Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/nCvgaVwIiOcS3Vl6MDmGzE147eY.roa
File: nCvgaVwIiOcS3Vl6MDmGzE147eY.roa (raw, json)
Hash identifier: PtIxM18Wgv99e8UrkV5x4p9roRudV1uB1k2uY8l6mxQ=
Subject key identifier: 9C:2B:E0:69:5C:08:88:E7:12:DD:59:7A:30:39:86:CC:4D:78:ED:E6
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 12C5
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/nCvgaVwIiOcS3Vl6MDmGzE147eY.roa
Signing time: Fri 01 Sep 2023 08:04:58 +0000
ROA not before: Fri 01 Sep 2023 08:04:58 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17709
IP address blocks: 101.136.0.0/14 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4805 (0x12c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:04:58 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=9C2BE0695C0888E712DD597A303986CC4D78EDE6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:87:41:ce:9c:d3:25:b0:e2:c8:83:9d:d6:9c:
90:e9:20:fb:23:c3:97:b4:1e:7a:a4:61:b4:23:54:
d7:68:99:e1:6d:a0:ea:45:41:a7:e2:b6:ee:ae:66:
eb:5e:b5:18:1c:2b:a6:71:42:c1:5d:aa:7a:86:a5:
81:15:e8:05:dd:cf:2e:90:4a:a0:2c:6b:05:e5:74:
8d:e1:89:50:c9:da:14:80:15:32:09:37:a1:82:31:
97:2d:53:97:2e:32:01:e4:41:ae:d7:84:7b:df:b1:
40:71:65:89:46:df:f2:3f:3f:ac:4c:f1:29:9d:41:
1e:8c:23:52:ea:54:7a:6f:e6:98:d2:87:7f:f1:1d:
f9:41:a1:9b:05:61:14:84:ad:71:ef:be:b4:12:13:
b3:31:40:60:fb:b0:9c:42:f4:21:b0:88:e1:1c:3f:
6d:2e:db:81:78:51:85:65:ea:7b:7b:12:c4:d2:06:
6e:a3:96:ad:0b:ca:41:f0:0a:2a:68:5a:c9:89:31:
ab:ae:99:4a:b0:56:de:eb:7e:af:2b:81:59:2d:50:
fd:dc:99:43:39:0a:b1:6b:fd:35:64:a6:64:78:d4:
8d:2e:d4:60:8f:63:73:44:4c:c0:3d:56:b4:2c:ea:
99:d1:32:9a:f1:7f:bd:60:68:9d:b2:47:67:b4:fc:
a5:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:2B:E0:69:5C:08:88:E7:12:DD:59:7A:30:39:86:CC:4D:78:ED:E6
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/nCvgaVwIiOcS3Vl6MDmGzE147eY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
101.136.0.0/14
Signature Algorithm: sha256WithRSAEncryption
66:71:2a:09:91:a0:63:c3:73:e4:e7:13:b0:dc:24:af:1f:76:
e9:a5:b6:88:c1:30:a4:75:1a:41:d6:61:e7:b8:50:95:10:c3:
06:42:b0:d3:95:fd:ba:c9:04:7d:f3:a0:ba:ee:88:22:63:9b:
bd:b1:ff:e4:bf:ed:15:d0:3e:ba:e4:0e:7d:a1:05:34:ff:f7:
0e:68:e1:4e:24:db:63:46:14:a7:39:07:76:a3:2c:06:b8:09:
40:40:61:b5:e4:17:0b:19:b1:49:c7:30:58:49:42:58:e3:67:
af:f1:89:90:1c:7f:1d:0a:b8:05:36:d0:09:c8:d0:6e:e9:48:
83:33:7f:30:bc:a4:c2:ef:bb:8a:b2:29:61:01:0d:83:b2:b0:
62:9b:e9:c6:01:5f:d3:f1:e9:e0:72:28:8a:ab:24:39:10:de:
03:9b:35:04:c1:04:2b:9f:be:ba:e0:5a:0f:81:24:36:a7:40:
d5:a2:ab:33:3a:4f:c3:5a:de:96:31:8f:e1:67:de:53:55:8d:
c0:5e:32:19:d1:58:6d:0a:26:81:6c:82:ff:c3:b8:fc:51:0a:
df:c9:6e:31:d1:c8:15:b1:7c:6c:dd:ee:0b:00:88:40:cd:96:
67:0a:91:b6:f4:43:7b:e2:1e:a5:c7:73:d4:60:10:fb:be:c3:
19:36:ed:6b
-----BEGIN CERTIFICATE-----
MIIEzTCCA7WgAwIBAgICEsUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMzA5MDEw
ODA0NThaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDlDMkJFMDY5NUMwODg4
RTcxMkRENTk3QTMwMzk4NkNDNEQ3OEVERTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCxh0HOnNMlsOLIg53WnJDpIPsjw5e0HnqkYbQjVNdomeFtoOpF
Qafitu6uZutetRgcK6ZxQsFdqnqGpYEV6AXdzy6QSqAsawXldI3hiVDJ2hSAFTIJ
N6GCMZctU5cuMgHkQa7XhHvfsUBxZYlG3/I/P6xM8SmdQR6MI1LqVHpv5pjSh3/x
HflBoZsFYRSErXHvvrQSE7MxQGD7sJxC9CGwiOEcP20u24F4UYVl6nt7EsTSBm6j
lq0LykHwCipoWsmJMauumUqwVt7rfq8rgVktUP3cmUM5CrFr/TVkpmR41I0u1GCP
Y3NETMA9VrQs6pnRMprxf71gaJ2yR2e0/KULAgMBAAGjggHpMIIB5TAdBgNVHQ4E
FgQUnCvgaVwIiOcS3Vl6MDmGzE147eYwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvbkN2Z2FWd0lpT2NTM1ZsNk1EbUd6
RTE0N2VZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAmWIMA0G
CSqGSIb3DQEBCwUAA4IBAQBmcSoJkaBjw3Pk5xOw3CSvH3bppbaIwTCkdRpB1mHn
uFCVEMMGQrDTlf26yQR986C67ogiY5u9sf/kv+0V0D665A59oQU0//cOaOFOJNtj
RhSnOQd2oywGuAlAQGG15BcLGbFJxzBYSUJY42ev8YmQHH8dCrgFNtAJyNBu6UiD
M38wvKTC77uKsilhAQ2DsrBim+nGAV/T8engciiKqyQ5EN4DmzUEwQQrn7664FoP
gSQ2p0DVoqszOk/DWt6WMY/hZ95TVY3AXjIZ0VhtCiaBbIL/w7j8UQrfyW4x0cgV
sXxs3e4LAIhAzZZnCpG29EN74h6lx3PUYBD7vsMZNu1r
-----END CERTIFICATE-----
Generated at Mon Jan 15 22:54:32 2024 by rpki-client on console-ams.rpki-client.org