Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/KzdJ8QQCBiZ2tlkID1e7SFOXeTQ.roa
File: KzdJ8QQCBiZ2tlkID1e7SFOXeTQ.roa (raw, json)
Hash identifier: XzoUk9L9XWMkNBd5sWFk/X7vX36NKa1Z0H9rX2iWs5M=
Subject key identifier: 2B:37:49:F1:04:02:06:26:76:B6:59:08:0F:57:BB:48:53:97:79:34
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0B8B
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/KzdJ8QQCBiZ2tlkID1e7SFOXeTQ.roa
Signing time: Sun 07 Feb 2021 11:33:09 +0000
ROA not before: Sun 07 Feb 2021 11:33:09 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 7482
IP address blocks: 60.244.128.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2955 (0xb8b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 11:33:09 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2B3749F10402062676B659080F57BB4853977934
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:5a:79:4e:ed:da:78:33:74:f5:64:55:e7:5d:
bc:a0:c8:73:5e:73:7a:02:fd:78:e9:87:e2:47:44:
ea:24:09:ca:01:b2:1b:ce:3c:c0:09:39:5a:9b:57:
18:25:3c:ae:57:97:2c:2c:17:32:bc:37:3d:1f:88:
a8:88:35:c9:fc:1c:40:6b:30:41:24:d6:19:e4:03:
1d:a1:7d:67:6d:27:15:5f:43:f6:24:cf:9e:97:fa:
62:fd:14:0a:16:40:db:69:dc:69:b3:66:b1:cf:e5:
19:4c:74:af:22:df:03:72:40:b0:29:df:c9:78:28:
b4:1f:36:99:a2:e4:25:c8:56:09:59:1b:64:16:11:
7c:0a:e1:8f:df:ab:ec:c6:65:bb:12:fb:64:88:94:
e6:b0:51:d2:e7:c0:63:90:68:9a:36:25:69:6b:d4:
83:a0:d7:13:97:13:0b:55:17:d4:32:b3:e1:fb:3d:
b5:4d:c8:46:5c:59:aa:62:89:ae:2a:1e:94:a9:f9:
04:32:41:5e:d3:68:d6:fb:53:04:df:1c:7d:c2:3b:
8e:65:1d:e5:b4:ab:a9:33:59:05:f2:64:07:47:98:
20:ed:9e:df:3b:67:fe:4a:22:fe:63:79:70:31:5c:
d9:8c:a8:2f:e3:4b:84:82:d7:74:79:75:05:e6:31:
5d:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:37:49:F1:04:02:06:26:76:B6:59:08:0F:57:BB:48:53:97:79:34
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/KzdJ8QQCBiZ2tlkID1e7SFOXeTQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.244.128.0/17
Signature Algorithm: sha256WithRSAEncryption
11:96:6b:65:d6:26:5f:c4:af:cf:67:5b:83:ea:cc:12:fc:a7:
2a:6a:8e:d5:16:ad:cb:6c:9d:0c:58:91:1d:0e:d0:e8:da:59:
3b:03:25:cd:1d:60:db:74:9c:d3:fc:24:19:ba:dd:35:a3:42:
c3:57:19:7e:24:5a:4f:d2:a1:c4:84:e0:ce:b1:b3:2d:1d:e6:
3b:cb:7b:dd:4d:53:ee:da:f9:66:1e:6f:10:5f:1e:49:d3:89:
46:a9:56:96:27:2c:1a:58:f5:7a:f2:7e:8e:a3:36:79:c8:be:
a8:dd:42:f1:22:05:8a:4c:7b:0f:55:19:6e:e9:c1:e7:1b:26:
ee:be:5b:df:53:56:1d:e0:01:23:58:f0:a0:24:88:bd:88:fc:
67:40:6a:f9:a4:c7:20:c6:18:bf:34:9e:78:c0:67:62:2b:5f:
f5:70:32:2c:46:4d:81:94:7b:8c:b2:9e:d7:3c:dd:ec:0a:1f:
6a:ff:fb:f4:b8:79:b7:41:a2:50:85:09:ac:ac:41:bd:5f:46:
64:1d:fb:15:94:58:6f:04:25:1d:94:97:2f:2c:eb:6e:b3:ba:
b1:8f:9a:5a:4b:7f:2f:17:7c:65:45:10:5c:d1:e6:3f:1d:b9:
da:26:8a:79:b7:08:19:73:ba:1b:00:e5:f7:49:b6:93:29:fa:
66:ef:92:f6
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICC4swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMTAyMDcx
MTMzMDlaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDJCMzc0OUYxMDQwMjA2
MjY3NkI2NTkwODBGNTdCQjQ4NTM5Nzc5MzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDZWnlO7dp4M3T1ZFXnXbygyHNec3oC/Xjph+JHROokCcoBshvO
PMAJOVqbVxglPK5XlywsFzK8Nz0fiKiINcn8HEBrMEEk1hnkAx2hfWdtJxVfQ/Yk
z56X+mL9FAoWQNtp3GmzZrHP5RlMdK8i3wNyQLAp38l4KLQfNpmi5CXIVglZG2QW
EXwK4Y/fq+zGZbsS+2SIlOawUdLnwGOQaJo2JWlr1IOg1xOXEwtVF9Qys+H7PbVN
yEZcWapiia4qHpSp+QQyQV7TaNb7UwTfHH3CO45lHeW0q6kzWQXyZAdHmCDtnt87
Z/5KIv5jeXAxXNmMqC/jS4SC13R5dQXmMV03AgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUKzdJ8QQCBiZ2tlkID1e7SFOXeTQwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvS3pkSjhRUUNCaVoydGxrSUQxZTdT
Rk9YZVRRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBzz0gDAN
BgkqhkiG9w0BAQsFAAOCAQEAEZZrZdYmX8Svz2dbg+rMEvynKmqO1Raty2ydDFiR
HQ7Q6NpZOwMlzR1g23Sc0/wkGbrdNaNCw1cZfiRaT9KhxITgzrGzLR3mO8t73U1T
7tr5Zh5vEF8eSdOJRqlWlicsGlj1evJ+jqM2eci+qN1C8SIFikx7D1UZbunB5xsm
7r5b31NWHeABI1jwoCSIvYj8Z0Bq+aTHIMYYvzSeeMBnYitf9XAyLEZNgZR7jLKe
1zzd7Aofav/79Lh5t0GiUIUJrKxBvV9GZB37FZRYbwQlHZSXLyzrbrO6sY+aWkt/
Lxd8ZUUQXNHmPx252iaKebcIGXO6GwDl90m2kyn6Zu+S9g==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org