Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/kKbl22mucw9DEmtxmYIxWaFUvyo.roa
File: kKbl22mucw9DEmtxmYIxWaFUvyo.roa (raw, json)
Hash identifier: DxupOzCaGxnKTSaguGcsApNjBj1chhJma1i/MUn7xNU=
Subject key identifier: 90:A6:E5:DB:69:AE:73:0F:43:12:6B:71:99:82:31:59:A1:54:BF:2A
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0DA9
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/kKbl22mucw9DEmtxmYIxWaFUvyo.roa
Signing time: Wed 29 Sep 2021 02:39:24 +0000
ROA not before: Wed 29 Sep 2021 02:39:24 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17709
IP address blocks: 103.36.116.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3497 (0xda9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:39:24 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=90A6E5DB69AE730F43126B7199823159A154BF2A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:d4:ce:d1:57:ca:11:a1:51:9d:93:86:ad:e3:
46:e2:e6:cb:dc:25:5b:cd:3f:ae:43:b2:ca:1c:93:
07:84:19:2f:0c:2f:0b:03:f0:d1:fb:d9:a5:2e:fc:
6a:d6:53:1c:b3:f4:57:95:e3:53:24:79:9e:ee:2d:
3c:44:a5:df:c8:da:8d:b3:09:bd:70:1e:de:85:60:
27:59:42:ac:03:82:fb:cf:08:0b:d8:f9:0c:f2:dd:
b9:05:df:0b:ca:4f:08:e0:b5:64:0c:61:02:a2:5d:
b4:7a:c3:e5:7d:7b:59:f0:3a:66:0a:b8:aa:29:e3:
d5:78:ef:18:fd:af:74:fb:3a:2d:85:8c:e5:ef:0c:
e5:c3:0e:41:36:86:e7:0d:5e:5b:91:28:cc:54:b3:
1a:4f:0b:e5:a0:09:38:1b:a6:be:dc:7c:a4:78:1f:
ea:6c:d2:ac:2e:13:c7:e8:20:0e:07:80:90:d8:cf:
c4:ee:d8:51:fb:6c:09:ee:fd:66:04:7f:da:bc:87:
02:06:7c:f6:cb:ef:6b:21:0f:e9:86:d8:f1:32:6c:
dc:d9:8e:55:df:72:0d:86:dc:6e:93:1f:c2:cb:8e:
57:ed:c1:73:38:9b:88:7a:d7:d0:43:05:1c:29:c9:
d5:90:6c:87:68:57:6f:d9:5f:08:a5:68:46:48:64:
0d:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:A6:E5:DB:69:AE:73:0F:43:12:6B:71:99:82:31:59:A1:54:BF:2A
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/kKbl22mucw9DEmtxmYIxWaFUvyo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.36.116.0/22
Signature Algorithm: sha256WithRSAEncryption
0f:41:09:47:8b:48:af:12:c6:03:84:bb:0d:01:2f:74:39:29:
20:31:f4:90:9f:5a:fe:55:5e:7d:e1:cb:b8:7a:36:1a:b0:bf:
60:81:f4:d8:e2:6e:03:2b:b5:66:2e:fb:df:f6:01:cf:e2:e3:
86:cf:3e:1a:a8:78:14:f2:46:e7:52:3f:0d:d7:9b:77:d3:ff:
62:75:a9:92:36:81:4f:02:58:a9:0e:e3:d0:2c:c4:23:a4:9c:
95:9f:c5:ae:10:04:6a:e8:40:23:18:15:36:d1:bd:dc:08:54:
b0:e2:f9:41:8d:e1:87:31:17:c2:d1:6b:4a:60:c2:61:df:cd:
fd:9e:7a:97:78:e9:94:cf:5d:e3:b6:30:3e:e1:a8:c2:c1:89:
96:1c:a5:53:aa:fe:f0:ee:4c:78:0d:5c:97:1e:c9:ec:69:0b:
a2:f0:26:c5:56:2c:49:3e:8c:c7:ea:a2:40:61:b3:85:24:50:
20:59:20:78:d7:8f:05:b8:bb:71:aa:95:3f:dd:40:bd:a7:a0:
88:3f:78:33:48:d2:b9:d6:be:2a:96:ca:33:7c:98:55:85:d7:
25:24:f5:44:b5:89:75:f8:ad:bd:89:44:4c:75:8d:96:ae:03:
33:b3:a3:72:b8:c8:8e:53:91:71:bb:3b:28:bf:58:17:01:8d:
30:f4:f4:ed
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDakwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMTA5Mjkw
MjM5MjRaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDkwQTZFNURCNjlBRTcz
MEY0MzEyNkI3MTk5ODIzMTU5QTE1NEJGMkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDI1M7RV8oRoVGdk4at40bi5svcJVvNP65DssockweEGS8MLwsD
8NH72aUu/GrWUxyz9FeV41MkeZ7uLTxEpd/I2o2zCb1wHt6FYCdZQqwDgvvPCAvY
+Qzy3bkF3wvKTwjgtWQMYQKiXbR6w+V9e1nwOmYKuKop49V47xj9r3T7Oi2FjOXv
DOXDDkE2hucNXluRKMxUsxpPC+WgCTgbpr7cfKR4H+ps0qwuE8foIA4HgJDYz8Tu
2FH7bAnu/WYEf9q8hwIGfPbL72shD+mG2PEybNzZjlXfcg2G3G6TH8LLjlftwXM4
m4h619BDBRwpydWQbIdoV2/ZXwilaEZIZA2hAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUkKbl22mucw9DEmtxmYIxWaFUvyowHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wva0tibDIybXVjdzlERW10eG1ZSXhX
YUZVdnlvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmckdDAN
BgkqhkiG9w0BAQsFAAOCAQEAD0EJR4tIrxLGA4S7DQEvdDkpIDH0kJ9a/lVefeHL
uHo2GrC/YIH02OJuAyu1Zi773/YBz+Ljhs8+Gqh4FPJG51I/Ddebd9P/YnWpkjaB
TwJYqQ7j0CzEI6SclZ/FrhAEauhAIxgVNtG93AhUsOL5QY3hhzEXwtFrSmDCYd/N
/Z56l3jplM9d47YwPuGowsGJlhylU6r+8O5MeA1clx7J7GkLovAmxVYsST6Mx+qi
QGGzhSRQIFkgeNePBbi7caqVP91AvaegiD94M0jSuda+KpbKM3yYVYXXJST1RLWJ
dfitvYlETHWNlq4DM7OjcrjIjlORcbs7KL9YFwGNMPT07Q==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:32 2024 by rpki-client on console-fra.rpki-client.org