Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/YebkLQ-GUn19LZ_S4usW4EEoO8U.roa
File: YebkLQ-GUn19LZ_S4usW4EEoO8U.roa (raw, json)
Hash identifier: dgKHnz52m/Q8qSpBjb8tsAeqf+Jkxt9e/7JV178A+rE=
Subject key identifier: 61:E6:E4:2D:0F:86:52:7D:7D:2D:9F:D2:E2:EB:16:E0:41:28:3B:C5
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F7F
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/YebkLQ-GUn19LZ_S4usW4EEoO8U.roa
Signing time: Mon 17 Oct 2022 06:40:11 +0000
ROA not before: Mon 17 Oct 2022 06:40:11 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18419
IP address blocks: 124.218.100.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3967 (0xf7f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Oct 17 06:40:11 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=61E6E42D0F86527D7D2D9FD2E2EB16E041283BC5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:e0:2f:cb:08:d5:13:1c:9d:28:95:cb:f3:5a:
99:99:28:a7:97:a1:78:c3:8a:8c:80:f0:e9:82:8b:
bf:eb:79:fe:20:e1:e9:d3:9e:8f:6b:d7:1f:06:ce:
02:d8:76:d5:18:e5:30:71:5b:f0:62:f1:b5:e0:f4:
c2:df:b9:0f:62:46:10:af:d1:96:a1:c3:21:d4:02:
27:2c:24:22:6e:4c:80:cc:b3:0e:63:d4:4a:2c:22:
ae:a5:5b:d5:6e:f3:f0:40:47:15:65:48:52:34:94:
e2:da:84:0b:4f:33:ba:b9:95:57:4e:b1:55:e6:b1:
28:cf:00:45:56:c0:26:52:99:9c:c3:2e:93:ec:7d:
20:31:ed:65:40:d9:60:06:71:d5:77:49:60:12:1c:
f4:3c:23:88:5c:92:ad:bd:4e:39:ed:24:14:36:89:
7e:bf:1f:a5:87:6a:69:d2:b3:3a:ad:b4:4f:8d:8e:
86:f5:29:44:a9:4e:58:c0:5d:fc:c3:05:13:10:8a:
de:00:b0:8d:cd:6a:c6:59:ba:84:e2:53:23:69:f9:
bf:b9:73:58:c4:af:ea:a5:ce:ef:4f:bd:1a:21:4f:
00:9e:78:07:4b:8b:7e:fe:7a:59:b3:4d:fa:29:fc:
cb:14:f5:83:9e:e5:30:90:fc:c2:98:2e:da:48:e5:
9a:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:E6:E4:2D:0F:86:52:7D:7D:2D:9F:D2:E2:EB:16:E0:41:28:3B:C5
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/YebkLQ-GUn19LZ_S4usW4EEoO8U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.218.100.0/22
Signature Algorithm: sha256WithRSAEncryption
80:bc:c5:40:21:24:2e:b0:c2:04:96:f0:e6:ac:79:48:60:ae:
a7:5c:5c:d4:54:6b:fd:26:ed:74:5c:f0:6a:6a:c8:6c:18:b6:
4f:5e:3f:d0:d6:1e:cf:06:05:46:c8:8e:18:dc:07:a7:05:7a:
48:20:89:94:ea:a4:ed:dd:04:c8:26:95:6a:e2:37:cf:d4:2f:
37:f6:45:54:c6:eb:e3:44:e5:dc:ef:06:c5:1c:d1:2c:41:07:
93:bd:18:d7:ad:0f:19:be:54:e2:00:a4:ff:50:a0:94:99:da:
1a:81:01:73:ae:07:fd:75:97:a6:a9:46:de:9b:33:9c:ed:a0:
ce:7c:df:51:96:12:e2:d4:cc:2c:11:15:64:8b:6d:ed:cf:68:
37:fb:d8:4b:0c:5e:3e:ee:e8:7c:1e:83:e1:a1:77:59:78:49:
e9:67:f6:9e:91:f2:da:3f:0e:07:92:ea:fd:bc:c9:6e:c1:9a:
95:fa:1b:84:aa:76:ce:94:8e:5e:ce:10:9b:e8:f1:7d:18:7d:
cb:fe:79:18:b9:8b:38:d2:be:19:c2:b0:a2:d1:9c:32:16:c5:
74:ba:0b:c1:d2:f5:17:3c:f2:aa:af:b8:64:e7:92:75:da:c8:
fa:3b:73:c5:88:fb:2b:1b:e2:b3:0c:e1:c8:3e:1f:58:e5:ee:
19:22:a6:c8
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICD38wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMjEwMTcw
NjQwMTFaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDYxRTZFNDJEMEY4NjUy
N0Q3RDJEOUZEMkUyRUIxNkUwNDEyODNCQzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDV4C/LCNUTHJ0olcvzWpmZKKeXoXjDioyA8OmCi7/ref4g4enT
no9r1x8GzgLYdtUY5TBxW/Bi8bXg9MLfuQ9iRhCv0ZahwyHUAicsJCJuTIDMsw5j
1EosIq6lW9Vu8/BARxVlSFI0lOLahAtPM7q5lVdOsVXmsSjPAEVWwCZSmZzDLpPs
fSAx7WVA2WAGcdV3SWASHPQ8I4hckq29TjntJBQ2iX6/H6WHamnSszqttE+Njob1
KUSpTljAXfzDBRMQit4AsI3NasZZuoTiUyNp+b+5c1jEr+qlzu9PvRohTwCeeAdL
i37+elmzTfop/MsU9YOe5TCQ/MKYLtpI5ZrvAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUYebkLQ+GUn19LZ/S4usW4EEoO8UwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvWWVia0xRLUdVbjE5TFpfUzR1c1c0
RUVvTzhVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAnzaZDAN
BgkqhkiG9w0BAQsFAAOCAQEAgLzFQCEkLrDCBJbw5qx5SGCup1xc1FRr/SbtdFzw
amrIbBi2T14/0NYezwYFRsiOGNwHpwV6SCCJlOqk7d0EyCaVauI3z9QvN/ZFVMbr
40Tl3O8GxRzRLEEHk70Y160PGb5U4gCk/1CglJnaGoEBc64H/XWXpqlG3psznO2g
znzfUZYS4tTMLBEVZItt7c9oN/vYSwxePu7ofB6D4aF3WXhJ6Wf2npHy2j8OB5Lq
/bzJbsGalfobhKp2zpSOXs4Qm+jxfRh9y/55GLmLONK+GcKwotGcMhbFdLoLwdL1
Fzzyqq+4ZOeSddrI+jtzxYj7KxviswzhyD4fWOXuGSKmyA==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:47:42 2025 by rpki-client