Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/knh4j8XDpvA-mpv1SEauaeEBIoY.roa
File: knh4j8XDpvA-mpv1SEauaeEBIoY.roa (raw, json)
Hash identifier: Fd7NoFRUw1VzYtKvofj7SyS22964x3uMaf3y3NX47ro=
Subject key identifier: 92:78:78:8F:C5:C3:A6:F0:3E:9A:9B:F5:48:46:AE:69:E1:01:22:86
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0DBF
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/knh4j8XDpvA-mpv1SEauaeEBIoY.roa
Signing time: Wed 29 Sep 2021 02:39:31 +0000
ROA not before: Wed 29 Sep 2021 02:39:31 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 7482
IP address blocks: 203.79.216.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3519 (0xdbf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:39:31 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=9278788FC5C3A6F03E9A9BF54846AE69E1012286
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:c5:bd:55:53:fd:b0:b2:48:e6:5a:d6:c6:74:
1d:7b:67:96:d5:c6:74:4b:ca:4d:e1:7f:20:e8:9f:
be:b1:2d:d3:84:7f:e1:a2:47:f2:52:a9:b6:f6:86:
10:ab:0d:a3:a2:a3:ff:73:9b:b0:57:ad:02:54:d1:
4d:29:b2:b2:18:d9:93:9a:09:a9:61:0e:4e:a6:a8:
36:57:8a:c6:0e:60:d7:d0:60:f1:7b:61:9d:28:30:
26:93:43:b4:70:78:6b:75:01:3e:f3:32:61:7d:d2:
c9:9d:d9:c8:9e:5a:0b:82:e9:6b:88:68:da:b5:91:
e8:05:53:87:d6:27:33:c5:3a:ea:8a:41:33:d1:37:
14:9b:68:46:6e:f4:0c:04:8f:b7:cf:a5:6d:87:42:
d4:33:65:2d:cc:74:cd:c9:bd:7e:37:62:bb:f3:0a:
17:2e:b5:47:b2:7c:03:03:59:9c:24:77:54:bf:42:
46:be:fe:e0:62:00:de:bd:07:b6:3a:e4:1b:be:62:
7e:1f:a4:14:72:34:20:05:5b:b8:76:75:5a:fa:25:
dc:95:37:9f:77:fd:cd:c8:a3:ce:d3:5c:5a:89:aa:
6b:20:b4:65:aa:54:0e:aa:ab:cc:1b:ca:d6:75:cf:
07:17:9d:3a:d8:e7:4e:07:aa:e1:da:b9:18:db:1c:
c6:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:78:78:8F:C5:C3:A6:F0:3E:9A:9B:F5:48:46:AE:69:E1:01:22:86
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/knh4j8XDpvA-mpv1SEauaeEBIoY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.79.216.0/22
Signature Algorithm: sha256WithRSAEncryption
6a:a9:c2:f0:d3:9b:5e:dc:c7:4c:94:c6:00:a3:04:a4:f0:14:
c6:f7:1d:22:cf:d3:a4:81:79:1b:f3:48:e3:59:f2:36:dd:4b:
42:42:f8:65:6b:e3:68:55:1f:46:2c:94:4d:1c:2d:2d:57:17:
46:62:64:29:71:91:7b:4d:17:98:7a:52:88:7a:84:ce:49:24:
83:8f:50:a1:4b:b6:67:b4:0e:95:f8:b6:3e:9a:42:9e:16:d1:
63:11:b5:6e:a1:39:cf:78:ca:21:d7:b2:26:f8:07:34:85:34:
2a:f9:d1:9e:8d:d9:dd:6d:49:84:66:a0:61:cd:91:32:bc:aa:
50:58:26:e8:38:0b:78:4a:6f:55:71:81:02:42:68:62:40:ac:
f6:94:40:d1:3d:f7:ee:b5:a1:5d:71:c2:e2:b7:62:a6:ed:8f:
10:10:c5:bb:7a:13:c5:1a:f8:b8:99:d6:e0:8b:8e:b4:84:43:
ff:a5:ee:18:c0:40:62:2a:19:41:fc:53:29:c6:c5:70:01:08:
c8:05:89:fd:2a:76:d8:17:7f:2e:91:f7:42:7d:99:3f:2f:d2:
78:7b:79:6b:54:f9:48:64:50:87:5d:a1:6a:c0:d3:f1:c5:5d:
3d:9d:eb:89:33:67:01:2c:f5:84:27:fe:e1:e2:82:7c:32:b2:
7d:a4:dd:20
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDb8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMTA5Mjkw
MjM5MzFaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDkyNzg3ODhGQzVDM0E2
RjAzRTlBOUJGNTQ4NDZBRTY5RTEwMTIyODYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDkxb1VU/2wskjmWtbGdB17Z5bVxnRLyk3hfyDon76xLdOEf+Gi
R/JSqbb2hhCrDaOio/9zm7BXrQJU0U0psrIY2ZOaCalhDk6mqDZXisYOYNfQYPF7
YZ0oMCaTQ7RweGt1AT7zMmF90smd2cieWguC6WuIaNq1kegFU4fWJzPFOuqKQTPR
NxSbaEZu9AwEj7fPpW2HQtQzZS3MdM3JvX43YrvzChcutUeyfAMDWZwkd1S/Qka+
/uBiAN69B7Y65Bu+Yn4fpBRyNCAFW7h2dVr6JdyVN593/c3Io87TXFqJqmsgtGWq
VA6qq8wbytZ1zwcXnTrY504HquHauRjbHMbhAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUknh4j8XDpvA+mpv1SEauaeEBIoYwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wva25oNGo4WERwdkEtbXB2MVNFYXVh
ZUVCSW9ZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAstP2DAN
BgkqhkiG9w0BAQsFAAOCAQEAaqnC8NObXtzHTJTGAKMEpPAUxvcdIs/TpIF5G/NI
41nyNt1LQkL4ZWvjaFUfRiyUTRwtLVcXRmJkKXGRe00XmHpSiHqEzkkkg49QoUu2
Z7QOlfi2PppCnhbRYxG1bqE5z3jKIdeyJvgHNIU0KvnRno3Z3W1JhGagYc2RMryq
UFgm6DgLeEpvVXGBAkJoYkCs9pRA0T337rWhXXHC4rdipu2PEBDFu3oTxRr4uJnW
4IuOtIRD/6XuGMBAYioZQfxTKcbFcAEIyAWJ/Sp22Bd/LpH3Qn2ZPy/SeHt5a1T5
SGRQh12hasDT8cVdPZ3riTNnASz1hCf+4eKCfDKyfaTdIA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:01 2024 by rpki-client on console-ams.rpki-client.org