Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/Jn9OIfjm-AaVMImaBAqDPl1GNbE.roa
File: Jn9OIfjm-AaVMImaBAqDPl1GNbE.roa (raw, json)
Hash identifier: A0GYnDdey1MZGXi/sts8CA/tlOGug2DuZEh3prtzpMg=
Subject key identifier: 26:7F:4E:21:F8:E6:F8:06:95:30:89:9A:04:0A:83:3E:5D:46:35:B1
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1268
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/Jn9OIfjm-AaVMImaBAqDPl1GNbE.roa
Signing time: Fri 01 Sep 2023 08:04:25 +0000
ROA not before: Fri 01 Sep 2023 08:04:25 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 7482
IP address blocks: 210.200.64.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4712 (0x1268)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:04:25 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=267F4E21F8E6F8069530899A040A833E5D4635B1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:48:34:6c:5c:82:29:7d:f7:06:e0:50:77:32:
ee:76:80:2b:4f:cf:d8:58:e2:aa:57:b1:8b:67:80:
30:0c:c1:48:8f:a1:2b:6e:00:d6:21:7c:05:59:98:
c6:5e:d6:1c:cc:e8:7f:da:7e:66:55:25:87:80:cf:
f1:6b:87:16:72:94:ec:fb:53:26:f2:ce:ad:d2:02:
de:02:71:6c:7e:5d:31:34:42:5c:d4:21:76:b0:23:
cf:ec:b8:31:9e:b3:b2:8a:8d:63:2e:68:55:bf:9d:
b2:d2:8f:82:1c:51:58:77:11:17:33:51:f0:91:81:
89:9c:ed:2a:2d:a0:68:10:32:58:46:a8:d8:b3:33:
5c:16:ce:7c:b6:de:a7:31:2f:ea:46:79:ff:10:04:
63:9e:ad:ea:b3:19:ca:95:a1:fc:66:d8:94:c7:8e:
aa:39:65:52:78:53:cb:ab:2c:73:6a:89:33:15:1d:
b7:82:3b:48:97:2a:f8:f8:be:dd:18:42:f4:45:16:
f4:c1:34:d3:16:f6:21:8f:43:b0:e9:79:cd:c3:97:
15:29:c3:4c:ed:92:47:ea:65:c8:0b:c7:9c:d6:0e:
6f:d6:32:56:92:87:e2:02:e6:f4:7c:5b:c6:96:dd:
fb:62:0f:b3:e1:78:a1:23:25:95:0d:e4:d6:a5:43:
b1:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:7F:4E:21:F8:E6:F8:06:95:30:89:9A:04:0A:83:3E:5D:46:35:B1
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/Jn9OIfjm-AaVMImaBAqDPl1GNbE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.200.64.0/18
Signature Algorithm: sha256WithRSAEncryption
9b:06:b8:69:99:c1:86:9c:bd:74:10:59:b1:42:a6:e1:fa:28:
c2:16:4c:e2:e8:2a:33:21:95:cb:0f:51:91:4e:4f:04:16:89:
e0:69:2f:b9:f0:82:a6:89:17:cf:ad:90:3e:18:56:41:b5:ea:
94:38:8c:fa:6a:c4:24:29:13:61:90:36:18:f4:2a:7e:d9:b9:
7d:7e:4c:bb:b3:46:8d:cf:31:7d:94:72:11:9b:78:50:eb:71:
3f:9c:28:99:39:70:85:7b:82:2f:fa:80:bf:3c:99:77:da:88:
1e:3f:b0:b4:e1:0d:3a:66:4b:de:35:96:13:df:0f:c7:aa:94:
98:33:02:c9:b3:eb:02:22:23:db:2b:8f:44:45:48:59:2f:d4:
7a:ed:77:45:ee:5a:fc:62:d2:b6:8f:0a:a6:51:97:09:c2:ea:
a7:43:b7:7c:da:e3:26:3e:71:36:79:db:b0:10:ca:40:cf:c5:
18:57:fa:c1:94:84:0e:b6:eb:bf:69:4f:90:ff:89:10:9c:4c:
80:50:82:85:09:15:69:ad:3d:fe:a8:36:58:f2:24:ad:45:13:
40:1c:ba:11:49:aa:ef:00:13:6d:3e:f4:b5:4a:f2:80:5e:e7:
b6:3a:39:f7:c2:83:b2:15:ce:38:bf:be:4c:ed:1f:bf:77:67:
11:96:fd:0e
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICEmgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMzA5MDEw
ODA0MjVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDI2N0Y0RTIxRjhFNkY4
MDY5NTMwODk5QTA0MEE4MzNFNUQ0NjM1QjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDUSDRsXIIpffcG4FB3Mu52gCtPz9hY4qpXsYtngDAMwUiPoStu
ANYhfAVZmMZe1hzM6H/afmZVJYeAz/FrhxZylOz7Uybyzq3SAt4CcWx+XTE0QlzU
IXawI8/suDGes7KKjWMuaFW/nbLSj4IcUVh3ERczUfCRgYmc7SotoGgQMlhGqNiz
M1wWzny23qcxL+pGef8QBGOereqzGcqVofxm2JTHjqo5ZVJ4U8urLHNqiTMVHbeC
O0iXKvj4vt0YQvRFFvTBNNMW9iGPQ7Dpec3DlxUpw0ztkkfqZcgLx5zWDm/WMlaS
h+IC5vR8W8aW3ftiD7PheKEjJZUN5NalQ7EZAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUJn9OIfjm+AaVMImaBAqDPl1GNbEwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvSm45T0lmam0tQWFWTUltYUJBcURQ
bDFHTmJFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBtLIQDAN
BgkqhkiG9w0BAQsFAAOCAQEAmwa4aZnBhpy9dBBZsUKm4foowhZM4ugqMyGVyw9R
kU5PBBaJ4GkvufCCpokXz62QPhhWQbXqlDiM+mrEJCkTYZA2GPQqftm5fX5Mu7NG
jc8xfZRyEZt4UOtxP5womTlwhXuCL/qAvzyZd9qIHj+wtOENOmZL3jWWE98Px6qU
mDMCybPrAiIj2yuPREVIWS/Ueu13Re5a/GLSto8KplGXCcLqp0O3fNrjJj5xNnnb
sBDKQM/FGFf6wZSEDrbrv2lPkP+JEJxMgFCChQkVaa09/qg2WPIkrUUTQBy6EUmq
7wATbT70tUrygF7ntjo598KDshXOOL++TO0fv3dnEZb9Dg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org