Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/X1sxfvYIxNtoZHAM2YQwng8YxfI.roa
File: X1sxfvYIxNtoZHAM2YQwng8YxfI.roa (raw, json)
Hash identifier: fHsYfYzLbanT9K0WgaT6RSRdlTERvutHcteVq1QD4/0=
Subject key identifier: 5F:5B:31:7E:F6:08:C4:DB:68:64:70:0C:D9:84:30:9E:0F:18:C5:F2
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 10BC
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/X1sxfvYIxNtoZHAM2YQwng8YxfI.roa
Signing time: Tue 16 May 2023 08:36:34 +0000
ROA not before: Tue 16 May 2023 08:36:34 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17709
IP address blocks: 222.250.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4284 (0x10bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:34 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=5F5B317EF608C4DB6864700CD984309E0F18C5F2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:fa:71:ca:e0:f7:5b:92:29:db:d1:c5:17:98:
d8:01:0b:d2:dd:8a:70:be:35:f9:ca:ca:cd:67:78:
87:91:90:ac:cf:d4:87:69:da:e0:13:36:11:39:54:
f5:16:69:fb:01:93:cb:13:be:cc:ab:5f:a3:84:0c:
43:ce:22:db:05:d2:c9:36:2c:dd:08:9e:e4:86:6c:
57:d5:cc:7a:75:07:42:78:09:9e:a8:39:cb:b1:26:
c5:46:07:9a:d3:8e:92:9e:c1:57:c2:ef:3f:3b:ec:
c5:c2:1c:34:f3:9f:ca:87:5d:6c:cc:8c:9b:a2:ef:
6a:65:19:f6:d0:3a:12:47:0b:5b:bd:2f:5b:b8:53:
63:70:a2:4c:6d:b3:c0:47:01:13:ff:c6:22:4f:df:
f1:e0:0d:28:c5:8a:9a:d7:a0:5f:24:8e:30:2c:ee:
94:4f:86:b9:18:71:b5:e1:41:35:48:15:aa:92:db:
23:97:50:7a:55:bf:a6:11:9f:3c:85:78:3d:ec:ed:
f1:d8:4e:b8:00:95:cd:7a:32:24:77:10:10:b3:e3:
93:80:49:e1:29:c9:6f:5f:4e:25:78:05:a4:e8:61:
8f:b6:56:97:44:b5:b6:be:39:38:33:12:92:31:ad:
74:06:92:18:1b:5f:18:9c:e0:c0:df:58:e2:ff:d3:
f0:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:5B:31:7E:F6:08:C4:DB:68:64:70:0C:D9:84:30:9E:0F:18:C5:F2
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/X1sxfvYIxNtoZHAM2YQwng8YxfI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
222.250.0.0/16
Signature Algorithm: sha256WithRSAEncryption
8e:3c:3b:4f:5d:b5:d2:25:38:8c:32:24:c9:b8:52:d1:22:3a:
9d:b2:20:6b:bc:b2:13:8d:22:00:bd:09:9c:0d:7c:82:81:c8:
7b:b1:17:15:07:bd:49:ac:d9:03:10:6c:e6:54:31:b9:cc:93:
fe:6d:bd:4a:11:b1:08:8f:fc:69:f2:d8:b2:58:8d:c7:ec:47:
17:71:41:f9:aa:4c:5e:2e:26:25:70:0d:4a:e9:1c:07:02:ce:
3a:7f:b5:25:27:35:ba:53:2f:03:52:db:6c:d2:0b:1e:b9:3f:
6b:e5:93:9e:8a:47:20:f8:0b:a0:e5:f2:4a:07:4d:4e:b1:2e:
5c:87:49:83:55:29:69:c9:3f:b5:39:04:b2:69:7d:93:6a:e8:
ef:9d:79:ea:01:14:49:55:56:1c:6e:ce:21:da:f1:27:2e:75:
c1:1b:86:b5:24:d4:ab:61:79:e8:ce:13:61:09:50:da:ca:42:
60:4b:4b:8e:10:73:f5:88:11:88:b2:a6:50:46:3c:73:0d:1b:
a4:3f:82:a5:d5:0a:67:ff:94:a0:4b:f7:9d:52:86:5f:3a:bd:
ea:42:f1:a8:9f:3b:cf:ca:5d:a3:11:9e:0a:5a:7e:b3:e6:1a:
7f:b4:a9:dd:0a:e5:1d:c8:97:4c:01:82:39:e3:ac:b2:1a:35:
4e:18:40:4b
-----BEGIN CERTIFICATE-----
MIIEzTCCA7WgAwIBAgICELwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMzA1MTYw
ODM2MzRaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDVGNUIzMTdFRjYwOEM0
REI2ODY0NzAwQ0Q5ODQzMDlFMEYxOEM1RjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCs+nHK4Pdbkinb0cUXmNgBC9LdinC+NfnKys1neIeRkKzP1Idp
2uATNhE5VPUWafsBk8sTvsyrX6OEDEPOItsF0sk2LN0InuSGbFfVzHp1B0J4CZ6o
OcuxJsVGB5rTjpKewVfC7z877MXCHDTzn8qHXWzMjJui72plGfbQOhJHC1u9L1u4
U2Nwokxts8BHARP/xiJP3/HgDSjFiprXoF8kjjAs7pRPhrkYcbXhQTVIFaqS2yOX
UHpVv6YRnzyFeD3s7fHYTrgAlc16MiR3EBCz45OASeEpyW9fTiV4BaToYY+2VpdE
tba+OTgzEpIxrXQGkhgbXxic4MDfWOL/0/D/AgMBAAGjggHpMIIB5TAdBgNVHQ4E
FgQUX1sxfvYIxNtoZHAM2YQwng8YxfIwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvWDFzeGZ2WUl4TnRvWkhBTTJZUXdu
ZzhZeGZJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAN76MA0G
CSqGSIb3DQEBCwUAA4IBAQCOPDtPXbXSJTiMMiTJuFLRIjqdsiBrvLITjSIAvQmc
DXyCgch7sRcVB71JrNkDEGzmVDG5zJP+bb1KEbEIj/xp8tiyWI3H7EcXcUH5qkxe
LiYlcA1K6RwHAs46f7UlJzW6Uy8DUtts0gseuT9r5ZOeikcg+Aug5fJKB01OsS5c
h0mDVSlpyT+1OQSyaX2TaujvnXnqARRJVVYcbs4h2vEnLnXBG4a1JNSrYXnozhNh
CVDaykJgS0uOEHP1iBGIsqZQRjxzDRukP4Kl1Qpn/5SgS/edUoZfOr3qQvGonzvP
yl2jEZ4KWn6z5hp/tKndCuUdyJdMAYI546yyGjVOGEBL
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org