Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/mKNyKUz4MNptUufAidv6xctJGD4.roa
File: mKNyKUz4MNptUufAidv6xctJGD4.roa (raw, json)
Hash identifier: ijjyHmqqQqYjD37E0kmp/gZ7gFLDKaCWwXWpmdnurfs=
Subject key identifier: 98:A3:72:29:4C:F8:30:DA:6D:52:E7:C0:89:DB:FA:C5:CB:49:18:3E
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1288
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/mKNyKUz4MNptUufAidv6xctJGD4.roa
Signing time: Fri 01 Sep 2023 08:04:36 +0000
ROA not before: Fri 01 Sep 2023 08:04:36 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 7482
IP address blocks: 210.202.128.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4744 (0x1288)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:04:36 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=98A372294CF830DA6D52E7C089DBFAC5CB49183E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:3a:1e:4d:d5:32:9c:d9:f2:eb:83:d7:0e:5a:
fe:e4:a2:63:f1:ed:6f:41:fb:61:fc:60:82:d8:7c:
cd:b9:c2:24:14:b6:fd:e0:57:44:8f:53:d7:7c:ad:
47:54:e6:73:8d:db:6c:b1:cb:c4:b9:86:b4:40:55:
69:78:89:ae:05:49:8c:6b:d4:8a:10:65:13:3e:91:
18:f8:c5:df:0c:66:24:df:0c:9a:97:5c:48:26:2d:
f5:1a:6a:03:f1:dc:ba:9d:70:1b:b1:e1:87:ba:2c:
55:c9:43:05:3b:aa:7a:e8:1a:d3:60:59:0f:57:67:
0f:df:bd:97:84:53:f0:15:d7:72:2a:cd:84:63:00:
92:42:eb:54:1b:f2:7d:38:71:a1:ef:c7:d9:9a:bc:
d6:b4:bf:28:18:94:1a:ea:a2:09:74:d4:1c:71:62:
cd:8b:0f:22:24:ea:cf:df:a9:0d:0c:c6:16:85:4a:
20:dc:c5:7c:fa:87:1c:85:e5:c5:20:e0:ad:c8:2d:
06:04:9c:cb:c3:54:9f:b0:14:83:3c:91:28:7b:8a:
ec:8f:46:d5:0c:2a:e8:a5:03:89:9a:02:4e:28:42:
e2:0e:a1:0b:d3:71:a4:68:26:d1:b8:b2:34:30:aa:
5e:45:70:89:57:ce:8f:11:7b:d3:ae:35:aa:87:6d:
cd:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:A3:72:29:4C:F8:30:DA:6D:52:E7:C0:89:DB:FA:C5:CB:49:18:3E
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/mKNyKUz4MNptUufAidv6xctJGD4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.202.128.0/18
Signature Algorithm: sha256WithRSAEncryption
4b:1c:93:0a:9f:a2:65:bc:ae:15:26:6a:57:63:2c:e3:c8:ea:
54:78:ec:22:70:9b:68:0c:77:50:1b:7e:95:df:bf:69:01:3f:
8e:67:10:7f:d6:93:3c:23:22:48:eb:70:56:97:14:ec:1d:69:
db:da:d9:9b:8d:d4:46:19:41:c4:a9:07:67:d3:50:a3:8c:4b:
7b:50:5d:a1:bc:d6:f7:66:96:32:9b:5f:93:83:08:7a:9d:fd:
51:5f:fb:8f:47:08:38:22:fd:ac:1e:f2:07:98:79:24:a3:f9:
df:64:6e:d6:5a:80:57:ee:2b:50:d7:d4:23:a3:1d:1b:eb:30:
0a:c4:56:f3:b3:8e:1b:1f:c4:cd:32:6a:d0:f8:d9:a6:67:8f:
7c:92:a8:77:78:f8:98:0b:ba:9b:ae:c4:a3:77:c0:93:62:46:
aa:02:f6:42:d1:15:d6:e0:ae:b4:0f:22:2b:7f:82:e0:29:67:
0e:24:4d:26:d0:8b:c0:4c:76:d1:9c:15:7b:5e:5c:78:a7:a0:
29:85:d9:05:89:45:e8:72:c9:1e:27:1e:ae:e0:03:d5:00:95:
61:1e:27:62:9a:33:6c:c0:b8:e9:70:24:b8:20:87:57:47:ee:
65:39:45:a1:6f:23:29:10:37:b7:80:ab:68:c4:8f:3a:97:4f:
e4:42:03:fc
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICEogwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMzA5MDEw
ODA0MzZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDk4QTM3MjI5NENGODMw
REE2RDUyRTdDMDg5REJGQUM1Q0I0OTE4M0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDfOh5N1TKc2fLrg9cOWv7komPx7W9B+2H8YILYfM25wiQUtv3g
V0SPU9d8rUdU5nON22yxy8S5hrRAVWl4ia4FSYxr1IoQZRM+kRj4xd8MZiTfDJqX
XEgmLfUaagPx3LqdcBux4Ye6LFXJQwU7qnroGtNgWQ9XZw/fvZeEU/AV13IqzYRj
AJJC61Qb8n04caHvx9mavNa0vygYlBrqogl01BxxYs2LDyIk6s/fqQ0MxhaFSiDc
xXz6hxyF5cUg4K3ILQYEnMvDVJ+wFIM8kSh7iuyPRtUMKuilA4maAk4oQuIOoQvT
caRoJtG4sjQwql5FcIlXzo8Re9OuNaqHbc1NAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUmKNyKUz4MNptUufAidv6xctJGD4wHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvbUtOeUtVejRNTnB0VXVmQWlkdjZ4
Y3RKR0Q0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBtLKgDAN
BgkqhkiG9w0BAQsFAAOCAQEASxyTCp+iZbyuFSZqV2Ms48jqVHjsInCbaAx3UBt+
ld+/aQE/jmcQf9aTPCMiSOtwVpcU7B1p29rZm43URhlBxKkHZ9NQo4xLe1BdobzW
92aWMptfk4MIep39UV/7j0cIOCL9rB7yB5h5JKP532Ru1lqAV+4rUNfUI6MdG+sw
CsRW87OOGx/EzTJq0PjZpmePfJKod3j4mAu6m67Eo3fAk2JGqgL2QtEV1uCutA8i
K3+C4ClnDiRNJtCLwEx20ZwVe15ceKegKYXZBYlF6HLJHiceruAD1QCVYR4nYpoz
bMC46XAkuCCHV0fuZTlFoW8jKRA3t4CraMSPOpdP5EID/A==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:55:13 2025 by rpki-client