Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/_HcvhJ2LWR-zRfQnRimWvxrErUM.roa
File: _HcvhJ2LWR-zRfQnRimWvxrErUM.roa (raw, json)
Hash identifier: 9FaNpepAhhgzESKyeteVfcvpTE489Qy3gBGhXf5ylYs=
Subject key identifier: FC:77:2F:84:9D:8B:59:1F:B3:45:F4:27:46:29:96:BF:1A:C4:AD:43
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0ED2
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/_HcvhJ2LWR-zRfQnRimWvxrErUM.roa
Signing time: Mon 21 Feb 2022 03:00:57 +0000
ROA not before: Mon 21 Feb 2022 03:00:57 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9922
IP address blocks: 124.218.80.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3794 (0xed2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 21 03:00:57 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=FC772F849D8B591FB345F427462996BF1AC4AD43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:46:e8:4d:61:cf:9e:91:a2:ad:de:e5:6a:bb:
6a:d0:ea:cc:c2:cb:e8:af:48:13:ce:a7:45:75:64:
a6:70:77:ac:57:c3:9c:8f:f8:19:2a:6d:17:d2:4a:
15:ee:b3:db:a0:bc:df:82:69:68:87:92:64:7f:5a:
8e:b4:3b:3c:f2:16:47:f3:1f:89:60:60:3d:d9:20:
8d:a6:51:df:72:78:8e:e5:62:f2:2c:90:56:c9:b1:
78:2d:27:1a:fc:ad:77:9f:cb:89:52:32:b7:d5:8b:
10:15:ec:1b:c9:89:c5:8e:f8:23:a9:79:4b:d5:de:
4a:52:93:35:e3:3d:8e:88:6f:d9:a8:77:eb:f5:cc:
79:ac:f5:c5:63:6e:97:c1:f7:24:b4:ae:8c:f8:74:
49:dc:5c:71:16:a5:ac:62:c5:cb:0e:d3:e3:29:48:
58:a7:ff:e1:62:ba:e8:08:9f:90:95:2c:4a:20:fe:
01:3d:4e:c1:f7:fa:bb:13:0c:9e:44:83:2e:d8:bd:
a6:e7:54:bc:0b:47:04:d1:c2:dc:c6:ad:2a:ab:73:
05:55:d6:a1:6d:8d:62:89:04:28:78:1b:7f:9e:d3:
31:a8:1b:58:6d:ee:a7:cc:6a:19:e6:f0:80:93:cd:
14:2d:42:38:72:f7:dd:5c:97:dc:95:7e:98:fc:4c:
e6:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:77:2F:84:9D:8B:59:1F:B3:45:F4:27:46:29:96:BF:1A:C4:AD:43
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/_HcvhJ2LWR-zRfQnRimWvxrErUM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.218.80.0/21
Signature Algorithm: sha256WithRSAEncryption
b8:9c:8d:98:06:b4:d0:07:8f:1a:1f:2e:b0:6d:a4:bd:f7:0d:
34:05:d0:da:ab:aa:62:27:76:f0:32:06:26:01:1b:68:02:42:
bf:da:ce:01:63:04:5b:e5:61:1b:0d:e7:76:c3:d9:ab:e5:81:
ee:f0:ef:5a:c7:17:6b:ee:4a:02:ab:ae:71:9e:0e:7a:c0:4b:
f7:90:92:9e:b6:1c:b3:92:ac:47:cf:8e:f7:7a:83:6a:7b:4f:
10:f9:52:66:5e:db:a0:9d:c5:d3:e3:eb:a5:f7:a3:95:23:3a:
c3:73:e9:93:c8:11:b8:25:8e:57:06:b2:93:99:f7:aa:f7:a7:
2a:17:49:30:00:a7:59:0f:38:1a:6f:57:77:3a:d9:b3:34:9a:
9a:7a:dd:99:3a:29:83:1d:83:7f:d4:66:41:77:e4:2e:9e:c5:
3a:cb:85:1d:04:a0:ec:81:b9:09:43:05:4f:88:9e:11:1e:e2:
14:7f:bd:ac:ca:fc:55:d8:31:4c:12:84:95:bc:39:82:07:a0:
f6:d0:0f:3e:09:c6:5e:1a:b6:15:e9:ca:56:cf:d5:c5:56:7c:
48:2d:7d:bc:2c:0e:0f:fa:4e:13:cb:b2:6b:24:e2:e2:eb:9c:
fc:dc:47:a6:00:8f:4f:25:31:7c:1b:3d:7a:ff:96:53:ae:27:
c4:62:3c:99
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDtIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMjAyMjEw
MzAwNTdaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEZDNzcyRjg0OUQ4QjU5
MUZCMzQ1RjQyNzQ2Mjk5NkJGMUFDNEFENDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC9RuhNYc+ekaKt3uVqu2rQ6szCy+ivSBPOp0V1ZKZwd6xXw5yP
+BkqbRfSShXus9ugvN+CaWiHkmR/Wo60OzzyFkfzH4lgYD3ZII2mUd9yeI7lYvIs
kFbJsXgtJxr8rXefy4lSMrfVixAV7BvJicWO+COpeUvV3kpSkzXjPY6Ib9mod+v1
zHms9cVjbpfB9yS0roz4dEncXHEWpaxixcsO0+MpSFin/+FiuugIn5CVLEog/gE9
TsH3+rsTDJ5Egy7YvabnVLwLRwTRwtzGrSqrcwVV1qFtjWKJBCh4G3+e0zGoG1ht
7qfMahnm8ICTzRQtQjhy991cl9yVfpj8TOa7AgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQU/HcvhJ2LWR+zRfQnRimWvxrErUMwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvX0hjdmhKMkxXUi16UmZRblJpbVd2
eHJFclVNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3zaUDAN
BgkqhkiG9w0BAQsFAAOCAQEAuJyNmAa00AePGh8usG2kvfcNNAXQ2quqYid28DIG
JgEbaAJCv9rOAWMEW+VhGw3ndsPZq+WB7vDvWscXa+5KAquucZ4OesBL95CSnrYc
s5KsR8+O93qDantPEPlSZl7boJ3F0+PrpfejlSM6w3Ppk8gRuCWOVwayk5n3qven
KhdJMACnWQ84Gm9XdzrZszSamnrdmTopgx2Df9RmQXfkLp7FOsuFHQSg7IG5CUMF
T4ieER7iFH+9rMr8VdgxTBKElbw5ggeg9tAPPgnGXhq2FenKVs/VxVZ8SC19vCwO
D/pOE8uyayTi4uuc/NxHpgCPTyUxfBs9ev+WU64nxGI8mQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:32 2024 by rpki-client on console-fra.rpki-client.org