Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/VaFux9GRf6S8dLadbhE5-J2veEU.roa
File: VaFux9GRf6S8dLadbhE5-J2veEU.roa (raw, json)
Hash identifier: GdaatIOpnlh4mFNwHtpAn5A2veww5aPdcXQrJYTgypk=
Subject key identifier: 55:A1:6E:C7:D1:91:7F:A4:BC:74:B6:9D:6E:11:39:F8:9D:AF:78:45
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 10F3
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/VaFux9GRf6S8dLadbhE5-J2veEU.roa
Signing time: Tue 16 May 2023 08:36:51 +0000
ROA not before: Tue 16 May 2023 08:36:51 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9311
IP address blocks: 210.201.76.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4339 (0x10f3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:51 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=55A16EC7D1917FA4BC74B69D6E1139F89DAF7845
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:0a:c4:1b:67:fd:81:d2:91:01:c5:59:7d:58:
a2:94:29:f6:92:a7:5b:4d:c0:eb:dc:90:0b:23:63:
1c:3e:98:31:90:55:6a:e8:6d:27:54:b8:dc:16:03:
2b:d5:62:fb:e8:55:5f:1e:07:76:5b:73:3a:de:37:
d8:f7:32:23:7f:79:bb:09:ce:e9:6c:f4:1e:d7:88:
57:61:91:c0:f9:29:aa:b2:98:7f:48:85:b9:89:2c:
45:86:87:a6:a2:43:fc:15:ae:1e:ce:84:84:c5:5c:
2b:af:97:a0:ec:a8:16:e6:ac:a6:6b:5d:cb:a2:8c:
67:bb:1a:da:e5:40:22:75:2a:fe:1a:92:ff:6c:9f:
98:8b:5d:04:bf:fd:4e:c2:27:a1:a6:d2:4b:bd:49:
86:b9:4e:7b:41:30:8c:03:dc:9d:f1:22:a4:ce:7e:
3f:3e:a8:d4:b0:39:1e:4c:b9:21:ad:35:4e:3b:bf:
c6:e9:d6:79:b4:73:1a:04:57:21:58:04:cd:24:7f:
d7:b4:31:ba:bd:f3:46:c3:5c:8d:c3:d9:cd:ce:40:
37:2e:3d:5c:87:a2:9a:55:78:df:ef:44:7f:b7:06:
0e:1a:b8:14:35:96:63:d3:3e:44:9c:99:fd:f2:d5:
a6:81:52:b6:dc:70:d6:39:1d:ba:46:c5:d8:e2:cc:
33:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:A1:6E:C7:D1:91:7F:A4:BC:74:B6:9D:6E:11:39:F8:9D:AF:78:45
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/VaFux9GRf6S8dLadbhE5-J2veEU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.201.76.0/22
Signature Algorithm: sha256WithRSAEncryption
38:67:4e:1d:45:e2:84:89:45:74:70:cc:36:05:98:81:d7:e2:
79:22:9c:59:e8:50:5b:85:96:79:86:4d:64:49:6f:05:c6:70:
2d:d8:39:c4:84:5b:a4:e4:d6:da:aa:85:ca:1d:0f:ba:78:6d:
a7:04:05:17:24:bd:2a:83:f5:25:47:db:99:c4:6d:d4:ea:c2:
fd:ef:9c:a5:60:33:ed:8e:0c:b6:7e:6f:ca:13:80:00:90:76:
9b:79:f2:31:fe:a1:18:dc:fd:82:7d:0e:80:72:9b:23:92:e4:
4f:31:cb:ab:c3:19:55:ff:3a:1e:f7:ef:60:27:03:3f:59:67:
3f:37:70:38:65:41:9b:6d:ab:ab:39:db:1a:9a:33:7e:0c:bb:
88:ac:db:0d:40:ca:8d:40:c9:a4:31:81:4b:d0:e7:57:22:82:
f0:bb:6f:53:57:30:36:af:19:28:d8:86:c2:bc:ff:ed:75:e4:
c1:24:f9:06:68:dd:13:21:2e:04:ac:4f:19:df:a7:b6:0c:05:
3f:51:28:7b:26:f7:fd:05:ea:f6:76:c6:80:0c:cf:bb:b3:15:
34:e4:c5:2c:7c:46:85:6b:77:c2:45:de:0a:19:c4:59:9e:2e:
34:70:32:35:9c:5a:81:72:f7:cc:c3:06:61:a3:78:42:16:a5:
ce:d2:16:92
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICEPMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMzA1MTYw
ODM2NTFaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDU1QTE2RUM3RDE5MTdG
QTRCQzc0QjY5RDZFMTEzOUY4OURBRjc4NDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDaCsQbZ/2B0pEBxVl9WKKUKfaSp1tNwOvckAsjYxw+mDGQVWro
bSdUuNwWAyvVYvvoVV8eB3ZbczreN9j3MiN/ebsJzuls9B7XiFdhkcD5KaqymH9I
hbmJLEWGh6aiQ/wVrh7OhITFXCuvl6DsqBbmrKZrXcuijGe7GtrlQCJ1Kv4akv9s
n5iLXQS//U7CJ6Gm0ku9SYa5TntBMIwD3J3xIqTOfj8+qNSwOR5MuSGtNU47v8bp
1nm0cxoEVyFYBM0kf9e0Mbq980bDXI3D2c3OQDcuPVyHoppVeN/vRH+3Bg4auBQ1
lmPTPkScmf3y1aaBUrbccNY5HbpGxdjizDMZAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUVaFux9GRf6S8dLadbhE5+J2veEUwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvVmFGdXg5R1JmNlM4ZExhZGJoRTUt
SjJ2ZUVVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAtLJTDAN
BgkqhkiG9w0BAQsFAAOCAQEAOGdOHUXihIlFdHDMNgWYgdfieSKcWehQW4WWeYZN
ZElvBcZwLdg5xIRbpOTW2qqFyh0PunhtpwQFFyS9KoP1JUfbmcRt1OrC/e+cpWAz
7Y4Mtn5vyhOAAJB2m3nyMf6hGNz9gn0OgHKbI5LkTzHLq8MZVf86HvfvYCcDP1ln
PzdwOGVBm22rqznbGpozfgy7iKzbDUDKjUDJpDGBS9DnVyKC8LtvU1cwNq8ZKNiG
wrz/7XXkwST5BmjdEyEuBKxPGd+ntgwFP1Eoeyb3/QXq9nbGgAzPu7MVNOTFLHxG
hWt3wkXeChnEWZ4uNHAyNZxagXL3zMMGYaN4QhalztIWkg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org