Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/OwKbFT_APxZ9tZyA7Cg1k1s0ldc.roa
File: OwKbFT_APxZ9tZyA7Cg1k1s0ldc.roa (raw, json)
Hash identifier: fPHH64EcKlnrrYfX4qprYW4KTCke04QmbzOx56J8vXU=
Subject key identifier: 3B:02:9B:15:3F:C0:3F:16:7D:B5:9C:80:EC:28:35:93:5B:34:95:D7
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0924
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/OwKbFT_APxZ9tZyA7Cg1k1s0ldc.roa
Signing time: Tue 29 Sep 2020 10:01:30 +0000
ROA not before: Tue 29 Sep 2020 10:01:30 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131597
IP address blocks: 218.35.32.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2340 (0x924)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:01:30 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=3B029B153FC03F167DB59C80EC2835935B3495D7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:87:d3:fe:31:82:2f:1f:a1:11:ab:f0:41:78:
ad:7a:9a:1b:89:20:77:d6:d6:ef:6e:56:27:7c:89:
9d:0a:67:88:f4:9a:d4:d9:dc:ae:c4:53:d2:1f:ac:
8a:ff:19:c5:bc:b7:f2:c9:7f:f7:5c:54:59:13:fe:
96:82:56:e9:bf:f5:92:70:fc:65:f2:a0:e2:3c:12:
46:0a:60:19:3e:17:c2:44:1a:78:9d:7b:31:65:21:
fa:48:49:83:16:0c:a5:58:f8:10:19:f1:5c:7b:99:
15:49:b8:e9:73:c6:84:74:29:76:80:22:0d:80:8a:
f7:ec:fc:27:4a:77:cf:ee:49:95:77:6d:1e:4e:9d:
76:3d:a5:7b:ea:0f:97:62:16:34:90:14:0d:56:97:
e3:52:3d:5f:4b:e2:43:f0:29:0e:2d:03:02:8c:37:
7d:29:7f:ba:f4:23:45:47:18:76:83:9b:a2:38:1d:
13:30:1b:18:13:63:f8:1a:da:68:5a:0e:f3:d4:f7:
b5:22:e1:fc:7d:98:42:60:f4:74:c3:20:ae:81:ee:
e9:6f:6d:8b:a8:be:70:70:07:2e:fe:5a:ab:e6:ab:
72:79:f9:a2:61:fe:bd:5b:8d:2d:ff:bb:d8:00:54:
19:df:c0:87:d9:25:f5:69:d9:c3:f3:d1:a6:e5:d2:
00:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:02:9B:15:3F:C0:3F:16:7D:B5:9C:80:EC:28:35:93:5B:34:95:D7
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/OwKbFT_APxZ9tZyA7Cg1k1s0ldc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.35.32.0/19
Signature Algorithm: sha256WithRSAEncryption
9a:b3:79:97:0d:b7:84:a8:db:c9:22:88:6e:70:1e:7b:1e:9d:
31:41:ed:46:65:25:fd:7d:cf:ea:fa:9a:15:fa:10:77:47:24:
be:93:07:3a:96:34:97:5b:8c:e7:c9:6a:07:af:21:1c:ed:aa:
99:71:b8:48:22:29:1c:73:26:3c:06:f4:da:89:dc:98:99:75:
02:b5:1c:e0:af:55:39:1a:cb:06:d9:6a:d3:f8:8b:8f:66:b2:
17:ec:93:88:fe:86:ad:5f:83:ee:d1:d9:f8:04:cd:51:b4:3b:
cd:f3:9d:46:3d:c2:bd:30:ca:ea:4a:b8:ed:7c:22:c6:25:b2:
07:58:5e:0f:c0:d5:c8:25:ad:20:a5:b1:6e:5d:0f:91:25:75:
5a:93:b8:87:6d:c6:85:bb:e2:bd:5d:93:ce:b8:18:76:29:35:
d4:c9:4c:51:9e:82:0a:fb:ad:98:b0:1d:36:e5:e5:24:87:c0:
41:4f:13:4e:95:14:4b:e5:bf:e9:45:eb:16:37:50:ff:38:78:
0e:73:18:9a:23:37:58:3f:89:27:12:13:d1:cc:47:f5:c8:55:
80:66:7f:3c:de:46:48:57:1e:7f:97:2d:23:57:98:c0:93:51:
08:38:7a:ff:4e:0f:6b:83:11:5f:70:2b:a8:a1:e7:0d:90:6f:
a5:e9:31:d7
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICCSQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMDA5Mjkx
MDAxMzBaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDNCMDI5QjE1M0ZDMDNG
MTY3REI1OUM4MEVDMjgzNTkzNUIzNDk1RDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC3h9P+MYIvH6ERq/BBeK16mhuJIHfW1u9uVid8iZ0KZ4j0mtTZ
3K7EU9IfrIr/GcW8t/LJf/dcVFkT/paCVum/9ZJw/GXyoOI8EkYKYBk+F8JEGnid
ezFlIfpISYMWDKVY+BAZ8Vx7mRVJuOlzxoR0KXaAIg2Aivfs/CdKd8/uSZV3bR5O
nXY9pXvqD5diFjSQFA1Wl+NSPV9L4kPwKQ4tAwKMN30pf7r0I0VHGHaDm6I4HRMw
GxgTY/ga2mhaDvPU97Ui4fx9mEJg9HTDIK6B7ulvbYuovnBwBy7+Wqvmq3J5+aJh
/r1bjS3/u9gAVBnfwIfZJfVp2cPz0abl0gD3AgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUOwKbFT/APxZ9tZyA7Cg1k1s0ldcwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvT3dLYkZUX0FQeFo5dFp5QTdDZzFr
MXMwbGRjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBdojIDAN
BgkqhkiG9w0BAQsFAAOCAQEAmrN5lw23hKjbySKIbnAeex6dMUHtRmUl/X3P6vqa
FfoQd0ckvpMHOpY0l1uM58lqB68hHO2qmXG4SCIpHHMmPAb02oncmJl1ArUc4K9V
ORrLBtlq0/iLj2ayF+yTiP6GrV+D7tHZ+ATNUbQ7zfOdRj3CvTDK6kq47XwixiWy
B1heD8DVyCWtIKWxbl0PkSV1WpO4h23GhbvivV2TzrgYdik11MlMUZ6CCvutmLAd
NuXlJIfAQU8TTpUUS+W/6UXrFjdQ/zh4DnMYmiM3WD+JJxIT0cxH9chVgGZ/PN5G
SFcef5ctI1eYwJNRCDh6/04Pa4MRX3ArqKHnDZBvpekx1w==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org