Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/jvFDZbJ6IDupMkvHM92yOK_Iv7k.roa
File: jvFDZbJ6IDupMkvHM92yOK_Iv7k.roa (raw, json)
Hash identifier: glHnsjJvIJdpw+rF6zRZOjHdWoa/x3owkfUf143OR9M=
Subject key identifier: 8E:F1:43:65:B2:7A:20:3B:A9:32:4B:C7:33:DD:B2:38:AF:C8:BF:B9
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1305
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/jvFDZbJ6IDupMkvHM92yOK_Iv7k.roa
Signing time: Fri 01 Sep 2023 08:05:17 +0000
ROA not before: Fri 01 Sep 2023 08:05:17 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 22787
IP address blocks: 210.58.89.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4869 (0x1305)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:05:17 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=8EF14365B27A203BA9324BC733DDB238AFC8BFB9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:e9:d8:f9:93:62:37:02:d4:e5:92:81:1c:44:
dc:0f:01:cd:46:ba:c6:4e:db:dc:7d:6c:5f:ac:ee:
fa:22:9b:14:58:8b:d5:dc:3a:df:f9:31:72:3a:9b:
1c:7c:13:2a:2a:42:c2:0b:eb:c7:69:68:79:76:fb:
66:fd:50:74:c8:57:3f:3e:a5:eb:06:09:b6:aa:81:
0a:8c:86:98:b7:6b:9c:de:da:36:4f:27:b5:8d:5c:
20:c6:1a:b7:1c:72:a4:5b:40:91:7c:6f:e3:c3:f5:
5b:b5:f6:7b:29:ef:b9:8a:a7:75:7b:0f:21:6d:44:
8d:72:f9:00:53:42:a2:4d:3d:a0:42:8e:37:84:b3:
a6:53:65:02:f0:9a:14:49:b3:0b:0a:24:07:65:68:
84:6e:de:7b:ee:ae:54:42:5f:e3:6d:e0:e9:7b:9c:
28:cc:3f:bc:43:35:86:6f:cc:37:b1:a3:66:85:b9:
f3:8a:3c:f7:3d:2f:bf:05:23:86:df:6e:14:e8:c0:
ad:a2:69:3b:8b:f9:c1:a0:13:d0:0e:31:49:3d:f2:
ef:a8:55:9e:64:73:a2:50:7d:23:30:f2:8e:3b:54:
a8:a4:e3:a0:0c:c2:51:8b:eb:ad:d2:39:9c:23:38:
ef:94:3b:2a:e9:f9:ff:86:4a:a9:64:0d:fd:2d:ab:
61:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:F1:43:65:B2:7A:20:3B:A9:32:4B:C7:33:DD:B2:38:AF:C8:BF:B9
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/jvFDZbJ6IDupMkvHM92yOK_Iv7k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.58.89.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:05:7a:a2:79:e3:8d:4b:ab:7d:d1:be:46:5b:13:3d:1e:50:
24:6b:d7:72:58:43:f9:21:f1:66:f6:41:35:77:13:11:04:8c:
2a:9d:40:66:78:a8:0a:8a:8f:f5:57:b0:da:7e:d1:d1:a5:1b:
ee:d6:64:54:a3:25:75:5d:71:52:13:71:9b:fe:e6:24:d7:c3:
5d:87:3f:32:fe:75:63:65:27:c0:93:5c:47:8a:4d:a5:39:a8:
8d:24:4f:ac:46:03:03:2d:ce:b9:cc:81:e9:5b:5a:6a:68:1b:
3c:91:a6:01:76:d3:5c:4f:4a:e3:95:aa:52:5c:e2:1f:e1:c5:
34:2a:ba:43:8e:3b:a7:ea:fa:a5:c9:cd:08:27:66:34:7f:1e:
a4:05:d7:c2:78:f1:48:5f:49:27:8f:d5:a6:5e:fe:ef:6f:fb:
ae:bf:62:1a:62:d5:f5:a8:9e:75:9d:72:f0:36:b7:7f:47:b1:
a0:01:69:39:f2:70:1e:cc:bf:0d:90:63:a0:fb:0b:4c:e2:8e:
fa:80:2b:67:ad:6f:28:bf:65:e9:54:35:00:09:17:c3:e8:60:
dc:47:49:2f:73:7b:6c:fb:3c:01:c6:61:a1:cd:15:34:30:e3:
9a:62:85:df:89:b5:81:90:64:00:c6:d1:38:c3:90:da:9c:28:
48:45:9a:5d
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICEwUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMzA5MDEw
ODA1MTdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDhFRjE0MzY1QjI3QTIw
M0JBOTMyNEJDNzMzRERCMjM4QUZDOEJGQjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDj6dj5k2I3AtTlkoEcRNwPAc1GusZO29x9bF+s7voimxRYi9Xc
Ot/5MXI6mxx8EyoqQsIL68dpaHl2+2b9UHTIVz8+pesGCbaqgQqMhpi3a5ze2jZP
J7WNXCDGGrcccqRbQJF8b+PD9Vu19nsp77mKp3V7DyFtRI1y+QBTQqJNPaBCjjeE
s6ZTZQLwmhRJswsKJAdlaIRu3nvurlRCX+Nt4Ol7nCjMP7xDNYZvzDexo2aFufOK
PPc9L78FI4bfbhTowK2iaTuL+cGgE9AOMUk98u+oVZ5kc6JQfSMw8o47VKik46AM
wlGL663SOZwjOO+UOyrp+f+GSqlkDf0tq2FlAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUjvFDZbJ6IDupMkvHM92yOK/Iv7kwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvanZGRFpiSjZJRHVwTWt2SE05MnlP
S19JdjdrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANI6WTAN
BgkqhkiG9w0BAQsFAAOCAQEAOwV6onnjjUurfdG+RlsTPR5QJGvXclhD+SHxZvZB
NXcTEQSMKp1AZnioCoqP9Vew2n7R0aUb7tZkVKMldV1xUhNxm/7mJNfDXYc/Mv51
Y2UnwJNcR4pNpTmojSRPrEYDAy3OucyB6VtaamgbPJGmAXbTXE9K45WqUlziH+HF
NCq6Q447p+r6pcnNCCdmNH8epAXXwnjxSF9JJ4/Vpl7+72/7rr9iGmLV9aiedZ1y
8Da3f0exoAFpOfJwHsy/DZBjoPsLTOKO+oArZ61vKL9l6VQ1AAkXw+hg3EdJL3N7
bPs8AcZhoc0VNDDjmmKF34m1gZBkAMbROMOQ2pwoSEWaXQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:01 2024 by rpki-client on console-ams.rpki-client.org