Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/M3LBH02ns7MhA9In1_LXMiMk_T8.roa
File: M3LBH02ns7MhA9In1_LXMiMk_T8.roa (raw, json)
Hash identifier: mmPIaNSDW74H4KUCDwE5moN5i7lQdq7Mg+npzNP8ujQ=
Subject key identifier: 33:72:C1:1F:4D:A7:B3:B3:21:03:D2:27:D7:F2:D7:32:23:24:FD:3F
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 107E
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/M3LBH02ns7MhA9In1_LXMiMk_T8.roa
Signing time: Tue 16 May 2023 08:36:16 +0000
ROA not before: Tue 16 May 2023 08:36:16 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18419
IP address blocks: 124.218.192.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4222 (0x107e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:16 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=3372C11F4DA7B3B32103D227D7F2D7322324FD3F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:fa:24:f3:80:56:d8:7e:5a:a7:1f:7e:9e:d7:
13:e3:05:2d:9a:f1:57:5c:8b:bc:d6:23:30:71:ef:
ec:a3:4e:59:7d:6a:ce:67:1f:c2:ff:ac:64:f0:35:
bf:e4:d0:6d:d1:fa:ae:5d:35:3e:9b:38:53:4d:27:
5c:d3:26:2c:e5:90:0f:f4:b3:ae:8f:54:28:25:4a:
91:ca:6e:c8:46:fa:ae:d1:e7:69:9c:10:c2:c8:2f:
65:83:07:f1:2b:95:ea:c5:42:1e:16:44:5d:00:9b:
36:b5:29:d9:12:7c:90:ad:7f:99:45:f0:8a:10:56:
e6:f4:31:57:cd:f5:e2:bb:aa:e4:41:f5:39:96:c2:
45:d2:e5:9b:88:a8:21:ca:8d:e0:63:ca:86:29:b8:
31:d8:62:b3:4c:a6:4d:f4:e6:ac:24:f6:a4:16:da:
41:99:58:f5:fc:f5:92:cb:00:98:d5:2c:01:95:22:
94:66:b8:e5:2e:0f:be:e7:cf:c2:c0:dd:c9:9b:0e:
41:0b:63:3f:8a:60:ab:27:89:4b:25:6c:1d:bc:94:
51:5e:8c:b4:8a:5f:bd:6c:d6:98:99:41:63:03:8b:
4b:26:6c:54:77:f0:d2:97:0f:2d:f0:f5:2e:73:10:
2e:7d:5a:db:52:e9:00:09:ca:10:62:a9:0e:a8:98:
70:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:72:C1:1F:4D:A7:B3:B3:21:03:D2:27:D7:F2:D7:32:23:24:FD:3F
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/M3LBH02ns7MhA9In1_LXMiMk_T8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.218.192.0/19
Signature Algorithm: sha256WithRSAEncryption
be:93:da:17:6c:42:67:28:e2:9a:ae:b0:dc:ab:82:eb:7e:a3:
2d:f8:99:1d:de:ec:0d:31:08:2d:1f:4f:74:76:81:35:50:b3:
ea:a6:f4:24:26:f6:f6:d3:42:a1:bc:ce:c2:5f:12:a5:fc:cf:
2f:3c:c7:33:d3:15:92:f0:19:c2:26:eb:74:e5:7f:09:da:1c:
ec:36:fd:c9:79:ed:87:94:7e:73:c6:f3:af:f5:2d:fe:09:cb:
ce:76:16:90:97:32:b4:b6:c4:b9:ea:12:b7:02:fb:a6:fc:e1:
b4:d2:2c:9d:86:fd:e6:4e:f9:62:2d:ef:7c:78:86:4a:cd:a7:
e5:7d:de:e1:35:96:5c:ea:0d:cc:9c:b5:b4:10:75:85:73:0c:
5d:fc:dc:d7:1f:ed:0e:0f:3e:e1:50:6b:8b:45:ef:43:48:e1:
e2:1f:79:dd:83:56:fd:9b:c2:37:51:df:eb:1b:bb:5f:65:43:
8b:21:e3:c0:b8:c8:8d:e5:f1:58:d1:44:06:a8:a8:56:6d:9f:
e0:2d:db:57:75:c5:ef:ef:5f:bd:75:6e:7e:4b:df:69:ee:29:
7f:73:77:d1:11:4e:b2:d9:65:b5:9d:33:10:f1:01:55:89:c2:
99:80:92:b8:fe:70:84:25:9f:49:f7:bc:bb:15:e2:8e:d8:86:
5d:76:44:86
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICEH4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMzA1MTYw
ODM2MTZaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDMzNzJDMTFGNERBN0Iz
QjMyMTAzRDIyN0Q3RjJENzMyMjMyNEZEM0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDF+iTzgFbYflqnH36e1xPjBS2a8Vdci7zWIzBx7+yjTll9as5n
H8L/rGTwNb/k0G3R+q5dNT6bOFNNJ1zTJizlkA/0s66PVCglSpHKbshG+q7R52mc
EMLIL2WDB/ErlerFQh4WRF0Amza1KdkSfJCtf5lF8IoQVub0MVfN9eK7quRB9TmW
wkXS5ZuIqCHKjeBjyoYpuDHYYrNMpk305qwk9qQW2kGZWPX89ZLLAJjVLAGVIpRm
uOUuD77nz8LA3cmbDkELYz+KYKsniUslbB28lFFejLSKX71s1piZQWMDi0smbFR3
8NKXDy3w9S5zEC59WttS6QAJyhBiqQ6omHDjAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUM3LBH02ns7MhA9In1/LXMiMk/T8wHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvTTNMQkgwMm5zN01oQTlJbjFfTFhN
aU1rX1Q4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBXzawDAN
BgkqhkiG9w0BAQsFAAOCAQEAvpPaF2xCZyjimq6w3KuC636jLfiZHd7sDTEILR9P
dHaBNVCz6qb0JCb29tNCobzOwl8SpfzPLzzHM9MVkvAZwibrdOV/Cdoc7Db9yXnt
h5R+c8bzr/Ut/gnLznYWkJcytLbEueoStwL7pvzhtNIsnYb95k75Yi3vfHiGSs2n
5X3e4TWWXOoNzJy1tBB1hXMMXfzc1x/tDg8+4VBri0XvQ0jh4h953YNW/ZvCN1Hf
6xu7X2VDiyHjwLjIjeXxWNFEBqioVm2f4C3bV3XF7+9fvXVufkvfae4pf3N30RFO
stlltZ0zEPEBVYnCmYCSuP5whCWfSfe8uxXijtiGXXZEhg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org