Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/mtKTrURS0vXAHbTKmq5XIzTv24I.roa
File: mtKTrURS0vXAHbTKmq5XIzTv24I.roa (raw, json)
Hash identifier: 45AJAlrbSI/XPxEklTxrDfQoLI2MT3nKU/RT74LI7Zs=
Subject key identifier: 9A:D2:93:AD:44:52:D2:F5:C0:1D:B4:CA:9A:AE:57:23:34:EF:DB:82
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0DAB
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/mtKTrURS0vXAHbTKmq5XIzTv24I.roa
Signing time: Wed 29 Sep 2021 02:39:24 +0000
ROA not before: Wed 29 Sep 2021 02:39:24 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24154
IP address blocks: 124.219.0.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3499 (0xdab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:39:24 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=9AD293AD4452D2F5C01DB4CA9AAE572334EFDB82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:62:51:93:4d:74:76:5c:85:37:c6:79:93:49:
d6:55:90:65:63:f6:e1:40:9f:36:fe:46:17:c2:96:
7e:80:50:ce:9b:3b:25:7c:69:35:12:62:64:05:0d:
a6:1c:63:62:a2:65:c1:b7:98:c1:35:eb:c2:33:96:
8f:d6:24:09:25:bb:91:94:3a:a4:75:79:04:35:4a:
77:39:15:2d:f3:7e:31:c1:7d:95:52:c0:fe:00:83:
37:cc:dc:a7:b7:0e:91:4e:24:26:8b:c0:13:21:81:
32:ad:66:3f:81:8e:07:c6:fb:6c:53:06:e1:44:72:
0c:83:00:72:c8:6e:24:da:99:79:02:d8:ad:b5:58:
a5:dc:12:91:18:4c:5b:e9:c5:76:22:56:1e:8a:86:
2a:50:c7:86:0a:86:70:05:81:09:c3:a6:09:6d:60:
e1:a5:cb:81:69:3e:a5:ff:58:69:8b:cb:54:58:fc:
16:d0:43:83:84:cc:6b:b5:58:39:70:7b:db:c6:21:
e7:18:ee:44:10:ed:77:41:16:90:e7:74:04:e5:33:
c1:1c:67:7e:45:1d:9c:c9:87:5f:53:8e:4a:4f:6b:
46:5b:8d:e2:4a:8d:29:ed:aa:ac:38:d1:c3:c1:82:
7e:e0:5d:23:57:8b:90:b5:0b:55:2a:9f:25:6e:1c:
7d:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:D2:93:AD:44:52:D2:F5:C0:1D:B4:CA:9A:AE:57:23:34:EF:DB:82
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/mtKTrURS0vXAHbTKmq5XIzTv24I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.219.0.0/17
Signature Algorithm: sha256WithRSAEncryption
b4:0c:6d:ac:ae:5e:27:6f:86:b9:14:c9:18:54:16:19:d8:59:
05:03:c8:ef:1b:84:41:0f:fb:90:cc:1c:fb:3e:cf:8f:ff:95:
64:dd:ca:66:25:1a:27:40:23:87:72:01:64:73:d4:99:d4:0f:
68:fb:f0:04:0a:8a:71:d3:c2:d6:60:79:00:9a:e8:53:f6:8e:
21:22:c2:3d:d9:6c:33:7a:b7:56:fb:0a:e4:ef:6b:44:ed:6c:
8e:08:5c:7f:b0:c4:64:e8:b2:08:30:1d:f0:07:d6:07:37:89:
51:22:96:77:95:fe:4a:ec:83:9b:99:ef:a5:17:82:64:95:a3:
f0:cf:53:c1:35:6c:eb:b5:80:e8:15:65:d6:f6:be:5b:90:b5:
dc:3d:22:9b:2e:db:8f:b7:b2:3b:98:f3:38:6a:68:73:3a:45:
18:72:28:43:a1:60:7e:4c:49:cf:c3:9f:6c:fd:e6:4a:a9:7a:
57:51:54:0f:e1:92:41:58:67:7e:88:f9:57:7e:3f:16:19:26:
d7:1a:79:92:a4:b2:6c:21:cd:ce:51:d6:5f:01:ea:a1:74:d3:
c5:31:60:75:17:ad:b9:74:a7:3a:44:53:75:70:43:8a:83:90:
b2:5c:70:34:2e:0d:d1:13:be:31:ff:ec:d3:3c:74:a8:55:eb:
35:79:2e:3e
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDaswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMTA5Mjkw
MjM5MjRaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDlBRDI5M0FENDQ1MkQy
RjVDMDFEQjRDQTlBQUU1NzIzMzRFRkRCODIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCbYlGTTXR2XIU3xnmTSdZVkGVj9uFAnzb+RhfCln6AUM6bOyV8
aTUSYmQFDaYcY2KiZcG3mME168Izlo/WJAklu5GUOqR1eQQ1Snc5FS3zfjHBfZVS
wP4AgzfM3Ke3DpFOJCaLwBMhgTKtZj+BjgfG+2xTBuFEcgyDAHLIbiTamXkC2K21
WKXcEpEYTFvpxXYiVh6KhipQx4YKhnAFgQnDpgltYOGly4FpPqX/WGmLy1RY/BbQ
Q4OEzGu1WDlwe9vGIecY7kQQ7XdBFpDndATlM8EcZ35FHZzJh19TjkpPa0ZbjeJK
jSntqqw40cPBgn7gXSNXi5C1C1UqnyVuHH21AgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUmtKTrURS0vXAHbTKmq5XIzTv24IwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvbXRLVHJVUlMwdlhBSGJUS21xNVhJ
elR2MjRJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEB3zbADAN
BgkqhkiG9w0BAQsFAAOCAQEAtAxtrK5eJ2+GuRTJGFQWGdhZBQPI7xuEQQ/7kMwc
+z7Pj/+VZN3KZiUaJ0Ajh3IBZHPUmdQPaPvwBAqKcdPC1mB5AJroU/aOISLCPdls
M3q3VvsK5O9rRO1sjghcf7DEZOiyCDAd8AfWBzeJUSKWd5X+SuyDm5nvpReCZJWj
8M9TwTVs67WA6BVl1va+W5C13D0imy7bj7eyO5jzOGpoczpFGHIoQ6FgfkxJz8Of
bP3mSql6V1FUD+GSQVhnfoj5V34/Fhkm1xp5kqSybCHNzlHWXwHqoXTTxTFgdRet
uXSnOkRTdXBDioOQslxwNC4N0RO+Mf/s0zx0qFXrNXkuPg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:01 2024 by rpki-client on console-ams.rpki-client.org