Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/dEfyhmjhFqpK25-7MdMMLiicfyw.roa
File: dEfyhmjhFqpK25-7MdMMLiicfyw.roa (raw, json)
Hash identifier: OIqYqlw6VUPAl9CAewds84amvGo53imh6tQ55WU2D2U=
Subject key identifier: 74:47:F2:86:68:E1:16:AA:4A:DB:9F:BB:31:D3:0C:2E:28:9C:7F:2C
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 133A
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/dEfyhmjhFqpK25-7MdMMLiicfyw.roa
Signing time: Tue 19 Sep 2023 01:10:13 +0000
ROA not before: Tue 19 Sep 2023 01:10:13 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24154
IP address blocks: 60.244.0.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4922 (0x133a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 19 01:10:13 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=7447F28668E116AA4ADB9FBB31D30C2E289C7F2C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:ab:9d:9a:e8:b8:1f:2d:e9:a2:6e:ab:51:c2:
26:7b:fc:0b:18:94:a2:bb:7a:65:01:68:d8:4d:64:
76:7b:67:e9:55:d2:db:e6:66:11:23:1e:69:10:85:
66:9f:d1:bd:3c:db:1a:ad:3f:82:3b:82:54:12:ad:
90:24:00:f6:74:9b:5e:a3:f4:5c:51:24:93:ee:04:
f4:0c:61:16:14:d3:c1:1f:4a:d9:86:59:95:81:d6:
c5:93:f0:77:a8:e3:98:28:02:31:b4:45:f6:3f:0a:
6c:6c:a2:11:89:ae:5c:8e:43:2b:bf:9e:c8:5a:5f:
de:18:01:0d:60:78:97:71:2d:97:c1:82:59:62:62:
98:f8:3e:2e:44:85:f3:59:ab:5c:c8:e9:6f:45:00:
14:78:0c:27:30:71:d0:7d:22:21:8d:30:44:f9:36:
d6:ac:3c:06:13:f5:eb:dd:78:16:23:7c:29:da:5f:
69:56:35:a0:a2:78:5e:9d:b1:4a:be:89:7f:e8:8a:
3f:4f:93:7a:11:f5:cf:42:b4:2a:5f:c5:50:e6:d5:
be:2d:14:d7:cc:df:a5:ba:a2:1f:d7:43:ae:e7:50:
ca:c4:be:2c:ba:d0:9f:92:e7:1a:33:58:54:25:85:
c1:72:1a:d3:ca:b0:34:2f:99:ee:6e:b5:1f:e0:eb:
ee:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:47:F2:86:68:E1:16:AA:4A:DB:9F:BB:31:D3:0C:2E:28:9C:7F:2C
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/dEfyhmjhFqpK25-7MdMMLiicfyw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.244.0.0/18
Signature Algorithm: sha256WithRSAEncryption
63:c1:29:5c:91:65:9e:e9:11:6e:d3:77:8e:45:18:58:64:c1:
19:b9:dc:0f:be:1b:6d:24:df:a5:7e:8d:26:d3:bb:ad:28:f5:
7b:c4:d7:44:4e:ff:8a:e3:63:00:fe:ac:a7:bf:77:07:f4:b0:
9e:53:07:1b:ce:46:4f:25:17:bf:01:67:4a:ea:44:34:67:15:
0e:38:2a:61:9f:66:f0:e1:2c:2c:9b:88:a0:67:5c:4d:11:a3:
d2:8e:2f:72:c9:36:87:44:2a:a1:b7:78:fd:86:30:3d:61:e5:
99:c3:eb:12:d4:2c:ac:3f:7b:3a:84:ff:83:0f:96:de:14:2f:
cd:9d:93:c9:cd:4b:a6:b4:3f:d6:15:ec:07:d0:77:87:1d:24:
c0:9b:89:57:ac:6c:57:4f:8d:71:da:19:90:b2:2c:32:70:79:
ca:82:48:1a:bb:41:88:59:6d:ff:00:50:38:e8:e6:a3:24:5a:
72:03:28:22:4c:92:b0:10:cd:46:df:74:7e:d8:6e:3f:c9:e8:
11:a4:76:92:d2:5b:3c:7e:ea:2f:a8:f9:66:ab:f6:cb:04:e3:
3b:08:0b:31:25:d2:67:ef:e2:26:b6:b0:64:fe:57:bc:bf:8a:
00:f1:1d:18:89:a8:34:ba:3e:66:91:c1:6b:af:dd:e8:e1:61:
1f:01:4b:41
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICEzowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMzA5MTkw
MTEwMTNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDc0NDdGMjg2NjhFMTE2
QUE0QURCOUZCQjMxRDMwQzJFMjg5QzdGMkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC4q52a6LgfLemibqtRwiZ7/AsYlKK7emUBaNhNZHZ7Z+lV0tvm
ZhEjHmkQhWaf0b082xqtP4I7glQSrZAkAPZ0m16j9FxRJJPuBPQMYRYU08EfStmG
WZWB1sWT8Heo45goAjG0RfY/CmxsohGJrlyOQyu/nshaX94YAQ1geJdxLZfBglli
Ypj4Pi5EhfNZq1zI6W9FABR4DCcwcdB9IiGNMET5NtasPAYT9evdeBYjfCnaX2lW
NaCieF6dsUq+iX/oij9Pk3oR9c9CtCpfxVDm1b4tFNfM36W6oh/XQ67nUMrEviy6
0J+S5xozWFQlhcFyGtPKsDQvme5utR/g6+7LAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUdEfyhmjhFqpK25+7MdMMLiicfywwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvZEVmeWhtamhGcXBLMjUtN01kTU1M
aWljZnl3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBjz0ADAN
BgkqhkiG9w0BAQsFAAOCAQEAY8EpXJFlnukRbtN3jkUYWGTBGbncD74bbSTfpX6N
JtO7rSj1e8TXRE7/iuNjAP6sp793B/SwnlMHG85GTyUXvwFnSupENGcVDjgqYZ9m
8OEsLJuIoGdcTRGj0o4vcsk2h0Qqobd4/YYwPWHlmcPrEtQsrD97OoT/gw+W3hQv
zZ2Tyc1LprQ/1hXsB9B3hx0kwJuJV6xsV0+NcdoZkLIsMnB5yoJIGrtBiFlt/wBQ
OOjmoyRacgMoIkySsBDNRt90fthuP8noEaR2ktJbPH7qL6j5Zqv2ywTjOwgLMSXS
Z+/iJrawZP5XvL+KAPEdGImoNLo+ZpHBa6/d6OFhHwFLQQ==
-----END CERTIFICATE-----
Generated at Mon Jan 15 22:54:32 2024 by rpki-client on console-ams.rpki-client.org