Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/FajY0lP1NLuIb413Goglq3pXw3Q.roa
File: FajY0lP1NLuIb413Goglq3pXw3Q.roa (raw, json)
Hash identifier: qsthyIyAphw4gWuskGoubgh+qUa7wdH3tcomGCNP7jA=
Subject key identifier: 15:A8:D8:D2:53:F5:34:BB:88:6F:8D:77:1A:88:25:AB:7A:57:C3:74
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0E10
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/FajY0lP1NLuIb413Goglq3pXw3Q.roa
Signing time: Wed 29 Sep 2021 02:39:55 +0000
ROA not before: Wed 29 Sep 2021 02:39:55 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17709
IP address blocks: 222.251.0.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3600 (0xe10)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:39:55 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=15A8D8D253F534BB886F8D771A8825AB7A57C374
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:49:89:d0:6a:96:02:f2:f8:8c:52:6e:a8:32:
64:e8:e7:28:90:62:ad:2a:dd:a8:da:43:d8:db:46:
73:8e:84:0d:86:08:8d:a1:ef:82:32:b7:b6:53:dd:
d4:1d:54:d7:83:b8:a2:52:62:45:89:f8:bd:5c:5a:
73:46:b9:83:97:a4:38:7b:ff:17:ba:6f:7e:d6:95:
7f:e8:97:15:f2:6f:57:c1:d2:79:f9:d9:ec:29:03:
68:57:d8:1d:c5:f9:67:83:3f:7e:2c:5a:ac:48:a3:
4a:ba:80:08:37:34:fc:d7:4f:e3:79:40:22:7a:a7:
fc:ea:40:ce:53:30:4e:b7:f6:4a:08:62:47:60:34:
9a:65:f1:58:d8:b8:46:09:3a:99:70:c9:14:ee:ea:
62:85:77:93:e9:c3:77:cd:69:10:29:b4:02:e1:68:
f5:a3:b5:b8:68:64:2a:52:4f:75:2e:2c:19:75:9b:
3d:3f:21:de:22:a9:c2:a7:0e:ad:e9:2f:3f:ed:93:
96:1b:85:cf:f9:ad:eb:1a:0e:76:73:83:9e:7f:3d:
24:60:07:ef:7c:ca:cb:76:90:39:e6:3c:16:da:71:
29:e8:18:e9:a1:ba:63:96:7d:01:23:32:c4:8c:02:
84:a7:dc:40:19:61:3c:53:5a:d9:38:ae:d3:c2:95:
8a:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:A8:D8:D2:53:F5:34:BB:88:6F:8D:77:1A:88:25:AB:7A:57:C3:74
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/FajY0lP1NLuIb413Goglq3pXw3Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
222.251.0.0/17
Signature Algorithm: sha256WithRSAEncryption
b4:5c:72:8e:ae:19:5e:e6:02:5d:a3:08:c2:40:16:24:7d:c0:
f9:2b:22:8f:70:a4:95:26:91:c9:19:51:6e:f1:f8:a3:83:f2:
82:2a:f6:18:b9:03:67:e2:bd:44:e7:3c:fb:b7:69:a5:49:f0:
5d:d0:7b:d6:62:89:71:ac:4e:d0:e6:2e:55:69:b4:2d:ab:f7:
33:85:ab:bf:96:42:d7:ff:8d:e5:2d:51:af:83:56:56:72:71:
89:df:e3:ce:44:fe:16:52:34:14:07:02:8e:aa:d9:21:ad:bf:
30:49:0c:d3:ab:b9:0f:73:99:9b:de:bf:0a:be:9b:9d:d1:68:
33:9c:0f:eb:0e:d3:3f:53:a7:ae:32:6b:fd:e4:a1:f6:9f:c4:
2c:b1:7d:88:6f:6d:31:02:2c:a1:cd:86:4f:2d:e6:6f:38:f0:
df:1c:57:bc:a6:9b:10:29:98:c0:df:cf:f7:f3:ea:27:35:aa:
89:78:64:93:23:27:1c:1a:fa:80:1c:ff:3b:17:3e:d4:c2:ee:
31:5e:99:1e:7d:36:cd:08:eb:30:b2:93:57:c6:9d:ef:b1:5a:
82:94:5e:7f:fb:c9:e5:d0:6c:fa:40:dd:ae:9a:42:74:04:7b:
c0:6b:e0:73:d5:48:cd:0e:fd:78:f7:62:60:6d:2c:e2:06:b4:
de:cf:c9:38
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDhAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMTA5Mjkw
MjM5NTVaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDE1QThEOEQyNTNGNTM0
QkI4ODZGOEQ3NzFBODgyNUFCN0E1N0MzNzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCwSYnQapYC8viMUm6oMmTo5yiQYq0q3ajaQ9jbRnOOhA2GCI2h
74Iyt7ZT3dQdVNeDuKJSYkWJ+L1cWnNGuYOXpDh7/xe6b37WlX/olxXyb1fB0nn5
2ewpA2hX2B3F+WeDP34sWqxIo0q6gAg3NPzXT+N5QCJ6p/zqQM5TME639koIYkdg
NJpl8VjYuEYJOplwyRTu6mKFd5Ppw3fNaRAptALhaPWjtbhoZCpST3UuLBl1mz0/
Id4iqcKnDq3pLz/tk5Ybhc/5resaDnZzg55/PSRgB+98yst2kDnmPBbacSnoGOmh
umOWfQEjMsSMAoSn3EAZYTxTWtk4rtPClYpBAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUFajY0lP1NLuIb413Goglq3pXw3QwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvRmFqWTBsUDFOTHVJYjQxM0dvZ2xx
M3BYdzNRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEB977ADAN
BgkqhkiG9w0BAQsFAAOCAQEAtFxyjq4ZXuYCXaMIwkAWJH3A+Ssij3CklSaRyRlR
bvH4o4Pygir2GLkDZ+K9ROc8+7dppUnwXdB71mKJcaxO0OYuVWm0Lav3M4Wrv5ZC
1/+N5S1Rr4NWVnJxid/jzkT+FlI0FAcCjqrZIa2/MEkM06u5D3OZm96/Cr6bndFo
M5wP6w7TP1OnrjJr/eSh9p/ELLF9iG9tMQIsoc2GTy3mbzjw3xxXvKabECmYwN/P
9/PqJzWqiXhkkyMnHBr6gBz/Oxc+1MLuMV6ZHn02zQjrMLKTV8ad77FagpRef/vJ
5dBs+kDdrppCdAR7wGvgc9VIzQ79ePdiYG0s4ga03s/JOA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org