Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/mXSA691yQFB-y4Z5EBqls4IkpM8.roa
File: mXSA691yQFB-y4Z5EBqls4IkpM8.roa (raw, json)
Hash identifier: vwhDNBGW4gidSDU02nkWDvNb2fB0SzwDNj9eUr2s4cc=
Subject key identifier: 99:74:80:EB:DD:72:40:50:7E:CB:86:79:10:1A:A5:B3:82:24:A4:CF
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/mXSA691yQFB-y4Z5EBqls4IkpM8.roa
Signing time: Thu 15 Sep 2022 02:40:28 +0000
ROA not before: Thu 15 Sep 2022 02:40:28 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17709
IP address blocks: 210.202.128.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:40:28 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=997480EBDD7240507ECB8679101AA5B38224A4CF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:bd:f1:b7:05:0f:5b:f3:e2:2c:5a:90:f6:46:
5c:f1:50:22:7d:4e:f0:a9:89:27:b4:b2:06:2b:18:
fc:60:f5:6d:c3:0f:63:3b:82:24:01:16:00:39:ff:
5d:54:a3:dc:fd:02:2b:93:06:dc:18:3d:14:b6:c4:
27:64:9a:91:ea:31:20:b3:79:7d:b5:2f:43:82:a3:
7d:2b:d4:0f:f2:a9:0a:94:0a:f8:c8:86:0c:3b:12:
cf:3d:9b:b6:2d:cc:44:ab:6d:82:06:f1:63:88:3e:
13:95:37:9b:65:21:74:ab:89:36:c0:5d:e9:cd:d2:
e8:10:99:87:77:51:c9:40:6f:a3:e5:21:3a:ae:e3:
9d:ea:3a:05:75:05:ee:4b:c7:0f:9d:9b:28:19:3c:
7b:23:33:33:9d:94:d7:9d:73:91:54:6f:60:cc:95:
34:9c:09:8f:f6:37:8c:44:75:ee:ba:fd:f3:9b:bc:
f5:f8:65:a1:ea:a8:05:6a:af:1e:a9:16:59:b4:d8:
0b:96:57:68:f0:00:cd:4e:1c:61:5b:b7:30:09:ff:
5f:2e:5f:6b:ef:b5:b9:ce:74:2e:ce:26:cb:61:a6:
c7:2c:83:a4:29:cb:74:e5:44:b6:07:fa:c3:67:ef:
10:1d:d0:d0:86:01:7b:92:8d:d1:87:d9:ad:ef:66:
48:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:74:80:EB:DD:72:40:50:7E:CB:86:79:10:1A:A5:B3:82:24:A4:CF
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/mXSA691yQFB-y4Z5EBqls4IkpM8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.202.128.0/18
Signature Algorithm: sha256WithRSAEncryption
33:b3:ce:8e:ba:5b:62:67:fa:0a:40:b3:3c:fb:27:8e:39:ef:
58:93:2c:f8:c3:fd:d4:24:c4:9f:ff:52:f4:d6:9a:d4:01:d6:
4f:d8:69:c3:7e:9d:fb:77:59:d5:13:2c:e0:2d:18:72:6c:ca:
81:08:f9:2a:54:0c:73:8c:02:2e:f9:43:ea:69:b0:41:9f:2f:
5d:2d:fe:1a:b2:c6:6f:cb:dd:2f:30:99:c0:54:28:e7:8e:c9:
b7:20:68:de:2b:ff:b7:5b:f4:60:28:f5:43:5f:bb:15:49:96:
66:b8:81:4c:ff:72:a6:c1:51:c1:19:38:c8:df:e9:b6:ec:4a:
6e:62:79:70:d6:9d:3a:ca:f4:42:96:0e:5b:0a:67:cb:6e:02:
11:02:29:ee:d3:a3:9e:7b:85:5b:ad:3b:d5:6a:04:aa:56:26:
88:dd:90:1c:74:f7:8b:73:f2:53:1f:32:f9:ce:da:c3:fc:3d:
f9:80:87:9b:f9:7c:cf:9b:61:d1:f8:1c:f9:5f:ce:17:e8:e9:
5a:d7:df:1b:b4:dc:e0:53:a1:56:7a:98:08:93:cb:a1:e8:9b:
aa:3a:45:33:64:a7:df:f1:4f:25:ca:a4:83:72:a5:63:65:43:
69:53:df:17:1c:f7:fb:05:b3:fe:cf:c4:e1:41:a8:06:02:d7:
f7:d2:92:f0
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICD2MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMjA5MTUw
MjQwMjhaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDk5NzQ4MEVCREQ3MjQw
NTA3RUNCODY3OTEwMUFBNUIzODIyNEE0Q0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC+vfG3BQ9b8+IsWpD2RlzxUCJ9TvCpiSe0sgYrGPxg9W3DD2M7
giQBFgA5/11Uo9z9AiuTBtwYPRS2xCdkmpHqMSCzeX21L0OCo30r1A/yqQqUCvjI
hgw7Es89m7YtzESrbYIG8WOIPhOVN5tlIXSriTbAXenN0ugQmYd3UclAb6PlITqu
453qOgV1Be5Lxw+dmygZPHsjMzOdlNedc5FUb2DMlTScCY/2N4xEde66/fObvPX4
ZaHqqAVqrx6pFlm02AuWV2jwAM1OHGFbtzAJ/18uX2vvtbnOdC7OJsthpscsg6Qp
y3TlRLYH+sNn7xAd0NCGAXuSjdGH2a3vZkg/AgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUmXSA691yQFB+y4Z5EBqls4IkpM8wHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvbVhTQTY5MXlRRkIteTRaNUVCcWxz
NElrcE04LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBtLKgDAN
BgkqhkiG9w0BAQsFAAOCAQEAM7POjrpbYmf6CkCzPPsnjjnvWJMs+MP91CTEn/9S
9Naa1AHWT9hpw36d+3dZ1RMs4C0YcmzKgQj5KlQMc4wCLvlD6mmwQZ8vXS3+GrLG
b8vdLzCZwFQo547JtyBo3iv/t1v0YCj1Q1+7FUmWZriBTP9ypsFRwRk4yN/ptuxK
bmJ5cNadOsr0QpYOWwpny24CEQIp7tOjnnuFW6071WoEqlYmiN2QHHT3i3PyUx8y
+c7aw/w9+YCHm/l8z5th0fgc+V/OF+jpWtffG7Tc4FOhVnqYCJPLoeibqjpFM2Sn
3/FPJcqkg3KlY2VDaVPfFxz3+wWz/s/E4UGoBgLX99KS8A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:32 2024 by rpki-client on console-fra.rpki-client.org