Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/Y21l9UhV3EENPp-QpUCC2ph4WYo.roa
File: Y21l9UhV3EENPp-QpUCC2ph4WYo.roa (raw, json)
Hash identifier: 0ZfFxnMbZ9HBtlWc4g9t3RD2Yw4XMzGCaI0sYGEzKVE=
Subject key identifier: 63:6D:65:F5:48:55:DC:41:0D:3E:9F:90:A5:40:82:DA:98:78:59:8A
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0946
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/Y21l9UhV3EENPp-QpUCC2ph4WYo.roa
Signing time: Tue 29 Sep 2020 10:01:40 +0000
ROA not before: Tue 29 Sep 2020 10:01:40 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9415
IP address blocks: 2404:0:3000::/36 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2374 (0x946)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:01:40 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=636D65F54855DC410D3E9F90A54082DA9878598A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:57:56:b5:8a:43:78:af:76:b5:6f:83:a9:32:
df:22:79:1c:fe:d4:47:1b:15:63:5c:dc:b7:3b:4b:
db:28:98:5e:fc:7d:a7:8f:b1:25:6d:5c:f2:3b:21:
37:8f:7a:9f:b8:96:8a:97:e4:9c:93:c5:1d:72:ba:
c5:63:95:27:50:6d:46:2b:e4:3d:87:86:5f:e0:87:
ad:c2:cd:2b:8b:7f:9b:66:de:57:ec:98:aa:85:be:
e6:42:6f:7e:86:aa:9e:93:f4:2e:37:23:28:9f:88:
42:b0:df:99:00:08:59:5b:0f:62:77:76:4f:ac:bf:
86:1b:09:c6:1b:ef:ab:30:e3:d7:d9:3e:21:8f:20:
17:5b:01:bb:56:fa:b0:08:51:0e:45:d3:09:39:f1:
4f:52:e2:40:0c:95:71:4b:9e:04:9e:59:a6:e5:47:
3f:b2:fc:eb:45:d0:78:11:41:7c:a3:27:25:98:c0:
fd:bc:e1:94:79:e8:3c:8a:43:70:a6:ba:ac:f9:e8:
79:f5:d4:05:21:39:22:a3:e9:ba:13:e8:89:9d:af:
9a:31:9b:88:89:bc:b7:de:56:26:90:2c:e5:ba:27:
53:aa:a8:0b:3f:9d:9a:1b:35:70:0a:01:b0:c5:cc:
26:36:d3:38:93:9d:cb:17:f5:90:2d:1b:7b:dc:af:
e4:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:6D:65:F5:48:55:DC:41:0D:3E:9F:90:A5:40:82:DA:98:78:59:8A
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/Y21l9UhV3EENPp-QpUCC2ph4WYo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:0:3000::/36
Signature Algorithm: sha256WithRSAEncryption
69:d5:4b:ed:76:ab:75:4d:53:d5:92:0d:c3:8d:de:67:1f:bf:
1d:0d:6d:9c:e0:b1:93:87:12:61:e1:c2:50:42:40:f2:06:f2:
f5:1b:7a:0f:73:9d:e8:6d:e2:c2:c1:03:30:d8:2e:5d:31:4b:
9e:42:9e:fb:a2:f7:72:bb:c5:b5:9f:96:ce:df:bd:38:14:62:
fb:3f:82:f1:89:47:ad:65:51:6d:49:a8:52:f0:40:65:37:bb:
0f:80:dc:5a:74:36:f6:7c:4f:6d:67:03:9a:bd:68:68:fe:d4:
c6:6f:57:42:4e:8e:db:ae:c1:e8:9e:40:2b:52:fb:34:58:a1:
1a:1e:e0:e8:fc:1b:ef:51:28:5a:5d:ff:45:c2:42:04:4a:be:
e4:e5:5b:cb:6c:38:0c:37:d1:54:29:d6:6e:ed:dc:f6:42:56:
cc:44:22:0e:67:c1:8f:fd:5e:32:15:48:fe:26:d9:03:7b:8a:
c9:9b:78:6f:f6:d8:97:7e:40:57:68:f2:4a:6a:20:b9:e2:36:
42:e1:78:c7:b7:b6:94:7f:27:a0:fd:03:34:91:59:e0:ff:1f:
1f:8e:d2:f8:20:78:3b:4d:65:af:68:fa:84:37:35:91:6c:3f:
76:5a:00:32:55:9c:6a:1e:cd:73:fd:7e:d2:c3:12:53:60:6e:
8e:1c:1d:f5
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICCUYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMDA5Mjkx
MDAxNDBaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDYzNkQ2NUY1NDg1NURD
NDEwRDNFOUY5MEE1NDA4MkRBOTg3ODU5OEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDtV1a1ikN4r3a1b4OpMt8ieRz+1EcbFWNc3Lc7S9somF78faeP
sSVtXPI7ITePep+4loqX5JyTxR1yusVjlSdQbUYr5D2Hhl/gh63CzSuLf5tm3lfs
mKqFvuZCb36Gqp6T9C43IyifiEKw35kACFlbD2J3dk+sv4YbCcYb76sw49fZPiGP
IBdbAbtW+rAIUQ5F0wk58U9S4kAMlXFLngSeWablRz+y/OtF0HgRQXyjJyWYwP28
4ZR56DyKQ3Cmuqz56Hn11AUhOSKj6boT6Imdr5oxm4iJvLfeViaQLOW6J1OqqAs/
nZobNXAKAbDFzCY20ziTncsX9ZAtG3vcr+QzAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUY21l9UhV3EENPp+QpUCC2ph4WYowHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvWTIxbDlVaFYzRUVOUHAtUXBVQ0My
cGg0V1lvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBCQEAAAw
MA0GCSqGSIb3DQEBCwUAA4IBAQBp1Uvtdqt1TVPVkg3Djd5nH78dDW2c4LGThxJh
4cJQQkDyBvL1G3oPc53obeLCwQMw2C5dMUueQp77ovdyu8W1n5bO3704FGL7P4Lx
iUetZVFtSahS8EBlN7sPgNxadDb2fE9tZwOavWho/tTGb1dCTo7brsHonkArUvs0
WKEaHuDo/BvvUShaXf9FwkIESr7k5VvLbDgMN9FUKdZu7dz2QlbMRCIOZ8GP/V4y
FUj+JtkDe4rJm3hv9tiXfkBXaPJKaiC54jZC4XjHt7aUfyeg/QM0kVng/x8fjtL4
IHg7TWWvaPqENzWRbD92WgAyVZxqHs1z/X7SwxJTYG6OHB31
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:01 2024 by rpki-client on console-ams.rpki-client.org