Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/XNfSPs0IA-V4oQC17xS626coGqc.roa
File: XNfSPs0IA-V4oQC17xS626coGqc.roa (raw, json)
Hash identifier: RGX91BarFBRrNfOpJ1gDvGjLP5c28fERq8rNzS5bVRE=
Subject key identifier: 5C:D7:D2:3E:CD:08:03:E5:78:A1:00:B5:EF:14:BA:DB:A7:28:1A:A7
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0E5E
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/XNfSPs0IA-V4oQC17xS626coGqc.roa
Signing time: Wed 29 Sep 2021 02:40:17 +0000
ROA not before: Wed 29 Sep 2021 02:40:17 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18419
IP address blocks: 124.218.224.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3678 (0xe5e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:40:17 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=5CD7D23ECD0803E578A100B5EF14BADBA7281AA7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:39:0a:a5:d9:f7:56:ac:f4:c3:11:36:d6:f8:
f8:a1:f6:be:2c:1c:29:5f:44:e3:48:e4:26:cf:98:
be:6b:8e:77:13:e1:e5:7b:13:bd:87:54:ce:e7:6e:
1e:6c:e7:fb:dd:24:fd:4e:f6:ca:94:1c:ec:6e:4c:
6c:8f:98:ef:4c:99:4d:a0:14:54:fb:15:11:3f:35:
3a:ea:a6:22:f6:e2:dd:dc:4a:e6:93:5d:33:41:fb:
ce:3b:1d:b7:12:04:ac:89:e7:f9:ec:f8:80:e8:61:
dc:b7:76:b3:21:15:ac:11:41:b0:76:9b:c0:44:29:
5f:78:e4:1e:f0:de:d0:96:de:2e:b9:da:36:6b:ac:
a6:9e:7b:61:c5:0b:6e:91:de:03:d4:e6:93:a0:c6:
65:58:6b:98:b4:e2:cd:a2:90:7d:c1:5e:76:ea:a6:
83:6c:6b:20:85:43:76:4b:ed:77:44:0d:bb:e7:45:
a5:9f:e2:d0:b7:5f:00:cb:4c:15:89:94:bf:d5:5c:
9c:b1:fc:9b:23:75:4a:c6:2c:c0:20:ff:cc:37:0d:
ad:a7:84:72:38:77:3a:88:ba:6a:83:ba:70:53:75:
ee:0e:6c:63:78:13:f4:05:3e:d7:3c:47:e5:e1:0f:
32:5a:f3:c0:1c:0e:b5:bb:3f:d3:b6:7b:ae:2a:b4:
b9:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:D7:D2:3E:CD:08:03:E5:78:A1:00:B5:EF:14:BA:DB:A7:28:1A:A7
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/XNfSPs0IA-V4oQC17xS626coGqc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.218.224.0/21
Signature Algorithm: sha256WithRSAEncryption
34:bc:00:af:32:d5:b6:c1:ec:2a:10:aa:f2:22:66:3b:af:92:
b7:b1:5b:dd:89:7b:e4:17:e9:c3:34:6a:4c:d1:5e:e2:4e:44:
bd:d6:d0:7b:ff:f3:31:8b:d2:02:e9:1c:d6:21:53:89:e0:c4:
f1:85:21:98:87:07:21:4f:b1:c0:fe:2b:cc:42:11:74:d4:97:
e1:b5:c3:2b:92:14:a9:2f:1a:ff:a3:52:f8:b4:40:46:c8:5b:
79:d3:38:de:83:d8:18:0c:97:a7:b8:ab:97:47:e0:bf:0f:77:
f9:29:c8:ad:49:04:7a:ba:c4:12:96:7b:54:9b:6a:2e:25:c1:
8f:99:1c:cc:07:8a:ea:23:8b:74:0f:c0:ab:d4:ff:f2:de:33:
78:ff:7c:f0:09:b3:c9:46:58:57:e5:c3:71:0c:db:7d:1a:05:
48:0c:09:c5:35:9c:e1:14:11:13:44:01:50:87:c9:49:d4:a5:
0e:91:45:ac:01:01:df:72:99:5a:d8:9c:85:55:b2:ee:f6:96:
70:0a:53:ec:eb:c1:e4:55:e5:07:33:33:7a:a7:b8:6e:fc:21:
36:ff:ad:0e:19:69:af:72:46:d2:b6:29:23:02:99:64:e7:cb:
60:24:69:86:94:55:85:fb:71:01:8f:65:dd:f1:a9:6c:17:0f:
6e:f6:e1:83
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDl4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMTA5Mjkw
MjQwMTdaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDVDRDdEMjNFQ0QwODAz
RTU3OEExMDBCNUVGMTRCQURCQTcyODFBQTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDJOQql2fdWrPTDETbW+Pih9r4sHClfRONI5CbPmL5rjncT4eV7
E72HVM7nbh5s5/vdJP1O9sqUHOxuTGyPmO9MmU2gFFT7FRE/NTrqpiL24t3cSuaT
XTNB+847HbcSBKyJ5/ns+IDoYdy3drMhFawRQbB2m8BEKV945B7w3tCW3i652jZr
rKaee2HFC26R3gPU5pOgxmVYa5i04s2ikH3BXnbqpoNsayCFQ3ZL7XdEDbvnRaWf
4tC3XwDLTBWJlL/VXJyx/JsjdUrGLMAg/8w3Da2nhHI4dzqIumqDunBTde4ObGN4
E/QFPtc8R+XhDzJa88AcDrW7P9O2e64qtLmRAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUXNfSPs0IA+V4oQC17xS626coGqcwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvWE5mU1BzMElBLVY0b1FDMTd4UzYy
NmNvR3FjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3za4DAN
BgkqhkiG9w0BAQsFAAOCAQEANLwArzLVtsHsKhCq8iJmO6+St7Fb3Yl75BfpwzRq
TNFe4k5EvdbQe//zMYvSAukc1iFTieDE8YUhmIcHIU+xwP4rzEIRdNSX4bXDK5IU
qS8a/6NS+LRARshbedM43oPYGAyXp7irl0fgvw93+SnIrUkEerrEEpZ7VJtqLiXB
j5kczAeK6iOLdA/Aq9T/8t4zeP988AmzyUZYV+XDcQzbfRoFSAwJxTWc4RQRE0QB
UIfJSdSlDpFFrAEB33KZWtichVWy7vaWcApT7OvB5FXlBzMzeqe4bvwhNv+tDhlp
r3JG0rYpIwKZZOfLYCRphpRVhftxAY9l3fGpbBcPbvbhgw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org