Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/PeL9yuFXspj8nng7tcWOobXApDE.roa
File: PeL9yuFXspj8nng7tcWOobXApDE.roa (raw, json)
Hash identifier: SP1FLTpi+IckqKvss8pg2eLbGCJnvOkhDm7Mk49d7WI=
Subject key identifier: 3D:E2:FD:CA:E1:57:B2:98:FC:9E:78:3B:B5:C5:8E:A1:B5:C0:A4:31
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/PeL9yuFXspj8nng7tcWOobXApDE.roa
Signing time: Thu 15 Sep 2022 02:39:58 +0000
ROA not before: Thu 15 Sep 2022 02:39:58 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17709
IP address blocks: 210.63.208.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:39:58 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=3DE2FDCAE157B298FC9E783BB5C58EA1B5C0A431
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:35:58:d9:43:ff:57:ce:19:5b:eb:d2:cd:77:
6f:a9:74:83:5e:67:c8:49:11:22:a9:85:9c:07:7c:
d3:b6:47:23:0d:1f:0b:e1:4c:f3:1a:64:fa:d9:5d:
e9:53:21:f4:03:00:04:4f:81:46:4d:84:39:ba:60:
4f:78:55:17:ae:aa:85:ce:95:b6:02:00:30:36:06:
a7:fe:80:f9:1e:01:d0:f9:e5:16:98:f0:d1:be:d0:
42:08:b3:7e:4b:ad:21:ef:f0:c8:4d:55:0c:d7:90:
89:f7:6d:51:a0:71:7d:77:f7:88:4e:b4:b4:d3:c7:
06:a2:91:56:b6:e7:28:77:cc:1f:2d:de:3c:25:e4:
4a:6a:3a:ed:5c:fb:2a:ba:11:03:1b:e5:38:44:9d:
1b:f3:bf:7c:35:b0:e9:9f:60:4c:5e:4d:2c:4e:ac:
4c:41:92:72:63:28:d1:8c:1f:7e:f3:11:5e:55:d9:
85:88:81:8a:96:38:5d:21:95:02:7b:95:b6:a9:f9:
58:bf:64:c9:8c:19:c6:96:a3:d6:f2:1e:9b:a9:33:
4b:6e:41:07:06:86:b6:2c:a5:74:5d:73:68:47:13:
0f:1d:c0:f8:30:2e:5c:98:72:50:79:64:c7:28:03:
24:f9:cc:18:12:97:44:60:11:d9:d8:54:25:1c:98:
c4:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:E2:FD:CA:E1:57:B2:98:FC:9E:78:3B:B5:C5:8E:A1:B5:C0:A4:31
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/PeL9yuFXspj8nng7tcWOobXApDE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.63.208.0/21
Signature Algorithm: sha256WithRSAEncryption
73:ae:8b:bd:d1:3a:75:df:eb:7b:a1:14:fe:c2:c3:c8:09:9c:
11:12:ab:10:78:8c:78:7c:88:fc:f9:89:33:6e:41:b1:23:ff:
4d:68:91:a2:e0:18:f0:db:f3:18:6c:94:e6:c9:19:53:a0:5a:
77:04:3b:9f:c0:16:d4:82:76:83:d2:79:83:bb:d0:68:4e:5a:
ac:f9:35:7e:43:13:8f:38:f0:e0:4a:70:59:bb:3d:1a:2b:e1:
e1:ab:da:5b:35:0f:e4:0b:47:0d:c9:2c:98:83:76:e8:bf:66:
aa:07:b3:97:e7:4f:8c:71:86:54:b1:df:de:57:a9:f7:86:2b:
aa:26:9d:50:f9:b9:e9:8d:73:3e:39:bc:b9:f9:44:e8:df:d3:
60:d7:03:5e:7c:c7:d6:d8:8a:a9:d7:51:7f:ac:a4:54:8c:f7:
36:d5:05:ec:f9:1a:86:b5:96:41:5d:67:e2:5b:42:24:78:08:
fc:21:fd:eb:60:60:2a:a4:04:79:2b:ee:3d:a4:da:07:38:74:
2a:93:7d:4d:ab:1a:69:de:14:91:24:24:eb:e8:bf:39:92:b7:
a8:fc:c1:7e:22:1e:59:ae:af:51:60:e0:ba:b4:f6:bd:e4:1c:
87:c4:ce:de:c2:d9:ff:16:37:f3:e2:73:af:3d:d7:e0:7d:a8:
07:81:49:8c
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICD2MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMjA5MTUw
MjM5NThaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDNERTJGRENBRTE1N0Iy
OThGQzlFNzgzQkI1QzU4RUExQjVDMEE0MzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCyNVjZQ/9Xzhlb69LNd2+pdINeZ8hJESKphZwHfNO2RyMNHwvh
TPMaZPrZXelTIfQDAARPgUZNhDm6YE94VReuqoXOlbYCADA2Bqf+gPkeAdD55RaY
8NG+0EIIs35LrSHv8MhNVQzXkIn3bVGgcX1394hOtLTTxwaikVa25yh3zB8t3jwl
5EpqOu1c+yq6EQMb5ThEnRvzv3w1sOmfYExeTSxOrExBknJjKNGMH37zEV5V2YWI
gYqWOF0hlQJ7lbap+Vi/ZMmMGcaWo9byHpupM0tuQQcGhrYspXRdc2hHEw8dwPgw
LlyYclB5ZMcoAyT5zBgSl0RgEdnYVCUcmMSvAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUPeL9yuFXspj8nng7tcWOobXApDEwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvUGVMOXl1RlhzcGo4bm5nN3RjV09v
YlhBcERFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA9I/0DAN
BgkqhkiG9w0BAQsFAAOCAQEAc66LvdE6dd/re6EU/sLDyAmcERKrEHiMeHyI/PmJ
M25BsSP/TWiRouAY8NvzGGyU5skZU6BadwQ7n8AW1IJ2g9J5g7vQaE5arPk1fkMT
jzjw4EpwWbs9Givh4avaWzUP5AtHDcksmIN26L9mqgezl+dPjHGGVLHf3lep94Yr
qiadUPm56Y1zPjm8uflE6N/TYNcDXnzH1tiKqddRf6ykVIz3NtUF7PkahrWWQV1n
4ltCJHgI/CH962BgKqQEeSvuPaTaBzh0KpN9Tasaad4UkSQk6+i/OZK3qPzBfiIe
Wa6vUWDgurT2veQch8TO3sLZ/xY38+Jzrz3X4H2oB4FJjA==
-----END CERTIFICATE-----
Generated at Sun Feb 16 21:01:47 2025 by rpki-client