Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/SeOvqdXTkmQJ66cD2YZDpvLCDNU.roa
File: SeOvqdXTkmQJ66cD2YZDpvLCDNU.roa (raw, json)
Hash identifier: QtSqsUE8yU8EfM1f7lskX5tDbuIQhWvb5FoNt0XtMdk=
Subject key identifier: 49:E3:AF:A9:D5:D3:92:64:09:EB:A7:03:D9:86:43:A6:F2:C2:0C:D5
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1278
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/SeOvqdXTkmQJ66cD2YZDpvLCDNU.roa
Signing time: Fri 01 Sep 2023 08:04:31 +0000
ROA not before: Fri 01 Sep 2023 08:04:31 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18419
IP address blocks: 124.218.0.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4728 (0x1278)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:04:31 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=49E3AFA9D5D3926409EBA703D98643A6F2C20CD5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:a8:e4:29:de:93:c7:3a:b0:ae:20:4c:9e:e6:
b9:02:70:9a:08:e6:d8:be:63:36:9e:36:d3:2a:8d:
26:d0:44:2a:48:d1:29:e6:c1:56:cf:41:02:b0:c8:
f2:fa:f6:49:34:95:2d:e5:06:34:15:1a:06:ee:57:
71:c5:6d:24:6c:86:ce:35:3e:d1:47:93:03:46:2f:
23:04:d2:34:92:49:f2:87:29:a3:f9:b9:56:a1:83:
69:03:39:b4:5b:a1:91:b7:38:9b:8c:70:5d:79:c3:
97:76:83:0c:55:b6:45:93:96:dc:77:63:25:fe:af:
82:26:37:89:92:04:9b:5e:67:ce:2e:dd:00:4e:53:
8b:ac:b7:66:83:e5:b0:7f:86:c4:db:63:37:64:73:
25:a3:42:14:42:91:7e:e1:0d:9b:ec:75:1a:93:9a:
b6:5e:f4:a5:aa:5c:3a:0e:68:b1:47:b9:c6:b3:fc:
96:55:c9:0d:d2:97:c2:be:d8:4f:38:a5:92:20:59:
19:2e:0c:63:43:c9:6f:d2:ee:32:30:f5:a7:d1:fd:
51:78:2a:3c:41:b1:ac:14:15:d4:c8:2f:49:75:50:
18:d1:0d:43:e5:d4:a7:d8:a9:ab:5c:be:3f:57:57:
63:8e:d3:6e:1c:34:21:25:2d:73:88:8c:1c:2d:00:
3a:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:E3:AF:A9:D5:D3:92:64:09:EB:A7:03:D9:86:43:A6:F2:C2:0C:D5
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/SeOvqdXTkmQJ66cD2YZDpvLCDNU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.218.0.0/18
Signature Algorithm: sha256WithRSAEncryption
90:d0:42:f1:79:35:51:29:f9:4b:ed:72:84:37:c8:88:85:81:
d6:95:3b:a1:71:41:b6:67:34:d6:45:89:7e:fc:ee:67:f0:95:
a5:93:a1:82:e2:c5:ce:82:31:4d:ae:02:85:d6:ec:56:67:20:
fe:34:0e:08:65:4e:c7:7d:b1:aa:77:c6:ee:31:a9:c4:73:b4:
50:42:63:2a:f8:5a:98:4f:5b:ca:87:e7:6a:7b:79:58:8f:53:
f5:22:28:cf:06:ae:d4:af:07:ed:79:ad:5b:52:06:9b:7d:bf:
f4:cc:5a:05:33:d7:4c:f9:5b:cf:4d:30:4c:17:d9:9b:91:57:
50:78:3f:a7:cf:dd:b7:cd:41:e6:ad:19:66:ec:d6:85:7c:ed:
2c:b2:60:e7:93:29:55:bc:d5:c9:c6:a6:69:7d:9e:36:0a:27:
8c:b3:6b:67:f2:25:c7:c2:5c:04:16:ce:3c:0d:84:ae:28:5e:
84:87:a9:08:02:cb:7f:f6:ae:ad:66:ad:6c:3f:2f:a0:14:b9:
3d:ff:a5:b9:ba:5f:c3:f5:78:1f:da:ca:bf:c3:3f:89:bc:30:
d8:5b:b2:39:13:8f:39:c6:f6:1e:c6:dc:9f:18:e7:55:68:b8:
d0:7b:e3:6b:92:95:a5:8f:a8:cb:63:e8:af:a2:f8:e1:3e:81:
62:f2:3a:2e
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICEngwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMzA5MDEw
ODA0MzFaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDQ5RTNBRkE5RDVEMzky
NjQwOUVCQTcwM0Q5ODY0M0E2RjJDMjBDRDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCZqOQp3pPHOrCuIEye5rkCcJoI5ti+YzaeNtMqjSbQRCpI0Snm
wVbPQQKwyPL69kk0lS3lBjQVGgbuV3HFbSRshs41PtFHkwNGLyME0jSSSfKHKaP5
uVahg2kDObRboZG3OJuMcF15w5d2gwxVtkWTltx3YyX+r4ImN4mSBJteZ84u3QBO
U4ust2aD5bB/hsTbYzdkcyWjQhRCkX7hDZvsdRqTmrZe9KWqXDoOaLFHucaz/JZV
yQ3Sl8K+2E84pZIgWRkuDGNDyW/S7jIw9afR/VF4KjxBsawUFdTIL0l1UBjRDUPl
1KfYqatcvj9XV2OO024cNCElLXOIjBwtADr9AgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUSeOvqdXTkmQJ66cD2YZDpvLCDNUwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvU2VPdnFkWFRrbVFKNjZjRDJZWkRw
dkxDRE5VLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBnzaADAN
BgkqhkiG9w0BAQsFAAOCAQEAkNBC8Xk1USn5S+1yhDfIiIWB1pU7oXFBtmc01kWJ
fvzuZ/CVpZOhguLFzoIxTa4ChdbsVmcg/jQOCGVOx32xqnfG7jGpxHO0UEJjKvha
mE9byofnant5WI9T9SIozwau1K8H7XmtW1IGm32/9MxaBTPXTPlbz00wTBfZm5FX
UHg/p8/dt81B5q0ZZuzWhXztLLJg55MpVbzVycamaX2eNgonjLNrZ/Ilx8JcBBbO
PA2ErihehIepCALLf/aurWatbD8voBS5Pf+lubpfw/V4H9rKv8M/ibww2FuyOROP
Ocb2HsbcnxjnVWi40Hvja5KVpY+oy2Por6L44T6BYvI6Lg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org