Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/Mg9DD5Rvd8XiUBGra4T-UZQz8UE.roa
File: Mg9DD5Rvd8XiUBGra4T-UZQz8UE.roa (raw, json)
Hash identifier: R7fRgqF3gygMLMeRwlCzG+Qf+fVpAAcPxzJELoG41h4=
Subject key identifier: 32:0F:43:0F:94:6F:77:C5:E2:50:11:AB:6B:84:FE:51:94:33:F1:41
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1280
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/Mg9DD5Rvd8XiUBGra4T-UZQz8UE.roa
Signing time: Fri 01 Sep 2023 08:04:33 +0000
ROA not before: Fri 01 Sep 2023 08:04:33 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24154
IP address blocks: 210.200.85.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4736 (0x1280)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:04:33 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=320F430F946F77C5E25011AB6B84FE519433F141
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:24:82:a0:5c:db:b4:a1:d0:4d:e8:31:0a:a3:
1a:45:a2:f3:3e:58:cb:eb:52:c5:cd:f9:4e:5b:41:
c9:9c:a2:2a:d2:a6:b0:68:2c:9d:8b:ac:f0:9e:0d:
46:93:03:da:df:d5:28:49:62:98:a6:03:2e:ae:c4:
1f:7a:ab:a1:dd:69:52:12:e6:e7:ef:98:f8:ff:17:
fd:d4:34:13:82:c1:05:74:53:61:a3:ea:7f:c8:14:
4e:d0:a4:92:ed:12:8b:7c:b0:65:ea:9b:ec:78:5c:
6a:46:a1:eb:44:53:f2:1a:8a:ba:b3:4b:56:73:e9:
12:eb:c3:49:f8:f8:10:ba:7e:c0:b7:7a:b6:40:b1:
7f:a6:8e:27:aa:51:45:bb:53:7e:00:6c:78:bd:f7:
83:69:8a:ba:bf:1f:b9:a0:2d:1b:83:0e:8d:25:3d:
3b:12:9c:2c:53:b6:57:94:9f:40:28:c7:ac:fd:21:
fc:e8:e6:2b:98:6b:5c:79:5b:2b:19:ce:b4:64:94:
9b:3e:ea:43:cd:20:13:9f:78:f8:ee:1b:d9:63:db:
20:0d:7c:20:0d:3a:d7:ac:1f:e9:97:53:81:7f:63:
f4:52:15:e0:14:ad:eb:e8:de:b9:2c:5c:03:43:9f:
95:db:8c:2f:ec:cc:94:81:a0:5a:88:50:49:eb:43:
d0:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:0F:43:0F:94:6F:77:C5:E2:50:11:AB:6B:84:FE:51:94:33:F1:41
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/Mg9DD5Rvd8XiUBGra4T-UZQz8UE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.200.85.0/24
Signature Algorithm: sha256WithRSAEncryption
22:1c:ea:99:1e:20:03:e6:6d:3e:ab:7b:a1:d1:36:4e:bd:a5:
95:06:26:a8:41:7b:c9:33:a7:33:36:74:4f:2e:78:67:d7:33:
09:e9:99:6a:41:56:26:8d:07:1f:ce:a0:55:41:39:89:80:d5:
e4:14:ea:cf:ad:9b:d8:42:90:98:d9:87:ac:90:e2:a0:2d:2d:
d3:a2:1e:fb:af:75:58:24:69:a4:d3:5a:16:e3:a3:9d:d6:d9:
be:92:4b:56:2e:94:46:b3:53:73:e1:70:01:8b:5a:12:fc:ff:
d5:2f:e7:f3:03:bc:bb:12:67:b8:f2:a3:5b:d9:b7:b6:84:d1:
58:2f:de:c7:7b:49:38:5a:ec:7c:f9:2b:1b:b6:5d:08:3b:b9:
59:02:92:03:ea:72:60:07:2f:5c:c7:0b:9e:55:77:71:89:21:
32:34:78:f9:6c:9b:0f:35:48:3f:65:fe:e6:f2:a4:a7:93:0f:
21:99:10:7b:21:11:63:dc:65:2a:4c:a1:c7:40:c3:57:3d:17:
fe:e1:16:eb:6a:34:db:3a:83:3f:f1:a0:0a:1d:07:1a:16:f5:
62:1d:5d:88:28:0e:55:5e:49:48:d5:b8:88:0d:b7:1c:f8:2a:
4f:7b:a4:3b:a1:d2:e3:4f:2e:cd:b8:db:ff:76:6c:e1:a7:89:
6a:a9:ea:12
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICEoAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMzA5MDEw
ODA0MzNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDMyMEY0MzBGOTQ2Rjc3
QzVFMjUwMTFBQjZCODRGRTUxOTQzM0YxNDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDEJIKgXNu0odBN6DEKoxpFovM+WMvrUsXN+U5bQcmcoirSprBo
LJ2LrPCeDUaTA9rf1ShJYpimAy6uxB96q6HdaVIS5ufvmPj/F/3UNBOCwQV0U2Gj
6n/IFE7QpJLtEot8sGXqm+x4XGpGoetEU/IairqzS1Zz6RLrw0n4+BC6fsC3erZA
sX+mjieqUUW7U34AbHi994Npirq/H7mgLRuDDo0lPTsSnCxTtleUn0Aox6z9Ifzo
5iuYa1x5WysZzrRklJs+6kPNIBOfePjuG9lj2yANfCANOtesH+mXU4F/Y/RSFeAU
revo3rksXANDn5XbjC/szJSBoFqIUEnrQ9D5AgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUMg9DD5Rvd8XiUBGra4T+UZQz8UEwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvTWc5REQ1UnZkOFhpVUJHcmE0VC1V
WlF6OFVFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANLIVTAN
BgkqhkiG9w0BAQsFAAOCAQEAIhzqmR4gA+ZtPqt7odE2Tr2llQYmqEF7yTOnMzZ0
Ty54Z9czCemZakFWJo0HH86gVUE5iYDV5BTqz62b2EKQmNmHrJDioC0t06Ie+691
WCRppNNaFuOjndbZvpJLVi6URrNTc+FwAYtaEvz/1S/n8wO8uxJnuPKjW9m3toTR
WC/ex3tJOFrsfPkrG7ZdCDu5WQKSA+pyYAcvXMcLnlV3cYkhMjR4+WybDzVIP2X+
5vKkp5MPIZkQeyERY9xlKkyhx0DDVz0X/uEW62o02zqDP/GgCh0HGhb1Yh1diCgO
VV5JSNW4iA23HPgqT3ukO6HS408uzbjb/3Zs4aeJaqnqEg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:00 2024 by rpki-client on console-ams.rpki-client.org