Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/jMtsXwuiBhucbnTP_0e94lD6KIU.roa
File: jMtsXwuiBhucbnTP_0e94lD6KIU.roa (raw, json)
Hash identifier: lptKrT8ZbRH5Hg8qoDNmPtKo3o3xF1eXF2I9oUgRAbY=
Subject key identifier: 8C:CB:6C:5F:0B:A2:06:1B:9C:6E:74:CF:FF:47:BD:E2:50:FA:28:85
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1062
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/jMtsXwuiBhucbnTP_0e94lD6KIU.roa
Signing time: Tue 16 May 2023 08:36:07 +0000
ROA not before: Tue 16 May 2023 08:36:07 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9311
IP address blocks: 210.63.239.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4194 (0x1062)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:07 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=8CCB6C5F0BA2061B9C6E74CFFF47BDE250FA2885
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:22:d7:c1:f1:00:06:ab:45:30:66:e4:f1:b7:
a3:7b:8e:d9:b2:73:71:e4:44:69:ef:7b:5d:00:28:
f2:9a:3a:12:67:e9:a3:47:eb:b5:b3:dd:97:8e:3a:
74:6f:96:cf:c0:b3:93:98:98:90:a4:ad:b4:dc:97:
ef:ef:e5:a6:92:1c:27:2f:8d:54:56:3d:9b:ec:40:
a8:7b:8e:e3:33:cb:61:91:e3:d9:3a:86:0b:5c:df:
d0:71:5f:4c:95:8a:50:c5:cd:fd:b5:64:ab:08:96:
02:03:b8:9f:4a:1c:af:f5:a8:19:34:c1:d2:4e:3a:
9d:0c:e9:d5:53:3e:3d:59:46:f0:6f:e1:93:87:91:
3e:ea:28:11:62:67:ef:3f:8c:21:d3:b3:2c:19:38:
72:6e:22:04:82:0e:29:fb:0a:52:ce:6f:e5:f4:a8:
86:46:f5:94:3b:9f:fc:7e:a0:80:25:c6:a3:5f:78:
43:be:39:9a:8b:b2:b3:0a:dc:59:75:fc:bb:7e:29:
5f:37:a7:a7:ea:c1:fa:87:a2:8c:02:5f:d5:d2:07:
28:84:49:43:73:22:56:85:19:99:d2:30:ce:f4:1e:
54:da:68:fd:55:75:ac:ac:1b:ce:e2:f7:ae:f9:ad:
00:58:08:ff:62:ad:16:3f:3f:f0:64:77:71:be:2f:
a6:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:CB:6C:5F:0B:A2:06:1B:9C:6E:74:CF:FF:47:BD:E2:50:FA:28:85
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/jMtsXwuiBhucbnTP_0e94lD6KIU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.63.239.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:9b:2a:17:a1:5d:d8:fe:6c:d2:73:8d:59:b1:88:1c:bb:aa:
b0:c2:7b:b6:88:cf:c1:9b:90:78:e0:a9:90:85:1a:26:83:90:
5c:34:a1:97:50:65:d3:4f:aa:1d:95:7d:c9:46:21:eb:55:21:
45:59:c3:d3:a3:fd:67:5a:19:ea:1e:da:f0:5b:2b:19:31:86:
cb:47:2e:06:91:70:a0:e4:18:4f:05:19:f1:ab:da:47:df:27:
56:e5:6b:b1:e7:31:9d:45:a5:96:96:53:9f:ea:7a:fc:bf:1c:
5c:e0:f8:20:02:5b:13:67:f2:25:3e:f1:df:7b:f7:f9:f1:b3:
e9:40:b6:f1:3b:ab:3d:ba:d3:3b:9b:9e:68:34:d2:58:89:e5:
de:77:76:70:91:41:98:18:0d:65:2d:2c:78:58:8f:f4:84:95:
86:61:e6:db:b1:01:43:36:b1:9e:e6:df:32:72:fc:a4:e5:fa:
fd:67:ed:3a:58:f5:ec:bd:3c:6c:c7:92:3e:27:65:2f:03:e3:
bb:06:2a:05:ac:01:95:25:f1:5f:72:76:76:39:12:e8:87:bb:
c7:84:c1:54:f5:e5:25:98:ea:c5:26:ff:66:18:ea:cc:4f:47:
94:27:f8:df:5b:38:76:82:8e:c4:90:08:8e:e0:e2:0d:93:1a:
b3:e5:e6:d5
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICEGIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMzA1MTYw
ODM2MDdaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDhDQ0I2QzVGMEJBMjA2
MUI5QzZFNzRDRkZGNDdCREUyNTBGQTI4ODUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC+ItfB8QAGq0UwZuTxt6N7jtmyc3HkRGnve10AKPKaOhJn6aNH
67Wz3ZeOOnRvls/As5OYmJCkrbTcl+/v5aaSHCcvjVRWPZvsQKh7juMzy2GR49k6
hgtc39BxX0yVilDFzf21ZKsIlgIDuJ9KHK/1qBk0wdJOOp0M6dVTPj1ZRvBv4ZOH
kT7qKBFiZ+8/jCHTsywZOHJuIgSCDin7ClLOb+X0qIZG9ZQ7n/x+oIAlxqNfeEO+
OZqLsrMK3Fl1/Lt+KV83p6fqwfqHoowCX9XSByiESUNzIlaFGZnSMM70HlTaaP1V
daysG87i9675rQBYCP9irRY/P/Bkd3G+L6ZxAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUjMtsXwuiBhucbnTP/0e94lD6KIUwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvak10c1h3dWlCaHVjYm5UUF8wZTk0
bEQ2S0lVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANI/7zAN
BgkqhkiG9w0BAQsFAAOCAQEATJsqF6Fd2P5s0nONWbGIHLuqsMJ7tojPwZuQeOCp
kIUaJoOQXDShl1Bl00+qHZV9yUYh61UhRVnD06P9Z1oZ6h7a8FsrGTGGy0cuBpFw
oOQYTwUZ8avaR98nVuVrsecxnUWllpZTn+p6/L8cXOD4IAJbE2fyJT7x33v3+fGz
6UC28TurPbrTO5ueaDTSWInl3nd2cJFBmBgNZS0seFiP9ISVhmHm27EBQzaxnubf
MnL8pOX6/WftOlj17L08bMeSPidlLwPjuwYqBawBlSXxX3J2djkS6Ie7x4TBVPXl
JZjqxSb/ZhjqzE9HlCf431s4doKOxJAIjuDiDZMas+Xm1Q==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:32 2024 by rpki-client on console-fra.rpki-client.org