Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/md9xEF4RpR43kEU1h1DnxwBSaKU.roa
File: md9xEF4RpR43kEU1h1DnxwBSaKU.roa (raw, json)
Hash identifier: N+ipaWitZOEjwXUIHavstjO6Vnx7SphQ/4wq5NadH88=
Subject key identifier: 99:DF:71:10:5E:11:A5:1E:37:90:45:35:87:50:E7:C7:00:52:68:A5
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0BA3
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/md9xEF4RpR43kEU1h1DnxwBSaKU.roa
Signing time: Sun 07 Feb 2021 11:33:26 +0000
ROA not before: Sun 07 Feb 2021 11:33:26 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24155
IP address blocks: 203.201.32.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2979 (0xba3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 11:33:26 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=99DF71105E11A51E379045358750E7C7005268A5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:e1:5f:01:2d:ac:94:d9:96:4e:91:95:2c:ec:
96:6f:79:24:94:47:52:93:aa:5e:18:2d:b1:24:75:
33:51:fe:97:96:fc:30:aa:cd:f3:10:2d:8c:41:fd:
08:e3:31:5d:c4:85:88:a6:00:c5:73:e1:e8:a5:fa:
f6:b1:02:5e:24:b8:85:78:d2:f9:76:91:52:66:76:
b6:3b:d2:7d:ea:4c:af:b1:93:76:46:b5:7e:e4:a3:
30:13:7b:0a:ba:c6:21:f5:8f:d3:26:fd:2f:b5:af:
47:09:5e:0e:ec:de:89:a0:42:f7:e5:ca:fb:90:cf:
03:16:42:ab:6d:b3:bf:a7:43:dd:cb:af:2f:ed:15:
c0:74:26:96:90:ec:de:6a:7b:68:19:07:bf:2c:46:
08:27:ea:77:98:37:34:b7:c4:60:ae:f3:f5:98:ab:
a8:ed:a1:49:ec:a6:cd:1f:b6:73:2d:0b:f9:e7:8f:
34:78:2b:65:3a:8f:7c:7c:7b:72:76:72:97:e3:b5:
3b:95:42:a1:74:92:87:72:06:c5:aa:91:3f:b2:6d:
63:40:c7:9f:ac:3c:fa:28:5a:8e:5d:b1:f2:64:cf:
99:e9:b6:2e:3e:8d:14:a8:96:a4:0e:98:f4:c6:7d:
ae:79:0c:0e:82:32:4a:a4:ac:a9:59:e3:54:4b:8b:
a2:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:DF:71:10:5E:11:A5:1E:37:90:45:35:87:50:E7:C7:00:52:68:A5
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/md9xEF4RpR43kEU1h1DnxwBSaKU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.201.32.0/20
Signature Algorithm: sha256WithRSAEncryption
7e:72:de:07:bd:b0:03:a8:21:66:d3:56:4a:af:99:b0:78:65:
0e:7f:9f:7e:65:c3:69:d2:db:13:d8:87:46:2c:43:05:6b:e5:
9f:00:6b:9b:b4:a9:bc:5d:de:ee:2c:29:9c:fc:dd:20:8b:41:
91:56:4d:3e:ba:3d:ee:92:6c:b3:4c:07:d4:29:e2:6d:30:4a:
d6:d0:8a:56:a1:d1:64:bb:8a:3d:f8:d1:92:0d:36:11:8d:0a:
ac:6b:de:f3:f4:32:cf:f6:a5:35:50:5e:fa:39:13:26:da:6b:
4f:f2:2e:a3:de:76:63:37:56:9d:e6:13:e2:c8:af:10:3c:03:
4d:06:1b:84:36:90:77:55:88:e2:23:c7:5d:07:e6:50:07:d5:
fd:04:14:a1:9f:b6:3b:44:f3:01:a6:d0:51:9a:a6:07:e5:bc:
dc:e7:61:c8:10:1e:72:fe:55:a3:18:9f:78:b4:fd:ec:d5:fa:
16:24:0f:1c:38:98:2c:a3:6e:e1:52:b7:33:16:0b:bc:21:34:
7c:bc:69:90:cd:57:44:40:1a:74:d5:89:53:d2:c0:82:8d:4b:
01:38:a2:d7:b8:e8:c5:75:31:49:4f:87:37:f7:f0:1a:66:a7:
aa:2a:1f:1b:18:ce:e3:16:81:91:49:a9:71:05:f1:c7:a2:79:
79:3b:ee:86
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICC6MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMTAyMDcx
MTMzMjZaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDk5REY3MTEwNUUxMUE1
MUUzNzkwNDUzNTg3NTBFN0M3MDA1MjY4QTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDU4V8BLayU2ZZOkZUs7JZveSSUR1KTql4YLbEkdTNR/peW/DCq
zfMQLYxB/QjjMV3EhYimAMVz4eil+vaxAl4kuIV40vl2kVJmdrY70n3qTK+xk3ZG
tX7kozATewq6xiH1j9Mm/S+1r0cJXg7s3omgQvflyvuQzwMWQqtts7+nQ93Lry/t
FcB0JpaQ7N5qe2gZB78sRggn6neYNzS3xGCu8/WYq6jtoUnsps0ftnMtC/nnjzR4
K2U6j3x8e3J2cpfjtTuVQqF0kodyBsWqkT+ybWNAx5+sPPooWo5dsfJkz5npti4+
jRSolqQOmPTGfa55DA6CMkqkrKlZ41RLi6LTAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUmd9xEF4RpR43kEU1h1DnxwBSaKUwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvbWQ5eEVGNFJwUjQza0VVMWgxRG54
d0JTYUtVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBMvJIDAN
BgkqhkiG9w0BAQsFAAOCAQEAfnLeB72wA6ghZtNWSq+ZsHhlDn+ffmXDadLbE9iH
RixDBWvlnwBrm7SpvF3e7iwpnPzdIItBkVZNPro97pJss0wH1CnibTBK1tCKVqHR
ZLuKPfjRkg02EY0KrGve8/Qyz/alNVBe+jkTJtprT/Iuo952YzdWneYT4sivEDwD
TQYbhDaQd1WI4iPHXQfmUAfV/QQUoZ+2O0TzAabQUZqmB+W83OdhyBAecv5Voxif
eLT97NX6FiQPHDiYLKNu4VK3MxYLvCE0fLxpkM1XREAadNWJU9LAgo1LATii17jo
xXUxSU+HN/fwGmanqiofGxjO4xaBkUmpcQXxx6J5eTvuhg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:01 2024 by rpki-client on console-ams.rpki-client.org