Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/NusYrwEv1iU2jT7BV7J__gmhXy4.roa
File: NusYrwEv1iU2jT7BV7J__gmhXy4.roa (raw, json)
Hash identifier: +kA/knr0Dj+QrF/5YXb6h5BXL0nFkhdcNUnkaq3CVNE=
Subject key identifier: 36:EB:18:AF:01:2F:D6:25:36:8D:3E:C1:57:B2:7F:FE:09:A1:5F:2E
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 12C9
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/NusYrwEv1iU2jT7BV7J__gmhXy4.roa
Signing time: Fri 01 Sep 2023 08:04:59 +0000
ROA not before: Fri 01 Sep 2023 08:04:59 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17709
IP address blocks: 60.244.128.0/17 maxlen: 17
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4809 (0x12c9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:04:59 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=36EB18AF012FD625368D3EC157B27FFE09A15F2E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:bd:ef:97:05:dd:36:66:ff:b7:94:40:9e:f4:
16:04:b1:6e:18:62:6e:eb:0a:3a:8d:39:60:8e:27:
c9:20:8e:6c:86:14:48:e6:12:99:ae:56:45:9b:cd:
04:ca:e6:bc:e6:80:58:6c:08:59:94:50:90:70:13:
58:4b:25:dc:e4:b5:99:cd:83:0d:8b:88:23:6f:fb:
28:a8:4f:89:2d:04:d7:03:84:a3:b5:f8:e6:a2:06:
fc:eb:6e:49:a8:2e:44:b0:cc:45:91:0a:ab:97:60:
0f:1c:af:a3:00:10:b5:8e:d4:a7:d5:8c:0b:c8:c1:
82:a7:01:a0:44:84:f6:d8:d5:f5:43:36:7e:ef:99:
21:62:02:8f:21:50:f1:67:f5:4f:08:48:12:b8:9d:
4f:50:22:ad:38:23:4b:45:00:f2:98:65:21:a4:c4:
ad:29:ef:42:fc:2b:b6:14:35:b3:20:ec:9c:28:08:
25:75:61:bd:aa:8c:27:10:b3:d2:f4:29:d3:c1:d9:
a3:9f:2a:6a:59:43:93:d9:b5:6d:3c:96:2b:e9:80:
87:8c:7b:ba:c5:41:d6:71:ba:ee:cf:e2:21:20:03:
3f:97:97:81:68:af:53:31:3b:db:14:d8:a3:50:af:
b3:de:76:3c:76:fb:e0:46:02:6c:2f:46:14:fc:17:
85:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:EB:18:AF:01:2F:D6:25:36:8D:3E:C1:57:B2:7F:FE:09:A1:5F:2E
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/NusYrwEv1iU2jT7BV7J__gmhXy4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.244.128.0/17
Signature Algorithm: sha256WithRSAEncryption
6d:60:a0:11:df:2d:11:db:5d:41:3f:d0:1e:6c:6d:6b:c1:e7:
26:a3:3a:98:b6:8d:32:2e:b0:2d:f6:2f:e8:3d:62:9d:41:df:
8c:91:c3:e7:cc:50:ca:0d:13:dc:d5:e4:1d:8a:8c:a9:e6:22:
df:3a:ce:7d:18:14:ff:6a:a7:5d:95:5a:86:fc:4f:a6:52:b4:
a9:a3:51:2c:c7:b7:23:88:81:ab:d9:29:7b:50:ed:48:f7:ae:
cf:5d:26:b3:93:36:3e:80:c8:68:9d:95:ed:09:f1:7f:bd:3c:
1d:c9:96:37:75:51:b8:22:21:03:1f:0c:8a:e1:56:8d:4d:8c:
71:60:c5:2e:d6:3e:b6:fa:bf:ca:9a:6e:01:35:66:72:c2:96:
49:f4:74:1a:e3:59:28:f7:03:64:25:c3:fa:6c:bc:e4:32:e3:
cf:81:4f:4d:bd:57:2e:6e:f1:c6:50:de:5d:56:4d:4d:9a:20:
83:b2:12:5d:db:ec:69:93:b6:c9:c0:a4:e9:e3:73:1b:6f:76:
53:3a:d4:3e:82:d0:c6:36:07:f3:52:da:cb:c2:22:33:50:a0:
1e:dc:7d:08:75:e5:bd:00:cf:aa:7a:6c:39:5d:58:a6:e1:85:
74:b8:ea:2d:bb:28:60:f9:cf:82:01:c9:25:3f:31:1e:56:8e:
3b:5b:4a:b2
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICEskwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMzA5MDEw
ODA0NTlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDM2RUIxOEFGMDEyRkQ2
MjUzNjhEM0VDMTU3QjI3RkZFMDlBMTVGMkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC+ve+XBd02Zv+3lECe9BYEsW4YYm7rCjqNOWCOJ8kgjmyGFEjm
EpmuVkWbzQTK5rzmgFhsCFmUUJBwE1hLJdzktZnNgw2LiCNv+yioT4ktBNcDhKO1
+OaiBvzrbkmoLkSwzEWRCquXYA8cr6MAELWO1KfVjAvIwYKnAaBEhPbY1fVDNn7v
mSFiAo8hUPFn9U8ISBK4nU9QIq04I0tFAPKYZSGkxK0p70L8K7YUNbMg7JwoCCV1
Yb2qjCcQs9L0KdPB2aOfKmpZQ5PZtW08livpgIeMe7rFQdZxuu7P4iEgAz+Xl4Fo
r1MxO9sU2KNQr7Pedjx2++BGAmwvRhT8F4UTAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUNusYrwEv1iU2jT7BV7J//gmhXy4wHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvTnVzWXJ3RXYxaVUyalQ3QlY3Sl9f
Z21oWHk0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBzz0gDAN
BgkqhkiG9w0BAQsFAAOCAQEAbWCgEd8tEdtdQT/QHmxta8HnJqM6mLaNMi6wLfYv
6D1inUHfjJHD58xQyg0T3NXkHYqMqeYi3zrOfRgU/2qnXZVahvxPplK0qaNRLMe3
I4iBq9kpe1DtSPeuz10ms5M2PoDIaJ2V7Qnxf708HcmWN3VRuCIhAx8MiuFWjU2M
cWDFLtY+tvq/yppuATVmcsKWSfR0GuNZKPcDZCXD+my85DLjz4FPTb1XLm7xxlDe
XVZNTZogg7ISXdvsaZO2ycCk6eNzG292UzrUPoLQxjYH81Lay8IiM1CgHtx9CHXl
vQDPqnpsOV1YpuGFdLjqLbsoYPnPggHJJT8xHlaOO1tKsg==
-----END CERTIFICATE-----
Generated at Mon Jan 15 22:50:43 2024 by rpki-client on console-fra.rpki-client.org