Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/JZNRrlwrQ9lz4Oh-Zl4I0JWJHrg.roa
File: JZNRrlwrQ9lz4Oh-Zl4I0JWJHrg.roa (raw, json)
Hash identifier: jXeYjrjnAHxalz06DhaQ3S9p2d8KyShDLjcAh/x1TwM=
Subject key identifier: 25:93:51:AE:5C:2B:43:D9:73:E0:E8:7E:66:5E:08:D0:95:89:1E:B8
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0909
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/JZNRrlwrQ9lz4Oh-Zl4I0JWJHrg.roa
Signing time: Tue 29 Sep 2020 10:01:23 +0000
ROA not before: Tue 29 Sep 2020 10:01:23 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24154
IP address blocks: 210.63.220.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2313 (0x909)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:01:23 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=259351AE5C2B43D973E0E87E665E08D095891EB8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:d6:ad:0c:7c:5c:b3:12:f4:db:3b:de:5a:2f:
72:d8:b2:32:39:16:59:13:0f:c1:e5:e7:c5:f2:35:
5e:8a:1a:68:4c:43:4a:75:b5:78:83:98:56:21:71:
b9:9d:56:6e:00:3e:46:d9:5e:2d:1f:f0:54:6b:04:
f8:c9:c0:47:42:4a:94:f1:a4:81:3b:f4:1f:b9:2e:
2b:9c:ac:ec:d3:9c:e2:6a:35:46:44:3f:01:ec:21:
44:65:b2:19:52:44:1c:e4:6f:68:5a:e7:0e:1e:8c:
43:7f:4b:7b:c0:1c:57:27:13:47:92:49:68:89:c8:
d3:33:47:7a:13:38:c9:31:04:eb:70:fd:76:24:a4:
e9:3b:eb:4b:d8:32:14:5e:77:a8:ce:f3:5d:a4:7d:
2f:d4:0a:8f:97:05:f5:21:69:ce:a1:2e:ac:7a:af:
3f:a2:8a:b1:db:dc:bf:28:e6:0e:42:e1:33:22:22:
72:f4:ca:ba:51:4e:5c:89:e0:f2:74:8b:b7:ae:c1:
c1:c0:aa:b5:31:65:83:f5:45:bc:9c:6b:75:26:6b:
00:7f:18:52:81:b7:bc:95:cc:e2:2d:7b:41:6f:ad:
d8:10:63:16:25:47:d9:48:11:ec:58:5a:7f:9a:fd:
96:78:e5:42:98:2d:86:51:68:ed:c3:0e:8c:40:5d:
80:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:93:51:AE:5C:2B:43:D9:73:E0:E8:7E:66:5E:08:D0:95:89:1E:B8
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/JZNRrlwrQ9lz4Oh-Zl4I0JWJHrg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.63.220.0/22
Signature Algorithm: sha256WithRSAEncryption
2b:c7:77:e5:4e:9b:12:30:ea:d8:83:17:cf:58:e0:f5:f3:aa:
f3:c2:66:2d:ca:1e:2a:c8:2d:98:59:f7:c0:2a:61:1c:15:90:
e3:12:ff:1f:07:d0:a4:e0:43:59:48:d0:f3:3d:d4:41:1b:77:
28:35:da:54:a1:f3:ee:90:e8:71:12:ca:ba:cb:4b:c3:b6:64:
db:6b:da:83:3b:78:de:53:cc:d1:91:9b:8a:8d:53:e8:75:25:
7e:b8:73:0b:fc:dc:11:4f:75:eb:1d:a3:3f:fb:3f:09:0e:45:
30:e1:97:27:ab:d2:4a:6d:56:30:e2:8a:c0:c5:b0:1f:61:da:
18:8d:9f:ed:20:9b:31:ad:b5:19:65:ed:f1:ec:41:f9:84:11:
de:55:86:e4:5f:ed:b8:46:f0:27:96:f2:62:0c:ab:b3:e5:0b:
b4:d3:ec:26:83:9e:24:a7:8c:b5:05:90:c7:5c:50:35:70:42:
95:49:99:9e:99:5a:94:8c:67:11:05:79:21:9c:82:1e:bc:65:
bd:80:d6:64:5a:a3:04:b2:32:21:ad:26:51:85:19:e3:fe:58:
6e:d5:7a:e9:8f:a1:b4:6b:b0:cb:af:6f:de:ba:9e:0a:4e:ee:
a6:97:1f:8d:0c:ab:67:64:d2:d9:5f:ae:5b:82:85:76:7a:3d:
b8:39:03:5a
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICCQkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMDA5Mjkx
MDAxMjNaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDI1OTM1MUFFNUMyQjQz
RDk3M0UwRTg3RTY2NUUwOEQwOTU4OTFFQjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDd1q0MfFyzEvTbO95aL3LYsjI5FlkTD8Hl58XyNV6KGmhMQ0p1
tXiDmFYhcbmdVm4APkbZXi0f8FRrBPjJwEdCSpTxpIE79B+5LiucrOzTnOJqNUZE
PwHsIURlshlSRBzkb2ha5w4ejEN/S3vAHFcnE0eSSWiJyNMzR3oTOMkxBOtw/XYk
pOk760vYMhRed6jO812kfS/UCo+XBfUhac6hLqx6rz+iirHb3L8o5g5C4TMiInL0
yrpRTlyJ4PJ0i7euwcHAqrUxZYP1Rbyca3UmawB/GFKBt7yVzOIte0FvrdgQYxYl
R9lIEexYWn+a/ZZ45UKYLYZRaO3DDoxAXYBhAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUJZNRrlwrQ9lz4Oh+Zl4I0JWJHrgwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvSlpOUnJsd3JROWx6NE9oLVpsNEkw
SldKSHJnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAtI/3DAN
BgkqhkiG9w0BAQsFAAOCAQEAK8d35U6bEjDq2IMXz1jg9fOq88JmLcoeKsgtmFn3
wCphHBWQ4xL/HwfQpOBDWUjQ8z3UQRt3KDXaVKHz7pDocRLKustLw7Zk22vagzt4
3lPM0ZGbio1T6HUlfrhzC/zcEU916x2jP/s/CQ5FMOGXJ6vSSm1WMOKKwMWwH2Ha
GI2f7SCbMa21GWXt8exB+YQR3lWG5F/tuEbwJ5byYgyrs+ULtNPsJoOeJKeMtQWQ
x1xQNXBClUmZnplalIxnEQV5IZyCHrxlvYDWZFqjBLIyIa0mUYUZ4/5YbtV66Y+h
tGuwy69v3rqeCk7uppcfjQyrZ2TS2V+uW4KFdno9uDkDWg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:00 2024 by rpki-client on console-ams.rpki-client.org