Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/VcHtukAO0pxiF8jIBe4fwYQdsMA.roa
File: VcHtukAO0pxiF8jIBe4fwYQdsMA.roa (raw, json)
Hash identifier: lXx89fy5nVzdq7+r97yTkKVpcKqs8L2FG3reBoEjcbs=
Subject key identifier: 55:C1:ED:BA:40:0E:D2:9C:62:17:C8:C8:05:EE:1F:C1:84:1D:B0:C0
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 124D
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/VcHtukAO0pxiF8jIBe4fwYQdsMA.roa
Signing time: Fri 01 Sep 2023 08:04:18 +0000
ROA not before: Fri 01 Sep 2023 08:04:18 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 7482
IP address blocks: 210.201.0.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4685 (0x124d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:04:18 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=55C1EDBA400ED29C6217C8C805EE1FC1841DB0C0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:72:a9:66:a9:e7:5d:46:02:5e:ca:d4:94:36:
3e:23:28:45:29:15:1a:f6:d3:e5:86:ac:7e:b1:26:
6b:e8:9d:6a:20:4b:fa:9e:82:6b:d9:c7:09:2b:e2:
32:bb:93:53:09:2f:9d:b0:db:c3:2e:da:91:62:32:
cb:82:dc:58:a9:b5:44:66:b0:c9:ab:4e:8d:a5:ca:
ba:88:ab:99:35:01:3c:41:16:85:27:23:c5:c7:8a:
25:f7:0b:ff:d3:c7:4f:a8:4c:c2:6a:a4:3c:74:63:
9f:05:e7:56:c3:b0:bd:59:ca:d2:ad:f4:e5:d5:34:
5b:48:30:9a:6b:35:e3:8b:ce:1f:d9:b5:fc:43:54:
4f:f9:cd:fe:6b:cc:e2:65:64:96:70:84:51:9b:9b:
05:b8:65:18:9a:dd:2e:ad:37:2b:90:87:83:8d:3b:
94:25:56:5e:58:6b:b6:db:6b:a5:04:76:ea:a4:28:
2f:8e:39:78:b0:9d:46:08:ff:b9:4f:4e:d7:60:42:
0a:39:fd:31:3d:bc:24:34:3c:32:76:12:0a:8f:be:
d1:7c:6c:6d:e1:ea:fe:73:c7:a0:4d:b9:f4:41:bd:
2e:70:ff:50:aa:7c:46:9b:8e:29:64:f3:2d:5f:88:
a6:87:c6:72:de:f2:ae:15:76:d7:c3:a7:f6:eb:e4:
67:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:C1:ED:BA:40:0E:D2:9C:62:17:C8:C8:05:EE:1F:C1:84:1D:B0:C0
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/VcHtukAO0pxiF8jIBe4fwYQdsMA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.201.0.0/18
Signature Algorithm: sha256WithRSAEncryption
3f:4f:f4:ea:4a:a2:e1:66:1a:4b:2a:61:16:21:9e:8f:cc:47:
a0:38:ab:90:3a:bc:10:52:3f:79:70:bf:8b:22:48:7d:89:2d:
ad:42:fe:36:52:38:ad:bb:ab:d3:61:b1:c1:8a:9a:ed:da:ac:
a6:54:a8:d1:ff:5d:c1:42:e7:34:99:39:ef:7d:b2:e6:c4:72:
c6:f3:70:a8:8a:c2:ce:7d:01:bf:92:60:09:91:5f:09:f5:ab:
67:41:fd:b5:e7:35:1c:7f:6e:25:7f:a8:7d:68:72:44:a6:a8:
78:d3:a9:d3:ad:eb:3c:2d:2d:73:2f:97:10:81:39:21:8f:00:
87:62:46:c6:c1:a8:79:3d:7c:3c:3a:52:9d:af:52:7c:fe:37:
03:ef:9d:23:73:42:3d:1d:6d:35:ea:79:1c:b2:fa:fa:bd:8b:
af:11:ef:4c:12:19:1a:f5:48:75:83:40:e3:f8:ea:52:8f:59:
8d:d7:52:21:fb:87:c2:d3:08:bd:af:31:8c:95:1b:4b:e6:26:
09:bc:ee:ed:10:ae:d6:39:48:6b:c7:99:89:dd:c4:8b:11:d9:
a0:7a:97:58:f1:70:6b:54:53:29:1a:76:da:de:bc:3a:7b:6f:
44:d8:1e:db:f1:6e:d2:fc:09:ab:36:79:39:ca:23:f4:d2:65:
4b:fa:93:36
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICEk0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMzA5MDEw
ODA0MThaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDU1QzFFREJBNDAwRUQy
OUM2MjE3QzhDODA1RUUxRkMxODQxREIwQzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC5cqlmqeddRgJeytSUNj4jKEUpFRr20+WGrH6xJmvonWogS/qe
gmvZxwkr4jK7k1MJL52w28Mu2pFiMsuC3FiptURmsMmrTo2lyrqIq5k1ATxBFoUn
I8XHiiX3C//Tx0+oTMJqpDx0Y58F51bDsL1ZytKt9OXVNFtIMJprNeOLzh/ZtfxD
VE/5zf5rzOJlZJZwhFGbmwW4ZRia3S6tNyuQh4ONO5QlVl5Ya7bba6UEduqkKC+O
OXiwnUYI/7lPTtdgQgo5/TE9vCQ0PDJ2EgqPvtF8bG3h6v5zx6BNufRBvS5w/1Cq
fEabjilk8y1fiKaHxnLe8q4VdtfDp/br5Gd/AgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUVcHtukAO0pxiF8jIBe4fwYQdsMAwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvVmNIdHVrQU8wcHhpRjhqSUJlNGZ3
WVFkc01BLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBtLJADAN
BgkqhkiG9w0BAQsFAAOCAQEAP0/06kqi4WYaSyphFiGej8xHoDirkDq8EFI/eXC/
iyJIfYktrUL+NlI4rbur02GxwYqa7dqsplSo0f9dwULnNJk5732y5sRyxvNwqIrC
zn0Bv5JgCZFfCfWrZ0H9tec1HH9uJX+ofWhyRKaoeNOp063rPC0tcy+XEIE5IY8A
h2JGxsGoeT18PDpSna9SfP43A++dI3NCPR1tNep5HLL6+r2LrxHvTBIZGvVIdYNA
4/jqUo9ZjddSIfuHwtMIva8xjJUbS+YmCbzu7RCu1jlIa8eZid3EixHZoHqXWPFw
a1RTKRp22t68OntvRNge2/Fu0vwJqzZ5Ocoj9NJlS/qTNg==
-----END CERTIFICATE-----
Generated at Mon Jan 15 22:50:43 2024 by rpki-client on console-fra.rpki-client.org