:af:0d:76:31:a8:08:
9e:6b:7b:95:d7:18:0c:db:94:3c:03:59:11:2f:c9:
71:5b:44:7e:f5:88:88:b4:65:f2:0a:b1:72:a4:45:
ee:1d:35:39:8a:81:d0:78:5a:41:c8:98:9e:b3:10:
cd:2f:84:ac:47:bf:38:72:e1:d2:42:4f:2c:36:4a:
11:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:29:3A:E2:EC:10:66:DD:FC:FF:41:43:77:37:19:AD:C4:AE:DC:43
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/DCk64uwQZt38_0FDdzcZrcSu3EM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.178.180.0/22
Signature Algorithm: sha256WithRSAEncryption
76:85:66:3c:49:7d:67:3e:a1:3c:84:22:d4:4c:c7:34:63:2f:
81:fa:e9:04:f5:2c:93:67:03:52:27:34:e5:37:9f:89:40:07:
67:9b:a5:b9:84:14:b7:d6:40:a2:d2:65:5f:03:65:9a:ee:0e:
a4:b2:c0:68:3b:32:15:31:ea:8f:75:55:91:f6:79:a3:65:b8:
c3:9d:7c:98:05:b9:4d:a7:75:3a:f8:60:17:8e:5f:3e:22:a0:
ef:f4:ff:0f:93:7b:eb:02:7e:69:91:bc:1a:f8:1f:ed:1d:59:
cf:0f:06:57:5d:44:e9:54:21:cf:dd:14:7e:db:d5:b4:02:d6:
48:b0:ab:71:71:86:fc:d4:72:a7:24:b7:fb:df:7e:0b:eb:85:
26:5a:2e:fa:ce:5c:1e:d7:d1:2a:33:0e:a0:6f:db:ec:56:9e:
c9:12:93:69:f2:f2:15:97:f5:6b:9b:5c:01:2b:29:10:f7:5e:
38:8f:cd:bc:89:4b:c7:34:08:ad:2e:54:52:45:07:68:1f:e9:
31:ce:ac:74:12:97:a6:4a:e5:28:94:68:55:5f:b9:ac:21:1f:
75:03:c7:ff:02:26:03:33:ba:0b:01:d0:8b:73:53:be:f9:ee:
fc:8e:e0:ca:d7:48:5b:0d:48:b6:8c:71:7d:31:98:01:af:d4:
11:33:6b:d1
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICD2MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMjA5MTUw
MjM5NDZaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDBDMjkzQUUyRUMxMDY2
RERGQ0ZGNDE0Mzc3MzcxOUFEQzRBRURDNDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDLzZ6Bgvl5hgiH65rzaqE4TdVLMRdR4qF/1m9BAzYovDTlPPtt
Rn4LGHwK9WzSJZZKv+4ob7rA+tP+wAXXneHECx3pYPqnEwjs+TwrgA2upRWuAAvj
0+kziLsLMWEw2izVqw1zWjK5kMoWejLEWOtbCjte6Qj9ueQdmRPOB9Od3We1TvDu
Q6Zo2tj5aSOXNa9SsZ6MBotkofx52C4WYr7Hgix7X6xNtiDoqidvX7LM3EjH9vBI
tIu+eBIRb68NdjGoCJ5re5XXGAzblDwDWREvyXFbRH71iIi0ZfIKsXKkRe4dNTmK
gdB4WkHImJ6zEM0vhKxHvzhy4dJCTyw2ShEFAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUDCk64uwQZt38/0FDdzcZrcSu3EMwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvRENrNjR1d1FadDM4XzBGRGR6Y1py
Y1N1M0VNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsqytDAN
BgkqhkiG9w0BAQsFAAOCAQEAdoVmPEl9Zz6hPIQi1EzHNGMvgfrpBPUsk2cDUic0
5TefiUAHZ5uluYQUt9ZAotJlXwNlmu4OpLLAaDsyFTHqj3VVkfZ5o2W4w518mAW5
Tad1OvhgF45fPiKg7/T/D5N76wJ+aZG8Gvgf7R1Zzw8GV11E6VQhz90UftvVtALW
SLCrcXGG/NRypyS3+99+C+uFJlou+s5cHtfRKjMOoG/b7FaeyRKTafLyFZf1a5tc
ASspEPdeOI/NvIlLxzQIrS5UUkUHaB/pMc6sdBKXpkrlKJRoVV+5rCEfdQPH/wIm
AzO6CwHQi3NTvvnu/I7gytdIWw1ItoxxfTGYAa/UETNr0Q==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org