Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/DElfDojOYzkqCkmZv97BWbnUq74.roa
File: DElfDojOYzkqCkmZv97BWbnUq74.roa (raw, json)
Hash identifier: Jt88e7Zz2LyKhg0kncihwOGCG20Sej3LhDkwxVLTM44=
Subject key identifier: 0C:49:5F:0E:88:CE:63:39:2A:0A:49:99:BF:DE:C1:59:B9:D4:AB:BE
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 12D2
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/DElfDojOYzkqCkmZv97BWbnUq74.roa
Signing time: Fri 01 Sep 2023 08:05:02 +0000
ROA not before: Fri 01 Sep 2023 08:05:02 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17709
IP address blocks: 124.219.0.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4818 (0x12d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:05:02 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=0C495F0E88CE63392A0A4999BFDEC159B9D4ABBE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:ee:dc:80:0d:d2:b3:09:19:b3:d6:66:78:98:
9f:49:8d:de:31:04:12:2c:5a:43:df:a3:5a:72:cc:
f5:44:44:9b:41:50:9f:5c:5f:10:be:46:16:06:ac:
0f:b0:6d:ba:b0:fb:36:fe:24:85:6a:62:f4:ed:1b:
2c:5c:4f:9e:b5:62:1d:99:80:29:0b:da:94:ba:2f:
3f:a4:d7:ae:03:82:f8:26:99:10:95:c3:6e:79:e4:
14:ee:6e:28:f8:aa:5c:9c:f3:ae:7d:e1:ee:15:c9:
ac:56:f9:ea:71:44:75:60:2a:e8:e7:81:5f:9a:64:
78:cc:5d:6b:6f:c5:82:cf:6c:c8:48:c6:9f:fa:f7:
61:ea:f5:b8:5b:10:6b:1b:82:fd:2e:d8:df:2f:95:
68:3e:ce:5d:6d:17:d2:c8:ed:94:68:9f:2e:38:7b:
69:fc:ed:98:13:0a:5b:0b:32:85:9f:c9:f1:ab:75:
3c:9c:8f:f0:0d:d5:dd:34:50:2a:59:56:42:11:38:
37:5a:8c:0f:5c:4e:7d:c7:1a:7f:cc:ae:81:52:92:
60:9e:73:a0:61:f7:86:8a:f1:fd:25:07:6f:ee:43:
94:7f:2f:c6:4d:a4:01:8b:91:41:79:43:b2:4c:77:
47:49:be:56:89:1b:bb:09:4f:8d:ca:26:36:11:ed:
62:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:49:5F:0E:88:CE:63:39:2A:0A:49:99:BF:DE:C1:59:B9:D4:AB:BE
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/DElfDojOYzkqCkmZv97BWbnUq74.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.219.0.0/17
Signature Algorithm: sha256WithRSAEncryption
b8:28:16:53:10:e6:31:2e:fd:34:3f:9b:df:8a:5a:80:69:73:
c6:a1:2d:46:3d:82:8a:09:74:9a:5c:aa:50:90:2a:06:c0:94:
f8:2e:65:8a:ac:46:7d:9d:cd:51:72:27:7e:d1:53:83:70:d3:
d0:b6:82:2a:70:13:61:26:bc:b6:55:3e:8b:9e:cd:d2:89:7c:
d5:4b:38:7f:72:75:f9:b0:ed:fb:5a:13:8b:70:16:54:db:47:
f8:a5:8b:36:d1:7a:e6:8e:27:93:96:cb:a9:b6:62:fb:aa:e8:
58:58:58:14:2e:16:df:2d:50:5c:b2:f3:c7:ad:ac:c3:d5:a1:
47:47:9d:f8:35:a9:81:39:5b:6a:3a:17:1e:1f:c8:d8:37:44:
a0:e5:1a:77:56:f0:b4:24:67:d8:3c:56:f6:20:f7:b1:ef:72:
ad:8a:23:58:51:45:ef:a2:6b:d6:e3:3d:59:a9:55:1f:b1:ed:
12:90:00:05:1a:26:9d:f7:c9:26:06:1f:48:8a:2d:5f:11:cd:
08:0e:1d:e4:60:12:ed:0e:5b:37:da:25:b0:33:e2:60:f2:61:
69:1d:b6:40:3d:20:1f:29:b5:69:70:e5:35:7d:e8:92:4a:93:
bf:02:7a:b1:c6:45:50:a7:1b:91:eb:68:7e:0c:ae:e2:56:83:
dd:20:53:bb
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICEtIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMzA5MDEw
ODA1MDJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDBDNDk1RjBFODhDRTYz
MzkyQTBBNDk5OUJGREVDMTU5QjlENEFCQkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDY7tyADdKzCRmz1mZ4mJ9Jjd4xBBIsWkPfo1pyzPVERJtBUJ9c
XxC+RhYGrA+wbbqw+zb+JIVqYvTtGyxcT561Yh2ZgCkL2pS6Lz+k164DgvgmmRCV
w2555BTubij4qlyc86594e4VyaxW+epxRHVgKujngV+aZHjMXWtvxYLPbMhIxp/6
92Hq9bhbEGsbgv0u2N8vlWg+zl1tF9LI7ZRony44e2n87ZgTClsLMoWfyfGrdTyc
j/AN1d00UCpZVkIRODdajA9cTn3HGn/MroFSkmCec6Bh94aK8f0lB2/uQ5R/L8ZN
pAGLkUF5Q7JMd0dJvlaJG7sJT43KJjYR7WJHAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUDElfDojOYzkqCkmZv97BWbnUq74wHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvREVsZkRvak9ZemtxQ2ttWnY5N0JX
Ym5VcTc0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEB3zbADAN
BgkqhkiG9w0BAQsFAAOCAQEAuCgWUxDmMS79ND+b34pagGlzxqEtRj2Cigl0mlyq
UJAqBsCU+C5liqxGfZ3NUXInftFTg3DT0LaCKnATYSa8tlU+i57N0ol81Us4f3J1
+bDt+1oTi3AWVNtH+KWLNtF65o4nk5bLqbZi+6roWFhYFC4W3y1QXLLzx62sw9Wh
R0ed+DWpgTlbajoXHh/I2DdEoOUad1bwtCRn2DxW9iD3se9yrYojWFFF76Jr1uM9
WalVH7HtEpAABRomnffJJgYfSIotXxHNCA4d5GAS7Q5bN9olsDPiYPJhaR22QD0g
Hym1aXDlNX3okkqTvwJ6scZFUKcbketofgyu4laD3SBTuw==
-----END CERTIFICATE-----
Generated at Sun Feb 16 21:09:24 2025 by rpki-client