Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/h9LdV3B7YRWSx6oXE3RMcOmo4UA.roa
File: h9LdV3B7YRWSx6oXE3RMcOmo4UA.roa (raw, json)
Hash identifier: KjWY9PGDKsqSw+q62NnMad8ZiJMvib8T148FsN6jhWI=
Subject key identifier: 87:D2:DD:57:70:7B:61:15:92:C7:AA:17:13:74:4C:70:E9:A8:E1:40
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/h9LdV3B7YRWSx6oXE3RMcOmo4UA.roa
Signing time: Thu 15 Sep 2022 02:39:45 +0000
ROA not before: Thu 15 Sep 2022 02:39:45 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18419
IP address blocks: 218.35.128.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:39:45 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=87D2DD57707B611592C7AA1713744C70E9A8E140
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:51:8a:13:30:05:dd:42:d1:15:12:70:ad:b0:
dd:14:c5:08:84:15:45:e8:da:4b:cc:c6:0d:39:16:
fc:1c:70:3e:68:f2:b4:a6:e3:00:10:13:2b:19:b4:
5e:be:01:f6:de:f3:b8:9d:0c:ce:e5:be:14:c4:14:
0e:df:76:66:19:21:d3:c8:2d:52:92:f9:3d:6d:44:
7a:d1:47:b6:43:42:cf:c6:9b:b7:6a:3f:15:88:70:
b7:02:16:70:d1:56:49:84:c1:5c:26:1f:7f:89:7f:
33:f0:fc:f6:cd:c6:40:e8:43:90:94:01:3e:d7:4a:
e2:9e:c8:bc:77:5f:4f:86:d0:fe:e8:57:c7:a5:2c:
ac:d0:d5:44:16:49:ba:7c:fd:2c:1f:9c:4a:1d:f4:
d4:62:5f:7d:f9:42:23:94:dc:39:1f:b9:dc:e1:65:
06:c2:25:70:1e:f6:0a:a4:93:2f:a6:7a:b5:aa:53:
70:30:4c:d4:98:36:c6:35:4e:82:4f:9e:0c:bc:03:
0d:ed:83:a2:3a:01:1b:6a:6a:57:42:15:08:01:e0:
51:6b:9d:c6:ce:a8:6d:ac:b1:d7:13:a1:59:b8:a0:
8a:1f:55:23:09:4c:4c:05:1f:d6:83:07:4b:88:8b:
d1:20:8b:00:eb:1c:eb:ef:83:67:21:a3:a6:a2:7d:
fd:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:D2:DD:57:70:7B:61:15:92:C7:AA:17:13:74:4C:70:E9:A8:E1:40
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/h9LdV3B7YRWSx6oXE3RMcOmo4UA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.35.128.0/18
Signature Algorithm: sha256WithRSAEncryption
57:c9:b9:29:09:2e:9b:94:55:cf:18:54:22:da:c2:41:18:15:
67:c2:a6:2d:eb:c9:5f:86:76:5c:94:97:a3:f1:32:3b:ec:09:
85:7f:92:45:07:28:c9:a7:f9:fd:54:43:88:c1:2f:b6:3a:35:
bc:ab:38:8c:20:0a:39:7c:ca:39:cd:a4:6e:f8:a5:67:1d:27:
61:86:06:97:ba:2b:68:48:c4:e8:55:20:23:42:ea:32:a5:8e:
a6:de:d9:02:45:02:ab:45:a4:d4:2d:af:71:c1:f1:fd:80:d0:
0b:c6:83:4f:43:08:f9:c0:59:2f:17:32:0a:19:13:cf:fe:d2:
69:c2:dc:32:6e:2f:ec:3a:7f:b3:5f:d7:ef:78:02:da:ea:50:
58:03:d2:4f:6d:de:40:d2:80:8d:e6:f6:56:02:fe:a6:18:44:
bf:2d:29:e3:74:4b:e1:37:01:dd:5f:17:5e:27:80:37:e6:53:
b8:6c:be:52:87:84:17:1b:92:90:d9:3a:cb:9d:90:04:62:5b:
da:b7:13:d7:58:07:1b:67:93:ff:0c:7c:9a:bf:94:d1:f6:10:
a3:b2:fb:d2:5c:8b:8e:09:e5:82:69:d6:59:af:0d:5d:32:cc:
67:bc:55:ab:d3:b1:a2:cb:ab:46:b2:aa:09:11:58:14:52:62:
5e:f8:73:e7
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICD2MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMjA5MTUw
MjM5NDVaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDg3RDJERDU3NzA3QjYx
MTU5MkM3QUExNzEzNzQ0QzcwRTlBOEUxNDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDGUYoTMAXdQtEVEnCtsN0UxQiEFUXo2kvMxg05FvwccD5o8rSm
4wAQEysZtF6+Afbe87idDM7lvhTEFA7fdmYZIdPILVKS+T1tRHrRR7ZDQs/Gm7dq
PxWIcLcCFnDRVkmEwVwmH3+JfzPw/PbNxkDoQ5CUAT7XSuKeyLx3X0+G0P7oV8el
LKzQ1UQWSbp8/SwfnEod9NRiX335QiOU3DkfudzhZQbCJXAe9gqkky+merWqU3Aw
TNSYNsY1ToJPngy8Aw3tg6I6ARtqaldCFQgB4FFrncbOqG2ssdcToVm4oIofVSMJ
TEwFH9aDB0uIi9EgiwDrHOvvg2cho6aiff3xAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUh9LdV3B7YRWSx6oXE3RMcOmo4UAwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvaDlMZFYzQjdZUldTeDZvWEUzUk1j
T21vNFVBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBtojgDAN
BgkqhkiG9w0BAQsFAAOCAQEAV8m5KQkum5RVzxhUItrCQRgVZ8KmLevJX4Z2XJSX
o/EyO+wJhX+SRQcoyaf5/VRDiMEvtjo1vKs4jCAKOXzKOc2kbvilZx0nYYYGl7or
aEjE6FUgI0LqMqWOpt7ZAkUCq0Wk1C2vccHx/YDQC8aDT0MI+cBZLxcyChkTz/7S
acLcMm4v7Dp/s1/X73gC2upQWAPST23eQNKAjeb2VgL+phhEvy0p43RL4TcB3V8X
XieAN+ZTuGy+UoeEFxuSkNk6y52QBGJb2rcT11gHG2eT/wx8mr+U0fYQo7L70lyL
jgnlgmnWWa8NXTLMZ7xVq9OxosurRrKqCRFYFFJiXvhz5w==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:01 2024 by rpki-client on console-ams.rpki-client.org