Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/_gEF6fTeUET7GMfZ1XmLrZfjkXk.roa
File: _gEF6fTeUET7GMfZ1XmLrZfjkXk.roa (raw, json)
Hash identifier: SSJRQEoS5sbdKN6IXN4+KTgr8inrLyQhCmZ972Vh+ac=
Subject key identifier: FE:01:05:E9:F4:DE:50:44:FB:18:C7:D9:D5:79:8B:AD:97:E3:91:79
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/_gEF6fTeUET7GMfZ1XmLrZfjkXk.roa
Signing time: Thu 15 Sep 2022 02:40:10 +0000
ROA not before: Thu 15 Sep 2022 02:40:10 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38843
IP address blocks: 210.58.92.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:40:10 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=FE0105E9F4DE5044FB18C7D9D5798BAD97E39179
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:9a:d6:1a:ad:a8:a0:1c:c4:b8:70:d4:c1:1f:
01:ad:85:d3:9b:4d:3e:c1:11:57:e9:1f:8f:01:7b:
33:36:9c:b3:a1:41:29:d4:74:75:83:57:56:2f:ed:
20:0f:30:9b:e3:a9:31:3a:69:af:fc:c5:b9:d0:7a:
82:46:2f:f8:96:04:2d:5d:c8:da:29:61:73:1d:1c:
29:45:18:23:e3:14:77:66:e2:bb:ee:90:a7:60:07:
b5:51:a3:f7:d1:a2:36:b5:fc:89:56:56:cf:05:75:
95:23:5b:f0:86:9f:7d:dc:1c:e8:50:99:1e:89:a5:
ff:ed:fe:2d:a9:a0:dd:bc:67:ff:11:e3:bd:14:ba:
e9:b9:3f:cd:12:45:04:fb:2b:10:70:dd:c7:5f:5f:
d9:b8:be:a5:6f:d9:10:10:b4:ad:59:d0:02:18:95:
ea:99:08:d5:6e:e4:c3:4b:a2:84:a6:2a:25:a3:3c:
68:48:6f:d6:84:36:28:4b:29:54:1f:0d:5d:a9:3d:
ff:df:29:57:9e:eb:d1:dc:0d:42:4a:2e:bd:f3:d7:
3b:31:3d:f1:37:22:1d:a4:a2:7b:25:d4:43:0c:e1:
06:28:f0:1b:0f:29:c6:13:ad:a3:cb:63:9e:b8:fa:
34:4a:d9:6b:f8:0e:00:ca:9e:78:5c:51:da:99:0f:
98:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:01:05:E9:F4:DE:50:44:FB:18:C7:D9:D5:79:8B:AD:97:E3:91:79
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/_gEF6fTeUET7GMfZ1XmLrZfjkXk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.58.92.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:7d:c8:40:2e:0b:c8:47:a6:20:82:e6:44:51:c5:9f:2c:a9:
85:8d:1a:e9:6c:11:ec:53:90:cb:30:f0:b0:08:ee:a1:9d:19:
8c:54:16:b6:45:a7:79:12:89:f5:d0:1d:a0:7e:32:3d:1d:85:
2e:79:d4:2d:96:08:bf:2f:0c:ce:44:5f:1b:86:e8:19:74:bf:
a4:f8:ce:2c:f2:04:f6:00:21:c0:45:44:94:93:b8:82:b2:ac:
4f:a4:cb:b9:9b:b7:f9:7f:c8:49:44:b7:44:7e:46:07:46:eb:
4c:da:e1:f6:5a:cf:24:ed:b2:67:71:85:05:1c:22:c0:03:2d:
5e:10:60:37:ca:3c:ab:80:3a:63:d2:d4:e3:51:b1:46:f4:3d:
78:53:e7:02:d4:8d:9b:7f:bf:eb:2d:09:3e:25:a7:39:d1:cb:
96:3d:dc:ed:a7:b4:af:4a:d7:21:3d:30:f8:e3:1b:92:00:86:
83:ec:11:ab:20:f5:90:8c:d1:96:f6:b7:4f:19:fc:41:22:a1:
85:9a:e4:b4:e9:00:cc:90:fb:0c:83:08:54:4c:b1:5b:33:98:
35:c7:be:82:75:f3:37:28:f2:32:4c:9f:14:d5:26:fd:64:10:
e7:c4:da:a5:8c:c2:b4:e5:c2:2e:61:90:e0:33:53:c6:6c:de:
8b:d8:dc:5a
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICD2MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMjA5MTUw
MjQwMTBaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEZFMDEwNUU5RjRERTUw
NDRGQjE4QzdEOUQ1Nzk4QkFEOTdFMzkxNzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDDmtYaraigHMS4cNTBHwGthdObTT7BEVfpH48BezM2nLOhQSnU
dHWDV1Yv7SAPMJvjqTE6aa/8xbnQeoJGL/iWBC1dyNopYXMdHClFGCPjFHdm4rvu
kKdgB7VRo/fRoja1/IlWVs8FdZUjW/CGn33cHOhQmR6Jpf/t/i2poN28Z/8R470U
uum5P80SRQT7KxBw3cdfX9m4vqVv2RAQtK1Z0AIYleqZCNVu5MNLooSmKiWjPGhI
b9aENihLKVQfDV2pPf/fKVee69HcDUJKLr3z1zsxPfE3Ih2konsl1EMM4QYo8BsP
KcYTraPLY564+jRK2Wv4DgDKnnhcUdqZD5h5AgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQU/gEF6fTeUET7GMfZ1XmLrZfjkXkwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvX2dFRjZmVGVVRVQ3R01mWjFYbUxy
WmZqa1hrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANI6XDAN
BgkqhkiG9w0BAQsFAAOCAQEArn3IQC4LyEemIILmRFHFnyyphY0a6WwR7FOQyzDw
sAjuoZ0ZjFQWtkWneRKJ9dAdoH4yPR2FLnnULZYIvy8MzkRfG4boGXS/pPjOLPIE
9gAhwEVElJO4grKsT6TLuZu3+X/ISUS3RH5GB0brTNrh9lrPJO2yZ3GFBRwiwAMt
XhBgN8o8q4A6Y9LU41GxRvQ9eFPnAtSNm3+/6y0JPiWnOdHLlj3c7ae0r0rXIT0w
+OMbkgCGg+wRqyD1kIzRlva3Txn8QSKhhZrktOkAzJD7DIMIVEyxWzOYNce+gnXz
NyjyMkyfFNUm/WQQ58TapYzCtOXCLmGQ4DNTxmzei9jcWg==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:45:09 2025 by rpki-client