Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/HVZPGdgPEmml8mFakakmFgnSod8.roa
File: HVZPGdgPEmml8mFakakmFgnSod8.roa (raw, json)
Hash identifier: RdJAE4khCFEKOId8Scwx2vEpwa934jT5Ss6YBPQKl4Y=
Subject key identifier: 1D:56:4F:19:D8:0F:12:69:A5:F2:61:5A:91:A9:26:16:09:D2:A1:DF
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/HVZPGdgPEmml8mFakakmFgnSod8.roa
Signing time: Thu 15 Sep 2022 02:39:43 +0000
ROA not before: Thu 15 Sep 2022 02:39:43 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 7482
IP address blocks: 2404:0:2000::/36 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:39:43 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=1D564F19D80F1269A5F2615A91A9261609D2A1DF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:40:e7:fe:12:04:11:56:6c:cb:8e:95:8b:63:
29:70:29:0a:ef:a4:a2:12:28:47:d9:2c:c4:5a:62:
4d:e7:29:55:69:94:8c:b7:8d:2b:0a:1b:af:a1:6e:
78:03:a5:27:73:a6:de:cb:e4:a0:4a:9f:fa:31:3f:
5c:40:62:82:44:d8:60:af:f1:2d:35:a7:54:7f:2d:
a3:cc:f4:4d:89:e8:38:2c:ce:75:31:54:ce:19:20:
d7:34:33:e8:12:7d:99:24:54:aa:db:57:e6:64:ae:
49:26:11:66:d0:66:f6:16:88:7e:fd:ab:10:ab:0b:
1d:2f:f5:07:63:41:06:16:5d:a0:3f:67:63:28:21:
47:96:b5:da:30:84:8f:76:fe:91:a0:a3:86:9d:7b:
7d:78:f2:e9:f7:ec:ff:b0:0a:11:03:58:ee:97:34:
ba:97:0d:90:bd:c0:84:63:5b:18:2a:65:db:be:67:
14:ab:42:71:98:01:d3:56:45:72:70:49:6e:57:d9:
96:04:e2:90:9e:49:33:d0:f2:ba:ba:25:b6:9c:1f:
b0:69:c3:fa:93:63:4a:fd:20:21:8f:db:4d:8e:fc:
6f:25:b7:f4:fb:51:10:7a:b9:cc:5b:c7:d3:be:e2:
24:1c:4e:a6:30:c4:a4:c6:93:ca:c8:b3:c9:f1:87:
f5:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:56:4F:19:D8:0F:12:69:A5:F2:61:5A:91:A9:26:16:09:D2:A1:DF
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/HVZPGdgPEmml8mFakakmFgnSod8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:0:2000::/36
Signature Algorithm: sha256WithRSAEncryption
0f:b0:3c:54:80:c6:b1:45:00:bc:47:76:06:57:82:be:aa:ed:
3a:46:08:8c:62:c1:a8:69:58:6d:74:fa:20:31:ea:d3:c7:1f:
5a:6b:38:23:4c:e6:51:fc:9e:1c:55:a2:29:a9:0f:2b:5c:de:
3f:29:1a:b8:65:53:6c:87:e8:c7:64:28:df:ef:ef:75:2b:8f:
a1:bb:9f:d0:fc:8d:46:bc:03:cc:75:dd:b6:72:cf:9b:cf:7a:
b8:75:a7:a1:73:3a:e8:d8:2b:e0:a3:e3:e0:30:e6:e4:00:fc:
eb:d4:bf:9a:38:58:e5:2a:19:eb:1c:66:84:ad:f8:02:77:7e:
69:71:4a:ea:01:ca:fc:05:5f:05:52:5f:41:02:c3:da:24:64:
a6:ac:ff:3d:f0:49:8f:5e:aa:cf:e0:87:ab:2e:cf:aa:28:f6:
cd:1b:63:b0:67:04:ba:11:f5:cd:92:6c:d9:83:ce:a1:f6:43:
78:11:d1:1c:c6:83:15:cd:e3:9c:63:0f:f9:1b:ea:02:b4:29:
92:22:98:0d:bc:34:8e:3c:5a:e6:7e:e3:65:5f:52:a3:8f:50:
e4:7e:54:28:f4:62:77:25:af:fa:0d:32:85:6b:76:e5:26:c0:
40:57:86:e4:9a:7d:27:7d:a8:bb:53:c0:c7:49:d3:29:4f:e9:
05:73:f9:7a
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICD2MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMjA5MTUw
MjM5NDNaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDFENTY0RjE5RDgwRjEy
NjlBNUYyNjE1QTkxQTkyNjE2MDlEMkExREYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDOQOf+EgQRVmzLjpWLYylwKQrvpKISKEfZLMRaYk3nKVVplIy3
jSsKG6+hbngDpSdzpt7L5KBKn/oxP1xAYoJE2GCv8S01p1R/LaPM9E2J6DgsznUx
VM4ZINc0M+gSfZkkVKrbV+ZkrkkmEWbQZvYWiH79qxCrCx0v9QdjQQYWXaA/Z2Mo
IUeWtdowhI92/pGgo4ade3148un37P+wChEDWO6XNLqXDZC9wIRjWxgqZdu+ZxSr
QnGYAdNWRXJwSW5X2ZYE4pCeSTPQ8rq6JbacH7Bpw/qTY0r9ICGP202O/G8lt/T7
URB6ucxbx9O+4iQcTqYwxKTGk8rIs8nxh/X3AgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUHVZPGdgPEmml8mFakakmFgnSod8wHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvSFZaUEdkZ1BFbW1sOG1GYWtha21G
Z25Tb2Q4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBCQEAAAg
MA0GCSqGSIb3DQEBCwUAA4IBAQAPsDxUgMaxRQC8R3YGV4K+qu06RgiMYsGoaVht
dPogMerTxx9aazgjTOZR/J4cVaIpqQ8rXN4/KRq4ZVNsh+jHZCjf7+91K4+hu5/Q
/I1GvAPMdd22cs+bz3q4daehczro2Cvgo+PgMObkAPzr1L+aOFjlKhnrHGaErfgC
d35pcUrqAcr8BV8FUl9BAsPaJGSmrP898EmPXqrP4IerLs+qKPbNG2OwZwS6EfXN
kmzZg86h9kN4EdEcxoMVzeOcYw/5G+oCtCmSIpgNvDSOPFrmfuNlX1Kjj1DkflQo
9GJ3Ja/6DTKFa3blJsBAV4bkmn0nfai7U8DHSdMpT+kFc/l6
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:00 2024 by rpki-client on console-ams.rpki-client.org