Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/HK4gC9HcUX7xvfe4t083XjEH0O4.roa
File: HK4gC9HcUX7xvfe4t083XjEH0O4.roa (raw, json)
Hash identifier: O1V/cTtMMHqE/QkF3EI06WETidkUd1cYEWqcLakOflI=
Subject key identifier: 1C:AE:20:0B:D1:DC:51:7E:F1:BD:F7:B8:B7:4F:37:5E:31:07:D0:EE
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 10E6
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/HK4gC9HcUX7xvfe4t083XjEH0O4.roa
Signing time: Tue 16 May 2023 08:36:47 +0000
ROA not before: Tue 16 May 2023 08:36:47 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24154
IP address blocks: 2404:0:5000::/36 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4326 (0x10e6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:47 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=1CAE200BD1DC517EF1BDF7B8B74F375E3107D0EE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:46:a6:14:c2:d0:bb:15:92:48:df:63:b5:0a:
0d:60:30:e6:ab:3e:40:4a:1c:25:54:d8:a2:37:b4:
ca:af:27:28:2d:fb:4a:aa:a5:0a:75:bb:98:81:7f:
07:45:d3:a7:b3:96:f5:bb:6c:9d:5a:5f:3d:66:10:
ea:68:ab:59:f0:69:28:f0:d5:20:5b:79:29:a6:5c:
36:e4:f5:a5:81:a3:43:f9:41:40:5b:fb:9c:a0:5d:
79:9d:14:22:55:f5:c3:50:85:d7:af:03:d8:59:0f:
15:51:da:88:66:dc:0a:35:e8:b5:98:75:c7:ee:15:
96:6d:63:ef:42:87:80:4a:70:ed:7d:68:4b:c4:76:
3b:71:43:b8:85:c1:27:29:5f:76:14:84:a5:e3:74:
8a:c2:13:7d:01:1b:7b:ed:a5:93:42:93:90:fe:98:
72:08:98:33:5e:8e:22:bd:7d:a3:24:d6:e0:81:95:
9a:99:04:31:3e:80:2b:20:4a:10:7e:22:6e:00:be:
48:b4:61:c1:f2:1f:a0:e9:fb:c3:fe:da:3c:99:4a:
b3:62:68:bb:c2:ef:9f:19:6b:7d:2b:62:7b:50:a3:
08:e3:fc:71:62:15:f3:d6:46:9d:5c:06:a1:66:5f:
8f:66:45:3a:4b:73:42:03:34:37:2a:88:7d:da:8f:
e0:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:AE:20:0B:D1:DC:51:7E:F1:BD:F7:B8:B7:4F:37:5E:31:07:D0:EE
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/HK4gC9HcUX7xvfe4t083XjEH0O4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:0:5000::/36
Signature Algorithm: sha256WithRSAEncryption
11:88:42:e3:17:ba:2c:7d:04:f9:37:c7:61:19:68:0e:00:2e:
ca:51:1e:19:a9:2b:0e:bb:a8:1d:4d:b9:1a:0b:ab:7e:f7:c5:
7d:f3:3d:5b:e4:b1:65:ce:7c:0e:eb:ab:76:e4:d7:0f:76:6a:
40:03:90:a4:72:cc:a2:ce:05:28:8a:d7:be:e3:8f:65:43:e3:
83:e7:6d:43:d2:e6:7b:b4:46:bd:e4:20:38:22:1d:64:da:b1:
7b:08:c6:77:9f:b1:8a:54:11:6e:16:f4:1b:f1:67:a5:f3:b1:
b3:21:f8:5e:d5:d7:30:b7:0a:aa:82:74:77:43:6b:eb:95:e5:
c9:f3:fb:0f:f1:76:15:05:7b:f9:0e:3f:d5:71:64:3e:39:b0:
d1:12:62:b3:c5:2e:ea:cb:cd:61:a7:25:4f:fd:15:be:8c:bb:
79:56:b8:ad:de:26:dd:85:a3:ee:af:4a:70:53:1c:4d:c0:48:
b2:7d:34:87:6d:ed:01:24:c3:75:2e:f3:cf:f7:ca:b7:8d:ca:
1f:f6:fe:6e:38:f4:22:9b:f6:da:96:d7:b8:f4:af:47:77:e5:
17:e0:03:e6:4f:a4:a3:a1:94:8b:56:f0:be:60:7a:4e:c9:9e:
3e:2a:35:da:dd:10:87:57:e5:15:2a:b2:9b:4e:ae:d2:55:7a:
63:45:38:92
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICEOYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMzA1MTYw
ODM2NDdaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDFDQUUyMDBCRDFEQzUx
N0VGMUJERjdCOEI3NEYzNzVFMzEwN0QwRUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDKRqYUwtC7FZJI32O1Cg1gMOarPkBKHCVU2KI3tMqvJygt+0qq
pQp1u5iBfwdF06ezlvW7bJ1aXz1mEOpoq1nwaSjw1SBbeSmmXDbk9aWBo0P5QUBb
+5ygXXmdFCJV9cNQhdevA9hZDxVR2ohm3Ao16LWYdcfuFZZtY+9Ch4BKcO19aEvE
djtxQ7iFwScpX3YUhKXjdIrCE30BG3vtpZNCk5D+mHIImDNejiK9faMk1uCBlZqZ
BDE+gCsgShB+Im4Avki0YcHyH6Dp+8P+2jyZSrNiaLvC758Za30rYntQowjj/HFi
FfPWRp1cBqFmX49mRTpLc0IDNDcqiH3aj+DTAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUHK4gC9HcUX7xvfe4t083XjEH0O4wHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvSEs0Z0M5SGNVWDd4dmZlNHQwODNY
akVIME80LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBCQEAABQ
MA0GCSqGSIb3DQEBCwUAA4IBAQARiELjF7osfQT5N8dhGWgOAC7KUR4ZqSsOu6gd
TbkaC6t+98V98z1b5LFlznwO66t25NcPdmpAA5CkcsyizgUoite+449lQ+OD521D
0uZ7tEa95CA4Ih1k2rF7CMZ3n7GKVBFuFvQb8Wel87GzIfhe1dcwtwqqgnR3Q2vr
leXJ8/sP8XYVBXv5Dj/VcWQ+ObDREmKzxS7qy81hpyVP/RW+jLt5Vrit3ibdhaPu
r0pwUxxNwEiyfTSHbe0BJMN1LvPP98q3jcof9v5uOPQim/balte49K9Hd+UX4APm
T6SjoZSLVvC+YHpOyZ4+KjXa3RCHV+UVKrKbTq7SVXpjRTiS
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:00 2024 by rpki-client on console-ams.rpki-client.org