Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/nUjnJn--mkU_TFX1s8sFlaYfPeo.roa
File: nUjnJn--mkU_TFX1s8sFlaYfPeo.roa (raw, json)
Hash identifier: +R0N7BY/gKmnmE0n2aXw3rgEPPWgTD8PeSg5pdaysS8=
Subject key identifier: 9D:48:E7:26:7F:BE:9A:45:3F:4C:55:F5:B3:CB:05:95:A6:1F:3D:EA
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F73
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/nUjnJn--mkU_TFX1s8sFlaYfPeo.roa
Signing time: Fri 07 Oct 2022 06:07:51 +0000
ROA not before: Fri 07 Oct 2022 06:07:51 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9922
IP address blocks: 124.218.64.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3955 (0xf73)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Oct 7 06:07:51 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=9D48E7267FBE9A453F4C55F5B3CB0595A61F3DEA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:27:0c:d9:0a:08:b1:f7:e6:c9:d4:80:af:2f:
24:5b:1a:8f:d9:f3:e3:33:ac:14:9a:bb:98:53:ce:
18:ad:cd:f3:f0:04:62:4d:6d:9e:2f:5b:4c:3b:31:
9d:b8:87:01:e2:df:c2:9b:1e:52:dc:54:ba:a8:90:
26:ca:d4:52:c3:1f:b1:10:82:e8:e5:43:c1:53:ff:
db:27:2d:80:b2:f1:c1:aa:79:9b:23:1c:8a:19:58:
b9:02:3d:c1:07:08:40:43:9f:82:08:8a:4e:bf:a7:
b4:81:53:d8:bb:5a:95:27:67:ca:7a:dd:a5:2e:be:
ae:65:f8:43:36:91:06:b8:43:0d:7e:60:8c:95:a2:
f1:e6:c1:f3:45:eb:30:ba:b2:82:33:6e:10:71:78:
74:04:19:f5:7b:b0:ac:9e:1e:59:4a:53:40:b3:f8:
b1:eb:3b:34:33:4b:65:32:08:b7:43:9b:6a:3a:cf:
36:12:d1:1c:62:0b:2a:7a:39:b6:cd:a2:5c:4d:98:
9f:d1:aa:59:37:c9:ac:95:29:fd:51:9d:53:11:67:
ba:4e:06:86:2b:9a:c1:af:33:bb:fc:7f:18:44:4e:
cc:5f:7d:7f:69:b0:ff:4a:93:02:1c:eb:2a:2d:4f:
5c:fb:2f:30:69:2b:aa:2e:cc:03:fb:9f:a3:4b:67:
14:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:48:E7:26:7F:BE:9A:45:3F:4C:55:F5:B3:CB:05:95:A6:1F:3D:EA
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/nUjnJn--mkU_TFX1s8sFlaYfPeo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.218.64.0/22
Signature Algorithm: sha256WithRSAEncryption
0e:10:c8:96:ee:eb:d9:a2:87:20:58:a3:37:68:f1:0c:58:a0:
37:07:c2:2a:33:48:b0:97:68:03:17:7a:0d:95:3d:ec:df:47:
06:ec:d8:76:ea:ac:d9:20:d0:48:c3:34:7f:ce:33:15:63:6e:
14:a6:72:eb:4e:4a:7d:fc:f9:67:08:90:2c:ed:d4:1d:6a:06:
d9:e2:79:ce:a6:cb:6b:5e:18:a9:21:17:4c:35:08:1c:a7:99:
fb:0b:5b:55:1b:0c:d1:f5:b7:18:35:66:e4:ca:60:70:e3:dc:
fd:f9:52:2c:83:0f:d7:ba:e3:b6:b9:2b:a3:6e:c9:bb:61:83:
ab:82:35:ff:c5:8d:6f:d1:e2:80:2d:77:09:55:32:89:8e:9e:
d7:35:65:7c:d4:91:d5:d7:1a:99:0e:5b:74:40:cd:f4:46:a2:
d5:17:87:39:40:c7:7a:f3:0d:ae:48:da:d8:fc:a8:34:31:ed:
97:36:cc:c3:fa:93:8f:d2:75:0a:b6:53:47:82:9e:7d:10:20:
f7:49:26:dd:2c:04:35:39:92:f8:c6:f2:76:34:b0:c7:24:7f:
98:14:0a:a1:6e:b7:5c:36:0b:19:ca:bb:15:d8:96:ac:51:d3:
81:7b:71:66:8b:66:1c:8e:c6:68:81:a8:f7:b9:9b:ff:2e:0b:
4a:4b:6b:82
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICD3MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMjEwMDcw
NjA3NTFaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDlENDhFNzI2N0ZCRTlB
NDUzRjRDNTVGNUIzQ0IwNTk1QTYxRjNERUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCpJwzZCgix9+bJ1ICvLyRbGo/Z8+MzrBSau5hTzhitzfPwBGJN
bZ4vW0w7MZ24hwHi38KbHlLcVLqokCbK1FLDH7EQgujlQ8FT/9snLYCy8cGqeZsj
HIoZWLkCPcEHCEBDn4IIik6/p7SBU9i7WpUnZ8p63aUuvq5l+EM2kQa4Qw1+YIyV
ovHmwfNF6zC6soIzbhBxeHQEGfV7sKyeHllKU0Cz+LHrOzQzS2UyCLdDm2o6zzYS
0RxiCyp6ObbNolxNmJ/Rqlk3yayVKf1RnVMRZ7pOBoYrmsGvM7v8fxhETsxffX9p
sP9KkwIc6yotT1z7LzBpK6ouzAP7n6NLZxQpAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUnUjnJn++mkU/TFX1s8sFlaYfPeowHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvblVqbkpuLS1ta1VfVEZYMXM4c0Zs
YVlmUGVvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAnzaQDAN
BgkqhkiG9w0BAQsFAAOCAQEADhDIlu7r2aKHIFijN2jxDFigNwfCKjNIsJdoAxd6
DZU97N9HBuzYduqs2SDQSMM0f84zFWNuFKZy605Kffz5ZwiQLO3UHWoG2eJ5zqbL
a14YqSEXTDUIHKeZ+wtbVRsM0fW3GDVm5MpgcOPc/flSLIMP17rjtrkro27Ju2GD
q4I1/8WNb9HigC13CVUyiY6e1zVlfNSR1dcamQ5bdEDN9Eai1ReHOUDHevMNrkja
2PyoNDHtlzbMw/qTj9J1CrZTR4KefRAg90km3SwENTmS+MbydjSwxyR/mBQKoW63
XDYLGcq7FdiWrFHTgXtxZotmHI7GaIGo97mb/y4LSktrgg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:32 2024 by rpki-client on console-fra.rpki-client.org