Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/jzRlnBUG4tztwZps1odsUeXXI4Y.roa
File: jzRlnBUG4tztwZps1odsUeXXI4Y.roa (raw, json)
Hash identifier: 9P9Ya1fC80WjG371SgJ4IBvZqOhE7T3M6JZBumjvHW0=
Subject key identifier: 8F:34:65:9C:15:06:E2:DC:ED:C1:9A:6C:D6:87:6C:51:E5:D7:23:86
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0971
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/jzRlnBUG4tztwZps1odsUeXXI4Y.roa
Signing time: Tue 29 Sep 2020 10:01:50 +0000
ROA not before: Tue 29 Sep 2020 10:01:50 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 7482
IP address blocks: 210.202.192.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2417 (0x971)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:01:50 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=8F34659C1506E2DCEDC19A6CD6876C51E5D72386
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:e4:d8:23:16:57:2a:19:60:10:7c:4e:5d:5b:
a9:69:14:b5:0c:b4:48:1e:d6:88:7e:de:8a:b9:51:
85:28:83:50:d7:b0:4d:9d:79:5c:e3:5f:3e:e0:f1:
7f:d5:34:77:6d:89:f5:ff:87:89:ca:85:a8:f3:15:
eb:ce:e2:f2:a5:a9:4a:85:57:48:cd:33:fc:ed:44:
c6:30:2e:0f:7d:01:d9:9b:99:fa:e0:4a:01:47:89:
eb:f3:a9:b0:92:d0:2e:55:19:54:9e:f5:59:22:0e:
2a:73:7f:06:ef:06:82:73:a9:3e:6a:62:1d:93:77:
8a:ac:51:23:57:6b:db:b1:79:7a:b9:b8:d7:cc:a1:
d8:4e:ba:39:70:7a:6f:9a:9f:7c:b5:61:c5:4f:81:
86:ed:64:fe:a1:00:36:76:1f:fd:2f:98:2f:fc:ca:
e4:74:f9:f8:a1:62:87:35:d1:a4:c8:ef:c9:04:03:
b2:3f:b0:48:cc:f8:21:a1:4e:be:e0:21:de:d2:df:
02:c4:ff:98:de:90:be:0d:b2:ec:92:66:b6:82:37:
6b:a9:45:07:53:6c:ee:16:48:a3:86:ee:1f:07:f4:
82:6e:d7:17:fb:b3:25:0a:5f:3b:6c:52:73:47:9b:
07:ac:0e:8c:f8:89:e8:5f:ce:21:9f:72:32:33:37:
98:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:34:65:9C:15:06:E2:DC:ED:C1:9A:6C:D6:87:6C:51:E5:D7:23:86
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/jzRlnBUG4tztwZps1odsUeXXI4Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.202.192.0/18
Signature Algorithm: sha256WithRSAEncryption
89:70:fc:3c:20:2e:18:9c:08:9e:ec:33:a7:e7:a0:bb:0d:bb:
60:94:89:04:bc:0a:83:42:b3:11:88:e1:aa:e8:bc:4c:fc:00:
ad:b3:f0:fd:c0:89:b4:24:2b:cf:ca:0c:02:52:e0:eb:46:5b:
a5:05:d5:70:6d:22:54:8f:ac:0c:87:a2:c2:ba:b7:d7:51:d7:
bd:f8:ef:a6:bb:0c:77:6a:0d:3b:b7:a8:7a:27:5d:df:52:48:
c1:22:de:18:a6:91:3b:ae:99:a8:48:d7:9f:9d:f6:f2:3d:5c:
55:45:5d:ee:12:63:79:00:80:c7:c5:7c:23:51:87:47:06:e4:
29:8f:bb:f6:a0:82:0b:52:27:94:e4:98:88:57:b7:6d:8b:8a:
ca:11:34:40:03:bb:4a:4d:e3:03:df:d8:28:94:72:ad:c8:27:
d6:a5:95:f4:03:27:c8:0d:1c:e7:15:99:fa:69:be:c4:08:87:
7d:23:5b:c8:2d:c4:22:4d:8a:4d:a8:0b:8e:1a:95:43:80:c0:
86:92:30:2c:00:a7:cd:b6:20:db:ab:12:d5:99:17:55:d1:df:
86:29:a8:c4:da:f8:88:83:f8:81:86:87:9f:54:13:59:c3:a6:
4b:93:78:9b:0c:94:ac:69:00:c5:88:6e:40:6c:c6:01:67:d6:
21:ba:1f:02
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICCXEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMDA5Mjkx
MDAxNTBaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDhGMzQ2NTlDMTUwNkUy
RENFREMxOUE2Q0Q2ODc2QzUxRTVENzIzODYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCj5NgjFlcqGWAQfE5dW6lpFLUMtEge1oh+3oq5UYUog1DXsE2d
eVzjXz7g8X/VNHdtifX/h4nKhajzFevO4vKlqUqFV0jNM/ztRMYwLg99Admbmfrg
SgFHievzqbCS0C5VGVSe9VkiDipzfwbvBoJzqT5qYh2Td4qsUSNXa9uxeXq5uNfM
odhOujlwem+an3y1YcVPgYbtZP6hADZ2H/0vmC/8yuR0+fihYoc10aTI78kEA7I/
sEjM+CGhTr7gId7S3wLE/5jekL4NsuySZraCN2upRQdTbO4WSKOG7h8H9IJu1xf7
syUKXztsUnNHmwesDoz4iehfziGfcjIzN5gDAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUjzRlnBUG4tztwZps1odsUeXXI4YwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvanpSbG5CVUc0dHp0d1pwczFvZHNV
ZVhYSTRZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBtLKwDAN
BgkqhkiG9w0BAQsFAAOCAQEAiXD8PCAuGJwInuwzp+eguw27YJSJBLwKg0KzEYjh
qui8TPwArbPw/cCJtCQrz8oMAlLg60ZbpQXVcG0iVI+sDIeiwrq311HXvfjvprsM
d2oNO7eoeidd31JIwSLeGKaRO66ZqEjXn5328j1cVUVd7hJjeQCAx8V8I1GHRwbk
KY+79qCCC1InlOSYiFe3bYuKyhE0QAO7Sk3jA9/YKJRyrcgn1qWV9AMnyA0c5xWZ
+mm+xAiHfSNbyC3EIk2KTagLjhqVQ4DAhpIwLACnzbYg26sS1ZkXVdHfhimoxNr4
iIP4gYaHn1QTWcOmS5N4mwyUrGkAxYhuQGzGAWfWIbofAg==
-----END CERTIFICATE-----
Generated at Sun Feb 16 21:10:16 2025 by rpki-client