Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/fs_WdhnZEAryKcNlrPwkN6kA9JM.roa
File: fs_WdhnZEAryKcNlrPwkN6kA9JM.roa (raw, json)
Hash identifier: 0iUZ8zBCLh9mR5YHFGsdGlWrt0C6OMF7Y3J5U0lVZfs=
Subject key identifier: 7E:CF:D6:76:19:D9:10:0A:F2:29:C3:65:AC:FC:24:37:A9:00:F4:93
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 10B4
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/fs_WdhnZEAryKcNlrPwkN6kA9JM.roa
Signing time: Tue 16 May 2023 08:36:31 +0000
ROA not before: Tue 16 May 2023 08:36:31 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 7482
IP address blocks: 210.200.0.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4276 (0x10b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:31 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=7ECFD67619D9100AF229C365ACFC2437A900F493
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:4e:fd:80:60:29:25:70:e6:59:0d:9d:f1:ac:
69:e2:81:82:6e:6a:a2:a4:4e:27:2c:f4:6b:47:6a:
fb:3c:05:c4:e4:3f:00:3c:e2:44:6f:9f:2d:2d:52:
27:9e:41:46:06:c6:27:a1:aa:2f:05:9a:64:85:3e:
bd:7d:ae:43:39:f9:13:4b:25:76:d9:c8:cd:38:8a:
b1:23:cc:06:62:69:6f:11:8a:fb:4c:b1:b1:4d:01:
b1:72:92:a2:8c:7c:25:c2:7a:dd:fa:f3:e9:84:50:
aa:3e:e7:f5:06:16:87:12:2c:46:37:fd:81:68:ab:
40:16:1b:ee:f1:bb:83:48:0d:b0:d4:6f:3e:73:47:
dc:09:15:65:3a:a7:7b:ae:7e:cb:e3:14:6e:be:70:
a2:0e:5b:25:c4:a5:89:e9:eb:30:fc:d5:f1:fe:39:
a5:4f:b8:5d:10:3d:be:fd:ec:71:28:6a:62:b1:4c:
72:dd:3a:b4:f8:35:83:5c:91:3e:3e:cc:fe:ac:47:
e4:29:7f:1c:9f:6c:a2:09:39:2a:f8:d5:31:c5:fb:
f1:30:0c:f2:47:da:ca:d9:a3:d0:19:e5:61:8c:cf:
59:85:0e:78:7d:8c:eb:ff:ab:b5:1b:ce:11:97:b2:
1d:85:3c:38:ab:1d:2b:1d:99:f7:0f:24:ef:8b:2b:
d1:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:CF:D6:76:19:D9:10:0A:F2:29:C3:65:AC:FC:24:37:A9:00:F4:93
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/fs_WdhnZEAryKcNlrPwkN6kA9JM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.200.0.0/18
Signature Algorithm: sha256WithRSAEncryption
12:e5:e5:e6:0d:f9:00:d3:bc:db:37:e4:e7:e6:7a:1c:6b:cf:
e1:62:48:57:05:92:c5:0e:88:81:51:80:bf:18:95:eb:29:7d:
f2:35:70:e8:1c:81:12:eb:19:cc:2c:8a:f2:04:37:d3:58:16:
56:9a:d3:b3:d4:72:66:9a:4b:34:77:f2:ca:4b:92:d7:2b:42:
b6:5f:1a:e1:77:4c:73:31:05:5e:db:6f:36:d6:91:dd:13:70:
98:97:91:57:e5:30:cf:52:c4:f5:91:4d:15:8f:69:42:a4:ed:
ac:f4:b7:2b:ff:86:5c:29:ce:e3:ab:ce:3a:2d:e4:dc:b7:33:
f8:7a:8c:a5:08:02:4d:c8:44:3f:94:87:b8:ec:7d:aa:cc:84:
61:44:8a:2a:b6:9c:ca:9f:e2:09:2b:35:5e:53:2b:8b:e7:de:
ac:8b:fd:62:c5:8b:81:f1:e1:93:53:5d:ed:45:0d:72:9c:69:
ea:1f:bd:4b:c0:7e:fd:4f:c6:ad:d1:88:96:24:57:51:90:a2:
cf:c3:97:10:52:1d:06:91:7f:b3:ac:69:25:df:f4:f8:6b:61:
4b:75:52:53:4f:f0:6c:2e:e9:e7:a7:66:e7:da:32:18:53:29:
bf:f0:3e:13:9e:1c:6e:0f:e6:cb:5d:8a:51:df:57:2d:48:fd:
0c:25:24:ea
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICELQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMzA1MTYw
ODM2MzFaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDdFQ0ZENjc2MTlEOTEw
MEFGMjI5QzM2NUFDRkMyNDM3QTkwMEY0OTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCoTv2AYCklcOZZDZ3xrGnigYJuaqKkTics9GtHavs8BcTkPwA8
4kRvny0tUieeQUYGxiehqi8FmmSFPr19rkM5+RNLJXbZyM04irEjzAZiaW8RivtM
sbFNAbFykqKMfCXCet368+mEUKo+5/UGFocSLEY3/YFoq0AWG+7xu4NIDbDUbz5z
R9wJFWU6p3uufsvjFG6+cKIOWyXEpYnp6zD81fH+OaVPuF0QPb797HEoamKxTHLd
OrT4NYNckT4+zP6sR+QpfxyfbKIJOSr41THF+/EwDPJH2srZo9AZ5WGMz1mFDnh9
jOv/q7UbzhGXsh2FPDirHSsdmfcPJO+LK9FDAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUfs/WdhnZEAryKcNlrPwkN6kA9JMwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvZnNfV2RoblpFQXJ5S2NObHJQd2tO
NmtBOUpNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBtLIADAN
BgkqhkiG9w0BAQsFAAOCAQEAEuXl5g35ANO82zfk5+Z6HGvP4WJIVwWSxQ6IgVGA
vxiV6yl98jVw6ByBEusZzCyK8gQ301gWVprTs9RyZppLNHfyykuS1ytCtl8a4XdM
czEFXttvNtaR3RNwmJeRV+Uwz1LE9ZFNFY9pQqTtrPS3K/+GXCnO46vOOi3k3Lcz
+HqMpQgCTchEP5SHuOx9qsyEYUSKKracyp/iCSs1XlMri+ferIv9YsWLgfHhk1Nd
7UUNcpxp6h+9S8B+/U/GrdGIliRXUZCiz8OXEFIdBpF/s6xpJd/0+GthS3VSU0/w
bC7p56dm59oyGFMpv/A+E54cbg/my12KUd9XLUj9DCUk6g==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:01 2024 by rpki-client on console-ams.rpki-client.org