Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/h_BBQNIYTqqqpENHaAg7lba36W4.roa
File: h_BBQNIYTqqqpENHaAg7lba36W4.roa (raw, json)
Hash identifier: koDFIIw6+NTyHW5oTdgahfkJh+gT847Lu9TzIKAwX+g=
Subject key identifier: 87:F0:41:40:D2:18:4E:AA:AA:A4:43:47:68:08:3B:95:B6:B7:E9:6E
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 10B5
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/h_BBQNIYTqqqpENHaAg7lba36W4.roa
Signing time: Tue 16 May 2023 08:36:32 +0000
ROA not before: Tue 16 May 2023 08:36:32 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9922
IP address blocks: 124.218.68.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4277 (0x10b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:32 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=87F04140D2184EAAAAA4434768083B95B6B7E96E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:58:ca:dc:3f:f1:f8:b7:5b:7a:bc:73:05:91:
4d:ed:c9:af:26:67:37:90:85:b2:34:55:08:db:0b:
98:2e:9a:52:6b:06:2c:fb:bd:a0:25:a2:64:84:35:
2a:77:6b:ec:76:24:74:64:62:2c:73:93:41:23:c7:
e7:7a:9e:f0:09:61:01:5b:c5:ee:f8:1b:5a:2d:45:
43:c9:a5:64:4d:37:2c:70:c1:77:08:07:05:bf:be:
a4:b9:98:2d:b9:af:36:4a:e7:a5:92:1d:cd:b6:75:
00:f0:25:f0:19:2d:0d:c4:dc:cd:50:67:31:e2:56:
e3:bc:c0:dc:5a:05:0b:a7:02:b7:69:e6:32:81:65:
4e:d6:ab:39:84:d6:c8:ff:96:8d:87:a5:f1:a8:3a:
ea:72:1f:be:38:36:86:17:36:7d:5f:ff:bd:75:43:
e4:1f:aa:02:ae:d8:15:c8:db:05:37:84:98:d0:4e:
57:75:d2:90:f4:fd:a7:53:c1:52:05:bb:d0:59:d1:
42:94:46:25:3a:e1:7f:e0:a6:5c:97:ce:c1:38:0f:
ca:9c:5e:e3:e2:3b:2b:dd:20:0c:4a:f2:38:84:7c:
15:62:90:7c:7a:fd:6e:fe:49:88:c4:f3:ef:80:7d:
7c:dc:a8:88:39:bc:f1:cf:c8:ba:cb:89:fb:0a:e6:
46:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:F0:41:40:D2:18:4E:AA:AA:A4:43:47:68:08:3B:95:B6:B7:E9:6E
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/h_BBQNIYTqqqpENHaAg7lba36W4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.218.68.0/22
Signature Algorithm: sha256WithRSAEncryption
5d:40:cd:88:61:2e:76:d7:9c:1b:82:31:2e:34:7d:77:21:4a:
b2:7e:70:00:05:1a:24:57:4c:c0:46:e4:6c:fc:f7:bd:af:70:
53:5d:0d:be:2e:66:ce:2b:6c:74:7a:d6:2c:f3:5a:bf:19:d4:
be:b8:c0:a4:23:68:32:c8:66:2f:fa:87:f7:ce:ce:84:8c:29:
6a:9a:90:c1:8f:29:ac:1a:47:13:f5:63:dc:3c:ac:90:14:df:
c0:bf:52:b2:4b:2a:b0:88:ae:8e:33:45:b5:7d:b6:21:98:49:
38:fe:c5:4e:5f:55:13:3c:b3:6d:53:a1:e9:65:5a:fd:9a:e0:
3e:2e:54:17:51:d5:2a:49:2e:29:c9:63:09:ca:70:0d:3e:18:
d9:43:94:75:e5:59:44:95:cf:d6:bc:39:30:9c:5d:de:bb:f5:
96:7c:13:1d:2e:0b:73:3e:57:93:5c:42:69:c1:4a:1a:4b:8d:
0f:20:0b:e1:b5:cf:46:10:d2:07:4c:48:88:53:6f:9d:4d:9c:
f1:27:0e:42:44:47:d1:3b:67:e4:8e:26:36:bc:6f:b7:98:50:
8e:f0:62:a3:19:60:6a:53:42:4d:ed:f6:9e:83:0b:e9:9b:61:
f0:cc:fb:d3:bb:6c:cc:e5:59:70:d3:8a:28:fd:12:85:97:ba:
e5:77:6f:4e
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICELUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMzA1MTYw
ODM2MzJaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDg3RjA0MTQwRDIxODRF
QUFBQUE0NDM0NzY4MDgzQjk1QjZCN0U5NkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC7WMrcP/H4t1t6vHMFkU3tya8mZzeQhbI0VQjbC5gumlJrBiz7
vaAlomSENSp3a+x2JHRkYixzk0Ejx+d6nvAJYQFbxe74G1otRUPJpWRNNyxwwXcI
BwW/vqS5mC25rzZK56WSHc22dQDwJfAZLQ3E3M1QZzHiVuO8wNxaBQunArdp5jKB
ZU7WqzmE1sj/lo2HpfGoOupyH744NoYXNn1f/711Q+QfqgKu2BXI2wU3hJjQTld1
0pD0/adTwVIFu9BZ0UKURiU64X/gplyXzsE4D8qcXuPiOyvdIAxK8jiEfBVikHx6
/W7+SYjE8++AfXzcqIg5vPHPyLrLifsK5kbPAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUh/BBQNIYTqqqpENHaAg7lba36W4wHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvaF9CQlFOSVlUcXFxcEVOSGFBZzds
YmEzNlc0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAnzaRDAN
BgkqhkiG9w0BAQsFAAOCAQEAXUDNiGEudtecG4IxLjR9dyFKsn5wAAUaJFdMwEbk
bPz3va9wU10Nvi5mzitsdHrWLPNavxnUvrjApCNoMshmL/qH987OhIwpapqQwY8p
rBpHE/Vj3DyskBTfwL9SsksqsIiujjNFtX22IZhJOP7FTl9VEzyzbVOh6WVa/Zrg
Pi5UF1HVKkkuKcljCcpwDT4Y2UOUdeVZRJXP1rw5MJxd3rv1lnwTHS4Lcz5Xk1xC
acFKGkuNDyAL4bXPRhDSB0xIiFNvnU2c8ScOQkRH0Ttn5I4mNrxvt5hQjvBioxlg
alNCTe32noML6Zth8Mz707tszOVZcNOKKP0ShZe65XdvTg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:32 2024 by rpki-client on console-fra.rpki-client.org