Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/mTzIxWf0jx3H-KdxTkq8SYEMFGw.roa
File: mTzIxWf0jx3H-KdxTkq8SYEMFGw.roa (raw, json)
Hash identifier: tKNMZWnpbgc33U6ezHaEIXWmRESvHRAHjrkIWuKginQ=
Subject key identifier: 99:3C:C8:C5:67:F4:8F:1D:C7:F8:A7:71:4E:4A:BC:49:81:0C:14:6C
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0951
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/mTzIxWf0jx3H-KdxTkq8SYEMFGw.roa
Signing time: Tue 29 Sep 2020 10:01:42 +0000
ROA not before: Tue 29 Sep 2020 10:01:42 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 7482
IP address blocks: 222.156.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2385 (0x951)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:01:42 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=993CC8C567F48F1DC7F8A7714E4ABC49810C146C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:2f:9b:3d:05:e3:dc:8f:03:a0:6d:ef:da:2b:
b6:69:1d:5a:26:b4:f4:8f:31:e2:9e:ee:9f:8e:ba:
09:17:ae:5f:eb:48:83:bc:41:d0:c1:1f:59:3d:e5:
21:e2:2a:5c:ad:07:e8:f7:b9:f0:5b:36:a5:01:68:
d3:70:57:25:82:b1:fa:67:f2:33:50:e4:43:37:c3:
c2:fa:7e:ca:b2:4d:4d:2f:ff:f7:62:18:77:ce:ec:
4b:dd:74:d4:02:e0:e6:fc:f8:cc:08:41:78:ce:4f:
9e:b7:14:ba:b8:dc:55:3b:82:b4:ac:fb:e9:c8:cc:
89:d0:2f:10:23:6c:de:e0:23:f9:fc:af:65:98:d2:
74:b2:24:fb:de:dd:0f:7f:55:0d:6b:2b:d8:ed:97:
92:f0:72:9d:72:ca:06:90:78:b9:22:b5:7b:26:fe:
cb:58:8e:c0:de:c6:63:b2:6c:12:61:43:4e:b8:90:
9a:d1:ca:fb:08:32:7e:47:88:5a:85:95:85:fb:67:
5a:c9:8d:3a:19:77:34:0d:50:15:00:a6:83:fb:8b:
e2:e5:1f:0f:51:f9:78:68:92:24:6e:a4:42:3b:fd:
87:d8:b8:21:22:c7:d1:37:d0:12:11:a6:2e:c8:e4:
e1:7a:2b:2f:62:29:4c:15:48:d3:5e:e8:53:9c:e5:
cc:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:3C:C8:C5:67:F4:8F:1D:C7:F8:A7:71:4E:4A:BC:49:81:0C:14:6C
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/mTzIxWf0jx3H-KdxTkq8SYEMFGw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
222.156.0.0/16
Signature Algorithm: sha256WithRSAEncryption
02:07:f4:5a:92:da:a5:21:8f:5c:7c:fe:6d:ad:8a:0d:27:3c:
eb:b8:57:26:d2:8f:ff:e6:97:a5:7c:a2:e4:06:37:92:48:2d:
50:42:b7:7e:45:b4:4b:0c:54:07:f3:0b:4a:46:1c:ac:46:e0:
21:ee:32:d4:1c:39:91:e5:b4:ba:53:a8:8a:0a:24:2d:e7:bb:
e5:b7:07:05:0d:89:29:bf:c4:d8:50:c5:2f:7a:6a:29:09:f5:
46:2d:81:30:0f:8e:78:70:f8:ca:cc:15:54:de:02:dd:be:b7:
7d:3d:e9:3a:b2:ba:7b:16:8e:5c:31:da:b1:4a:63:12:5e:b4:
73:13:a6:ec:4f:6e:e0:04:b9:a2:92:97:c8:76:7b:36:8f:25:
24:11:da:65:65:3b:51:a4:98:a6:59:5f:76:43:c3:6a:90:93:
6f:62:a1:b3:90:9a:29:22:8c:03:2c:8e:a5:06:c0:15:e2:91:
aa:98:db:45:1f:b3:f6:8a:5d:6a:c4:39:a3:87:7b:fe:f9:14:
e8:9e:b5:97:75:3e:07:5e:4e:06:f7:3d:03:1a:fa:8f:24:ff:
35:f0:a5:96:ad:80:4c:93:62:0d:b8:a3:3f:d6:d5:3d:4e:68:
7a:93:0d:3f:e8:e2:b2:d7:12:33:34:d2:f9:ec:b3:27:b2:84:
56:75:ba:10
-----BEGIN CERTIFICATE-----
MIIEzTCCA7WgAwIBAgICCVEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMDA5Mjkx
MDAxNDJaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDk5M0NDOEM1NjdGNDhG
MURDN0Y4QTc3MTRFNEFCQzQ5ODEwQzE0NkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCkL5s9BePcjwOgbe/aK7ZpHVomtPSPMeKe7p+OugkXrl/rSIO8
QdDBH1k95SHiKlytB+j3ufBbNqUBaNNwVyWCsfpn8jNQ5EM3w8L6fsqyTU0v//di
GHfO7EvddNQC4Ob8+MwIQXjOT563FLq43FU7grSs++nIzInQLxAjbN7gI/n8r2WY
0nSyJPve3Q9/VQ1rK9jtl5Lwcp1yygaQeLkitXsm/stYjsDexmOybBJhQ064kJrR
yvsIMn5HiFqFlYX7Z1rJjToZdzQNUBUApoP7i+LlHw9R+XhokiRupEI7/YfYuCEi
x9E30BIRpi7I5OF6Ky9iKUwVSNNe6FOc5cx3AgMBAAGjggHpMIIB5TAdBgNVHQ4E
FgQUmTzIxWf0jx3H+KdxTkq8SYEMFGwwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvbVR6SXhXZjBqeDNILUtkeFRrcThT
WUVNRkd3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAN6cMA0G
CSqGSIb3DQEBCwUAA4IBAQACB/RaktqlIY9cfP5trYoNJzzruFcm0o//5pelfKLk
BjeSSC1QQrd+RbRLDFQH8wtKRhysRuAh7jLUHDmR5bS6U6iKCiQt57vltwcFDYkp
v8TYUMUvemopCfVGLYEwD454cPjKzBVU3gLdvrd9Pek6srp7Fo5cMdqxSmMSXrRz
E6bsT27gBLmikpfIdns2jyUkEdplZTtRpJimWV92Q8NqkJNvYqGzkJopIowDLI6l
BsAV4pGqmNtFH7P2il1qxDmjh3v++RTonrWXdT4HXk4G9z0DGvqPJP818KWWrYBM
k2INuKM/1tU9Tmh6kw0/6OKy1xIzNNL57LMnsoRWdboQ
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:01 2024 by rpki-client on console-ams.rpki-client.org