Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/EdXvficwN9WHL5yeGfNNcALBm6A.roa
File: EdXvficwN9WHL5yeGfNNcALBm6A.roa (raw, json)
Hash identifier: 9zF8jTJ9yC02tTf+uR/EhnNVEunqUb7FTF90hlDUJAs=
Subject key identifier: 11:D5:EF:7E:27:30:37:D5:87:2F:9C:9E:19:F3:4D:70:02:C1:9B:A0
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0BB9
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/EdXvficwN9WHL5yeGfNNcALBm6A.roa
Signing time: Sun 07 Feb 2021 11:33:41 +0000
ROA not before: Sun 07 Feb 2021 11:33:41 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24154
IP address blocks: 203.79.208.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3001 (0xbb9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 11:33:41 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=11D5EF7E273037D5872F9C9E19F34D7002C19BA0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:b5:17:51:19:fe:c9:be:d6:ed:f9:ac:bc:43:
6e:ee:48:4f:40:18:ae:ae:e3:ee:71:c4:2c:52:01:
fe:3a:2b:1a:09:91:0a:82:e1:4b:b5:de:4d:52:97:
18:4c:e6:03:ac:e8:4b:2b:f0:8b:50:0e:c2:c3:81:
7c:09:40:e8:20:da:0d:df:fb:62:59:2e:f5:49:ef:
54:8c:14:a5:58:fc:30:42:09:b0:be:f9:b9:93:ba:
ca:4a:a4:40:d1:9e:d3:94:83:b9:70:c7:ef:79:a9:
08:ed:be:7c:16:d9:76:8d:3f:db:d5:04:12:9d:f8:
5e:b5:a7:6c:6f:b3:5b:b5:17:73:58:68:09:71:4d:
5f:c7:14:00:c3:63:33:51:f8:70:98:d4:7d:8a:24:
ae:da:1b:15:18:67:f7:2b:50:23:c8:68:04:64:6f:
4f:61:95:c8:fd:47:5b:25:bf:2e:4a:77:c7:be:78:
87:21:0d:67:46:2d:fe:b2:9a:ae:8b:d6:50:e5:aa:
fe:08:47:58:d0:95:cf:1c:af:53:8a:44:17:50:5e:
59:f5:52:01:bb:e2:13:6f:62:3a:84:f0:e8:40:23:
81:a7:81:e8:63:3f:8b:f7:26:ed:b7:c4:96:9f:a8:
60:32:6b:a2:89:25:25:b3:aa:42:7a:d5:bf:66:1f:
b5:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:D5:EF:7E:27:30:37:D5:87:2F:9C:9E:19:F3:4D:70:02:C1:9B:A0
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/EdXvficwN9WHL5yeGfNNcALBm6A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.79.208.0/21
Signature Algorithm: sha256WithRSAEncryption
4a:bb:44:f1:13:43:fe:cf:12:c8:e6:cc:88:2d:7f:3e:6c:85:
5e:cd:35:4e:63:61:ce:14:b6:23:3f:eb:5e:e4:bd:50:2f:fe:
74:a0:d5:de:0e:33:da:0b:bb:83:93:31:68:bd:42:1e:8b:cf:
2d:f9:1f:e1:87:5b:f5:de:d6:f8:9b:a6:eb:74:7d:a5:9b:c5:
7c:fa:e3:0f:ec:86:19:40:86:be:9f:f3:33:f8:a0:0a:40:f9:
65:6b:75:b7:93:ce:1a:9c:8f:9b:72:cd:53:2d:02:e6:0a:0e:
b7:05:f5:12:35:8b:fd:87:9e:6c:1f:10:ad:86:5a:96:32:65:
57:41:5f:21:44:fd:89:c7:df:ad:91:3d:a5:77:96:14:aa:82:
1f:cc:05:af:9b:2a:24:da:64:a7:00:ee:4c:d1:01:98:ec:41:
72:d3:1a:77:2b:15:54:3b:4c:1a:77:0a:1e:b9:eb:5b:67:5f:
08:e0:6f:ac:f1:63:d4:88:54:07:bd:4e:28:0e:d5:39:fc:fb:
eb:53:c9:01:53:3f:b6:b6:c1:eb:33:5e:5b:92:ac:90:fd:60:
1a:0e:0b:44:c5:43:b6:93:30:f5:9c:37:a6:11:4c:95:88:92:
a4:10:26:36:02:c8:b3:58:7f:0f:d0:0e:aa:d2:46:71:12:76:
bb:46:44:65
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICC7kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMTAyMDcx
MTMzNDFaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDExRDVFRjdFMjczMDM3
RDU4NzJGOUM5RTE5RjM0RDcwMDJDMTlCQTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCrtRdRGf7Jvtbt+ay8Q27uSE9AGK6u4+5xxCxSAf46KxoJkQqC
4Uu13k1SlxhM5gOs6Esr8ItQDsLDgXwJQOgg2g3f+2JZLvVJ71SMFKVY/DBCCbC+
+bmTuspKpEDRntOUg7lwx+95qQjtvnwW2XaNP9vVBBKd+F61p2xvs1u1F3NYaAlx
TV/HFADDYzNR+HCY1H2KJK7aGxUYZ/crUCPIaARkb09hlcj9R1slvy5Kd8e+eIch
DWdGLf6ymq6L1lDlqv4IR1jQlc8cr1OKRBdQXln1UgG74hNvYjqE8OhAI4Gngehj
P4v3Ju23xJafqGAya6KJJSWzqkJ61b9mH7UVAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUEdXvficwN9WHL5yeGfNNcALBm6AwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvRWRYdmZpY3dOOVdITDV5ZUdmTk5j
QUxCbTZBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA8tP0DAN
BgkqhkiG9w0BAQsFAAOCAQEASrtE8RND/s8SyObMiC1/PmyFXs01TmNhzhS2Iz/r
XuS9UC/+dKDV3g4z2gu7g5MxaL1CHovPLfkf4Ydb9d7W+Jum63R9pZvFfPrjD+yG
GUCGvp/zM/igCkD5ZWt1t5POGpyPm3LNUy0C5goOtwX1EjWL/YeebB8QrYZaljJl
V0FfIUT9icffrZE9pXeWFKqCH8wFr5sqJNpkpwDuTNEBmOxBctMadysVVDtMGncK
HrnrW2dfCOBvrPFj1IhUB71OKA7VOfz761PJAVM/trbB6zNeW5KskP1gGg4LRMVD
tpMw9Zw3phFMlYiSpBAmNgLIs1h/D9AOqtJGcRJ2u0ZEZQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:00 2024 by rpki-client on console-ams.rpki-client.org