Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/e3Dzhug28KhYjc7Mk-rc4U4rcoQ.roa
File: e3Dzhug28KhYjc7Mk-rc4U4rcoQ.roa (raw, json)
Hash identifier: AgZlA356VVPqsRY/JjNX4NDyVkA17Tcln/+g3UCIRk4=
Subject key identifier: 7B:70:F3:86:E8:36:F0:A8:58:8D:CE:CC:93:EA:DC:E1:4E:2B:72:84
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1096
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/e3Dzhug28KhYjc7Mk-rc4U4rcoQ.roa
Signing time: Tue 16 May 2023 08:36:22 +0000
ROA not before: Tue 16 May 2023 08:36:22 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9311
IP address blocks: 210.201.80.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4246 (0x1096)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:22 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=7B70F386E836F0A8588DCECC93EADCE14E2B7284
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:f1:21:ce:fe:21:d2:9e:c0:b9:ee:34:79:d1:
43:25:53:ff:f5:ff:be:b9:8c:b3:01:71:86:17:60:
00:92:8d:14:98:a4:12:d9:d9:78:5d:96:c0:12:9b:
d7:1b:45:bc:79:00:ad:95:85:2f:80:18:a4:09:f7:
7a:00:59:81:81:13:26:f8:90:46:38:ec:cd:7c:15:
16:13:d3:9e:18:d4:30:56:ea:a8:e4:6c:0e:cc:4f:
e1:a7:d1:40:dc:6d:18:0a:78:52:2a:3d:b6:02:92:
a2:1c:d6:df:c7:4c:0d:53:ad:c8:a2:47:10:6c:d5:
7a:48:57:0d:77:46:ec:0f:12:02:ee:af:da:67:43:
ff:59:fc:4a:77:91:d6:1f:74:3e:54:6c:67:de:c2:
e9:54:ee:8c:0a:fd:8d:00:f3:71:3d:75:7f:e3:49:
0c:e2:52:79:ef:cf:ea:fc:0c:c8:b4:05:25:46:75:
e7:4e:75:41:db:6d:da:fb:3d:b3:a6:d3:cb:4d:35:
e7:1a:24:15:d3:e8:23:de:61:8f:2e:4e:a4:cc:8d:
ea:2f:e4:12:31:20:1d:7e:31:66:f6:eb:ff:3a:76:
4a:e2:a4:80:18:93:ff:d7:90:12:e5:38:e7:34:0b:
12:1d:97:7f:57:cd:ce:97:61:b6:a3:0e:00:8f:6a:
2a:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:70:F3:86:E8:36:F0:A8:58:8D:CE:CC:93:EA:DC:E1:4E:2B:72:84
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/e3Dzhug28KhYjc7Mk-rc4U4rcoQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.201.80.0/22
Signature Algorithm: sha256WithRSAEncryption
0d:dc:0b:00:2f:96:50:36:e2:f9:57:bd:fc:b7:74:bd:a0:a7:
0b:64:5a:ec:16:05:6f:be:19:fd:7b:61:2f:df:70:72:bd:ee:
88:c7:88:8c:1d:7f:14:de:18:78:d2:2b:ce:71:6a:47:1e:ef:
da:85:24:80:fc:2c:a6:40:58:15:6e:a3:59:d5:86:0a:dd:22:
25:a2:67:75:33:e3:ed:38:0b:55:52:81:72:2d:84:af:55:41:
a7:08:fb:fc:e1:45:26:92:85:79:f6:b9:de:a0:92:db:7a:4f:
89:6d:64:8c:b9:1b:f7:6e:34:f3:95:28:7a:08:9a:a2:85:74:
e4:d3:b6:f4:81:2e:d4:d4:3f:57:0a:d6:ba:92:c7:eb:9b:6f:
c0:c4:68:33:ae:3e:ac:6c:f7:fe:b9:21:86:df:44:ee:1a:01:
22:98:dd:e7:5f:ec:00:38:f6:1d:be:ee:09:2c:29:40:8b:76:
17:35:2d:8f:19:9e:38:09:2f:29:d2:d5:07:d0:0b:be:d0:8c:
dd:50:fb:b6:ed:55:9a:bb:c9:6b:8d:6c:ad:bf:10:39:a0:bf:
1c:56:ee:03:2c:42:c6:e9:5f:2f:26:0e:ef:f2:11:3f:dd:98:
b5:16:16:02:3b:ca:e5:f2:df:af:11:bb:b5:0b:e8:98:a7:7b:
db:c7:0b:cb
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICEJYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMzA1MTYw
ODM2MjJaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDdCNzBGMzg2RTgzNkYw
QTg1ODhEQ0VDQzkzRUFEQ0UxNEUyQjcyODQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDk8SHO/iHSnsC57jR50UMlU//1/765jLMBcYYXYACSjRSYpBLZ
2XhdlsASm9cbRbx5AK2VhS+AGKQJ93oAWYGBEyb4kEY47M18FRYT054Y1DBW6qjk
bA7MT+Gn0UDcbRgKeFIqPbYCkqIc1t/HTA1TrciiRxBs1XpIVw13RuwPEgLur9pn
Q/9Z/Ep3kdYfdD5UbGfewulU7owK/Y0A83E9dX/jSQziUnnvz+r8DMi0BSVGdedO
dUHbbdr7PbOm08tNNecaJBXT6CPeYY8uTqTMjeov5BIxIB1+MWb26/86dkripIAY
k//XkBLlOOc0CxIdl39Xzc6XYbajDgCPaiqXAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUe3Dzhug28KhYjc7Mk+rc4U4rcoQwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvZTNEemh1ZzI4S2hZamM3TWstcmM0
VTRyY29RLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAtLJUDAN
BgkqhkiG9w0BAQsFAAOCAQEADdwLAC+WUDbi+Ve9/Ld0vaCnC2Ra7BYFb74Z/Xth
L99wcr3uiMeIjB1/FN4YeNIrznFqRx7v2oUkgPwspkBYFW6jWdWGCt0iJaJndTPj
7TgLVVKBci2Er1VBpwj7/OFFJpKFefa53qCS23pPiW1kjLkb924085UoegiaooV0
5NO29IEu1NQ/VwrWupLH65tvwMRoM64+rGz3/rkhht9E7hoBIpjd51/sADj2Hb7u
CSwpQIt2FzUtjxmeOAkvKdLVB9ALvtCM3VD7tu1VmrvJa41srb8QOaC/HFbuAyxC
xulfLyYO7/IRP92YtRYWAjvK5fLfrxG7tQvomKd728cLyw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:32 2024 by rpki-client on console-fra.rpki-client.org