Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/EyRkM93RjevU_RvyLAB2pCQ70XA.roa
File: EyRkM93RjevU_RvyLAB2pCQ70XA.roa (raw, json)
Hash identifier: qawIZf+PGk6Dicd/Lhx0Q+NbxCOz7dR50JQzYKMlDZA=
Subject key identifier: 13:24:64:33:DD:D1:8D:EB:D4:FD:1B:F2:2C:00:76:A4:24:3B:D1:70
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1068
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/EyRkM93RjevU_RvyLAB2pCQ70XA.roa
Signing time: Tue 16 May 2023 08:36:10 +0000
ROA not before: Tue 16 May 2023 08:36:10 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17709
IP address blocks: 210.58.104.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4200 (0x1068)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:10 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=13246433DDD18DEBD4FD1BF22C0076A4243BD170
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:15:02:81:30:01:50:d1:9f:53:47:a1:68:62:
a9:19:23:92:2b:22:02:f1:c7:52:c8:4b:fb:b1:b1:
1b:36:90:45:81:d1:7b:80:91:f3:77:5a:bc:29:c8:
b1:3b:b8:ae:68:0a:ae:5b:7d:a4:30:96:e1:58:aa:
f9:28:5e:2e:d5:34:0d:2d:79:df:20:4a:eb:91:03:
e2:70:07:db:02:da:73:80:10:ac:50:32:96:9c:69:
00:7d:3b:44:ed:08:ad:eb:b0:1c:95:f4:67:5a:85:
bd:9f:56:56:c0:94:f7:5f:e5:90:61:f5:a7:6d:9d:
dd:c0:60:61:b2:e4:64:18:03:f3:6a:77:b5:90:65:
93:2c:2d:e5:be:0a:04:ef:fc:c6:d2:34:c7:90:1e:
c8:23:1a:69:20:91:29:12:28:4d:62:ac:d2:f8:86:
dc:69:57:96:ec:04:2c:d7:b0:5f:7b:be:ff:a2:71:
60:3a:8b:85:46:d3:bd:e7:0c:86:8c:23:39:d4:ff:
2d:c4:a5:2f:97:9d:63:82:ad:a3:b6:a3:f2:c8:3f:
4f:8e:cf:b3:b1:d6:e0:ea:41:8e:27:ff:78:65:55:
59:d8:22:c9:fb:5c:27:69:79:43:99:e5:d0:df:f3:
66:22:3c:15:56:05:93:c5:8d:4a:65:c2:cf:b1:0f:
d1:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:24:64:33:DD:D1:8D:EB:D4:FD:1B:F2:2C:00:76:A4:24:3B:D1:70
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/EyRkM93RjevU_RvyLAB2pCQ70XA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.58.104.0/22
Signature Algorithm: sha256WithRSAEncryption
7a:09:40:b0:a0:44:84:4e:57:d3:db:80:0a:2f:ce:d9:c8:34:
11:3b:93:15:42:60:d1:27:60:9b:4a:b2:23:99:3d:e8:fb:33:
61:32:49:39:d2:a4:38:39:f0:08:ee:ec:0d:5a:e2:49:53:4b:
84:d9:19:53:92:41:76:a2:d6:92:e3:89:77:bb:95:5e:d0:ee:
76:e4:c8:2c:b3:b1:6d:7d:a9:ed:1a:21:89:95:11:0f:7c:e7:
00:8c:68:dc:da:9b:fe:85:87:84:6a:a2:3d:e0:df:b2:00:0b:
7e:6c:0c:09:72:7e:0c:9e:9d:42:05:43:50:e1:fb:84:84:c9:
45:a2:1c:6f:18:49:ef:17:9e:16:dd:d0:54:45:bf:4e:ba:68:
c6:dd:b6:48:f9:bf:79:6d:70:08:48:d4:28:eb:12:25:49:f9:
5d:95:c5:d3:d0:d7:5e:09:a9:98:39:19:d5:c9:45:a7:fe:2e:
a0:59:c1:20:87:6f:34:63:76:b3:48:50:b5:19:6b:9f:85:02:
99:5b:4d:6c:82:72:57:20:67:2e:0c:7d:24:80:9b:93:8f:7a:
2a:5f:14:22:1d:48:63:5b:20:c4:fa:46:bd:f8:fb:13:d2:83:
91:fe:db:56:f5:c6:86:80:b4:f4:3c:8d:e5:7c:f5:1a:9b:3b:
31:f5:2e:36
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICEGgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMzA1MTYw
ODM2MTBaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDEzMjQ2NDMzREREMThE
RUJENEZEMUJGMjJDMDA3NkE0MjQzQkQxNzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCzFQKBMAFQ0Z9TR6FoYqkZI5IrIgLxx1LIS/uxsRs2kEWB0XuA
kfN3WrwpyLE7uK5oCq5bfaQwluFYqvkoXi7VNA0ted8gSuuRA+JwB9sC2nOAEKxQ
MpacaQB9O0TtCK3rsByV9Gdahb2fVlbAlPdf5ZBh9adtnd3AYGGy5GQYA/Nqd7WQ
ZZMsLeW+CgTv/MbSNMeQHsgjGmkgkSkSKE1irNL4htxpV5bsBCzXsF97vv+icWA6
i4VG073nDIaMIznU/y3EpS+XnWOCraO2o/LIP0+Oz7Ox1uDqQY4n/3hlVVnYIsn7
XCdpeUOZ5dDf82YiPBVWBZPFjUplws+xD9FLAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUEyRkM93RjevU/RvyLAB2pCQ70XAwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvRXlSa005M1JqZXZVX1J2eUxBQjJw
Q1E3MFhBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAtI6aDAN
BgkqhkiG9w0BAQsFAAOCAQEAeglAsKBEhE5X09uACi/O2cg0ETuTFUJg0Sdgm0qy
I5k96PszYTJJOdKkODnwCO7sDVriSVNLhNkZU5JBdqLWkuOJd7uVXtDuduTILLOx
bX2p7RohiZURD3znAIxo3Nqb/oWHhGqiPeDfsgALfmwMCXJ+DJ6dQgVDUOH7hITJ
RaIcbxhJ7xeeFt3QVEW/Trpoxt22SPm/eW1wCEjUKOsSJUn5XZXF09DXXgmpmDkZ
1clFp/4uoFnBIIdvNGN2s0hQtRlrn4UCmVtNbIJyVyBnLgx9JICbk496Kl8UIh1I
Y1sgxPpGvfj7E9KDkf7bVvXGhoC09DyN5Xz1Gps7MfUuNg==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:47:57 2025 by rpki-client