Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/UrqNp-Vz1DhCy1ma5kLETdhm26Q.roa
File: UrqNp-Vz1DhCy1ma5kLETdhm26Q.roa (raw, json)
Hash identifier: KSCjpD8a+s74vUrgzErrhB3fTuxqf066BkpMhm1J0g0=
Subject key identifier: 52:BA:8D:A7:E5:73:D4:38:42:CB:59:9A:E6:42:C4:4D:D8:66:DB:A4
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0E1C
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/UrqNp-Vz1DhCy1ma5kLETdhm26Q.roa
Signing time: Wed 29 Sep 2021 02:39:59 +0000
ROA not before: Wed 29 Sep 2021 02:39:59 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 7482
IP address blocks: 210.85.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3612 (0xe1c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:39:59 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=52BA8DA7E573D43842CB599AE642C44DD866DBA4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:18:b6:d2:a5:b5:62:ef:0e:5b:03:f7:fa:d0:
e5:23:96:46:e6:14:f4:ed:c3:7c:cf:5c:36:d5:19:
28:d4:3e:fa:02:6a:b3:04:66:03:b4:a4:eb:05:90:
14:9f:f4:1a:cd:e0:91:ad:b7:80:0f:26:32:ac:22:
bd:69:b4:db:5b:b4:95:95:0c:ed:4a:cf:f7:cc:b0:
58:ce:ea:c7:db:42:1a:98:35:4c:ca:61:76:cd:7d:
a4:ee:17:6d:5c:7b:c3:ff:21:c4:5f:0f:5a:c2:92:
32:89:6e:8a:94:c5:6e:07:6a:ee:dd:84:13:a6:20:
17:bf:0d:5b:38:39:84:ce:c6:a4:03:42:b0:ab:47:
43:08:07:5d:70:84:c6:d9:67:12:63:e5:e2:6b:b8:
5c:ba:01:f6:19:60:ef:f6:3b:98:9f:50:4a:23:23:
a1:1c:1f:f7:4c:90:7e:94:95:0f:4e:44:05:d5:66:
c3:e2:ff:42:cf:6f:f2:50:5a:f2:e1:65:fc:a8:08:
e9:cf:6a:89:bd:84:90:77:2e:49:7d:62:14:eb:79:
69:7a:94:0f:34:e6:f0:04:1a:a4:7b:5e:e1:03:c5:
5d:1b:bb:5f:f9:5f:38:b5:e6:89:cb:33:7e:47:f9:
73:17:b8:81:77:af:cb:cc:b4:b0:e8:f3:34:28:01:
96:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:BA:8D:A7:E5:73:D4:38:42:CB:59:9A:E6:42:C4:4D:D8:66:DB:A4
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/UrqNp-Vz1DhCy1ma5kLETdhm26Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.85.0.0/16
Signature Algorithm: sha256WithRSAEncryption
1a:76:10:e1:56:ad:a4:cf:66:f8:34:b6:86:ce:21:05:df:30:
f3:3c:fa:c3:3e:4d:a6:08:38:7c:77:0e:95:d9:99:18:35:db:
a1:f6:79:89:82:fa:f0:c4:22:d7:3e:15:f1:2f:bd:e6:41:7e:
ca:c2:2f:f1:a7:14:bd:47:88:0d:a8:13:5d:72:35:f3:97:7a:
e7:44:3e:d5:88:e0:90:8d:e3:bd:58:c7:56:8b:1b:b7:72:e8:
a6:f5:38:8d:bf:f1:bb:4a:b3:0d:32:ec:2b:d5:78:f3:9f:59:
be:17:af:5c:8e:e0:e1:fd:97:ad:f6:53:e1:e0:94:36:a5:aa:
6f:a7:88:88:61:fc:2f:c2:a7:0e:4d:2c:07:27:53:20:f4:7d:
9b:4b:fe:ca:83:48:82:ac:6f:21:a6:fc:7f:ac:66:11:07:59:
48:ee:71:8c:9d:5e:a3:31:27:2a:bc:86:5e:cd:1d:50:fd:10:
01:ed:f9:60:d1:ff:e7:f0:e3:57:1a:f8:d4:af:09:c5:d4:dd:
2a:fb:b6:5d:c3:8d:ed:24:95:a2:b6:50:53:e5:b5:94:e9:c4:
04:1e:c2:e4:d2:3e:a8:9a:3d:0a:fa:cc:d3:f3:f5:33:04:06:
15:25:de:f9:4c:01:15:f3:6e:46:b7:9f:b0:d9:9c:7f:bc:61:
e0:59:78:a2
-----BEGIN CERTIFICATE-----
MIIEzTCCA7WgAwIBAgICDhwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMTA5Mjkw
MjM5NTlaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDUyQkE4REE3RTU3M0Q0
Mzg0MkNCNTk5QUU2NDJDNDRERDg2NkRCQTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC5GLbSpbVi7w5bA/f60OUjlkbmFPTtw3zPXDbVGSjUPvoCarME
ZgO0pOsFkBSf9BrN4JGtt4APJjKsIr1ptNtbtJWVDO1Kz/fMsFjO6sfbQhqYNUzK
YXbNfaTuF21ce8P/IcRfD1rCkjKJboqUxW4Hau7dhBOmIBe/DVs4OYTOxqQDQrCr
R0MIB11whMbZZxJj5eJruFy6AfYZYO/2O5ifUEojI6EcH/dMkH6UlQ9ORAXVZsPi
/0LPb/JQWvLhZfyoCOnPaom9hJB3Lkl9YhTreWl6lA805vAEGqR7XuEDxV0bu1/5
Xzi15onLM35H+XMXuIF3r8vMtLDo8zQoAZY3AgMBAAGjggHpMIIB5TAdBgNVHQ4E
FgQUUrqNp+Vz1DhCy1ma5kLETdhm26QwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvVXJxTnAtVnoxRGhDeTFtYTVrTEVU
ZGhtMjZRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDANJVMA0G
CSqGSIb3DQEBCwUAA4IBAQAadhDhVq2kz2b4NLaGziEF3zDzPPrDPk2mCDh8dw6V
2ZkYNduh9nmJgvrwxCLXPhXxL73mQX7Kwi/xpxS9R4gNqBNdcjXzl3rnRD7ViOCQ
jeO9WMdWixu3cuim9TiNv/G7SrMNMuwr1Xjzn1m+F69cjuDh/Zet9lPh4JQ2papv
p4iIYfwvwqcOTSwHJ1Mg9H2bS/7Kg0iCrG8hpvx/rGYRB1lI7nGMnV6jMScqvIZe
zR1Q/RAB7flg0f/n8ONXGvjUrwnF1N0q+7Zdw43tJJWitlBT5bWU6cQEHsLk0j6o
mj0K+szT8/UzBAYVJd75TAEV825Gt5+w2Zx/vGHgWXii
-----END CERTIFICATE-----
Generated at Sun Feb 16 21:04:15 2025 by rpki-client