Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/PG2cxDSKSIU505xmQT1Sj62oqiE.roa
File: PG2cxDSKSIU505xmQT1Sj62oqiE.roa (raw, json)
Hash identifier: XK1QYMDhYpURw9nW7oVb2tEkpy2mR4cFIVeKOEC9ypM=
Subject key identifier: 3C:6D:9C:C4:34:8A:48:85:39:D3:9C:66:41:3D:52:8F:AD:A8:AA:21
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0943
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/PG2cxDSKSIU505xmQT1Sj62oqiE.roa
Signing time: Tue 29 Sep 2020 10:01:39 +0000
ROA not before: Tue 29 Sep 2020 10:01:39 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9311
IP address blocks: 210.201.60.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2371 (0x943)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:01:39 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=3C6D9CC4348A488539D39C66413D528FADA8AA21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:88:5a:c5:16:24:1f:b2:5c:bb:d3:f5:51:58:
11:54:89:a0:a7:84:fc:c7:b8:97:b3:72:13:9a:10:
51:d9:84:8a:c2:97:ab:b4:f6:29:03:72:4f:82:06:
fc:b5:e3:af:d5:ba:5a:b7:c3:35:66:36:18:8a:e2:
dd:e1:5f:3f:d6:39:c5:a6:18:87:a1:1d:20:91:ee:
6b:0b:5c:36:92:ae:8e:30:74:a1:73:d0:b8:10:3b:
0a:50:7c:9c:c7:aa:99:b2:f1:6b:11:bf:52:57:1d:
b3:a9:22:a9:34:b0:fe:16:e0:43:95:56:bd:d0:22:
93:6e:8e:54:eb:f7:6d:13:6c:02:96:55:98:99:e8:
f6:17:4e:0a:96:be:12:60:27:cc:04:6a:e2:68:34:
6f:3f:3c:84:20:f5:cf:6f:60:ec:7d:a7:0d:df:36:
cd:48:58:27:86:d8:35:26:e3:fa:87:a4:26:7b:95:
c1:76:de:98:a9:f8:cf:5c:2d:51:cd:c9:91:24:9d:
60:f1:52:cb:49:da:1b:01:15:d4:a9:90:29:98:68:
75:f5:53:b8:64:12:4a:21:87:ea:11:2a:99:9e:23:
05:b3:c3:b8:3a:2a:76:30:e7:71:9f:47:e8:64:66:
9d:68:bc:f5:74:fc:87:b7:c3:1b:b6:1a:3a:25:64:
92:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:6D:9C:C4:34:8A:48:85:39:D3:9C:66:41:3D:52:8F:AD:A8:AA:21
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/PG2cxDSKSIU505xmQT1Sj62oqiE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.201.60.0/23
Signature Algorithm: sha256WithRSAEncryption
00:60:43:84:a8:44:37:c3:09:f9:a9:09:d0:5a:51:06:d7:a1:
a1:8f:e8:dc:b5:07:22:e1:4f:9d:58:1b:47:72:23:e0:de:f7:
17:25:a9:77:71:03:14:a7:b3:96:f4:11:69:2e:07:fb:ca:ea:
53:bf:87:e1:aa:99:1c:4c:ad:7a:25:80:6f:2e:85:7b:e7:79:
39:26:e8:25:16:0c:25:ae:3e:6e:a9:9d:9a:e4:d4:8e:51:d2:
a9:ad:7f:58:3d:c5:6e:93:7c:a6:5a:5f:0c:b5:0d:8e:42:83:
d6:9a:cf:6d:b1:7f:3e:46:49:4e:b4:ea:6f:a7:47:39:f2:12:
0b:1f:5f:9b:b4:a4:03:51:ba:d7:32:8a:ab:b7:4d:d2:79:c7:
a9:de:f4:55:4d:ee:1e:b5:0a:11:4a:2e:b1:2f:49:50:63:c7:
e8:03:d4:d4:5a:8c:13:98:01:b0:ba:ae:08:ac:c7:ad:56:26:
85:d7:6a:18:0a:7c:75:f0:41:40:f3:95:ba:17:b5:66:1a:51:
61:6e:da:be:05:af:f9:f3:57:b5:df:17:f4:20:dc:24:da:a2:
c2:9b:85:b8:c8:18:86:7a:3e:f9:25:da:1e:ed:55:cd:ed:1f:
e6:7f:91:01:49:1a:5a:1f:f5:f8:4a:93:69:0c:ba:ec:1c:c8:
b2:b2:c6:c4
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICCUMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMDA5Mjkx
MDAxMzlaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDNDNkQ5Q0M0MzQ4QTQ4
ODUzOUQzOUM2NjQxM0Q1MjhGQURBOEFBMjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDviFrFFiQfsly70/VRWBFUiaCnhPzHuJezchOaEFHZhIrCl6u0
9ikDck+CBvy146/Vulq3wzVmNhiK4t3hXz/WOcWmGIehHSCR7msLXDaSro4wdKFz
0LgQOwpQfJzHqpmy8WsRv1JXHbOpIqk0sP4W4EOVVr3QIpNujlTr920TbAKWVZiZ
6PYXTgqWvhJgJ8wEauJoNG8/PIQg9c9vYOx9pw3fNs1IWCeG2DUm4/qHpCZ7lcF2
3pip+M9cLVHNyZEknWDxUstJ2hsBFdSpkCmYaHX1U7hkEkohh+oRKpmeIwWzw7g6
KnYw53GfR+hkZp1ovPV0/Ie3wxu2GjolZJKlAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUPG2cxDSKSIU505xmQT1Sj62oqiEwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvUEcyY3hEU0tTSVU1MDV4bVFUMVNq
NjJvcWlFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAdLJPDAN
BgkqhkiG9w0BAQsFAAOCAQEAAGBDhKhEN8MJ+akJ0FpRBtehoY/o3LUHIuFPnVgb
R3Ij4N73FyWpd3EDFKezlvQRaS4H+8rqU7+H4aqZHEyteiWAby6Fe+d5OSboJRYM
Ja4+bqmdmuTUjlHSqa1/WD3FbpN8plpfDLUNjkKD1prPbbF/PkZJTrTqb6dHOfIS
Cx9fm7SkA1G61zKKq7dN0nnHqd70VU3uHrUKEUousS9JUGPH6APU1FqME5gBsLqu
CKzHrVYmhddqGAp8dfBBQPOVuhe1ZhpRYW7avgWv+fNXtd8X9CDcJNqiwpuFuMgY
hno++SXaHu1Vze0f5n+RAUkaWh/1+EqTaQy67BzIsrLGxA==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:59:06 2025 by rpki-client