Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/qSHl8de7YPGkS8okcvx6ocXr1mk.roa
File: qSHl8de7YPGkS8okcvx6ocXr1mk.roa (raw, json)
Hash identifier: 73JVxjQG1k3wr7/7fHqPOec5BuqKKCoJqd+RTSDMmgc=
Subject key identifier: A9:21:E5:F1:D7:BB:60:F1:A4:4B:CA:24:72:FC:7A:A1:C5:EB:D6:69
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 10CB
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/qSHl8de7YPGkS8okcvx6ocXr1mk.roa
Signing time: Tue 16 May 2023 08:36:38 +0000
ROA not before: Tue 16 May 2023 08:36:38 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 7482
IP address blocks: 210.202.192.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4299 (0x10cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:38 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A921E5F1D7BB60F1A44BCA2472FC7AA1C5EBD669
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:5e:b9:c6:08:af:8e:a2:29:aa:21:88:57:e7:
94:7b:1d:4a:8a:d3:e0:ce:c1:43:8f:5c:6c:86:97:
66:d5:45:f5:ad:ed:ad:28:f1:66:9b:50:71:8a:39:
93:75:2f:81:6a:bd:85:98:8d:7a:32:4d:08:81:f4:
6c:5e:54:ae:03:f2:70:08:30:78:34:7d:50:bc:e5:
43:7f:d5:29:53:2d:63:6c:35:3b:76:04:33:43:2f:
12:fb:0f:b3:a6:9c:33:69:02:7d:1c:c6:8a:e8:ee:
99:7f:3b:12:11:75:64:e2:59:c2:24:0a:06:07:68:
72:55:ee:40:85:b1:cb:dc:6b:95:9f:8a:63:31:89:
9c:e4:4a:f3:36:10:3b:5c:a3:1c:8a:2b:56:34:da:
11:bf:97:75:91:c1:c8:0e:f6:37:af:0b:d5:b9:55:
14:74:24:15:79:57:e1:b3:24:3e:4f:b4:cd:60:ca:
8b:3a:3a:f4:c9:20:f4:65:06:e7:60:4d:ad:5c:17:
e8:6d:bd:59:45:67:65:8d:fb:c4:20:f5:9a:67:91:
6f:45:18:51:87:de:74:da:76:53:88:eb:cf:3a:62:
11:58:0f:08:4a:29:dc:82:67:b4:2c:7e:f0:0d:d3:
7b:ed:9a:00:b1:3f:df:7a:37:2f:e9:38:ef:68:df:
34:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:21:E5:F1:D7:BB:60:F1:A4:4B:CA:24:72:FC:7A:A1:C5:EB:D6:69
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/qSHl8de7YPGkS8okcvx6ocXr1mk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.202.192.0/18
Signature Algorithm: sha256WithRSAEncryption
20:c1:d2:82:e4:6e:26:e1:6d:44:9d:8f:c1:00:de:e8:f4:8c:
0c:35:cb:f8:e4:ec:1d:11:76:75:64:8c:08:44:99:bc:9e:33:
61:da:eb:85:8c:46:85:4d:cb:0a:19:36:7c:4f:a8:0e:d5:d3:
2c:13:e0:b3:cf:3c:70:15:b9:9f:6e:96:97:b9:ff:a2:8f:b3:
c7:c6:36:b3:44:4d:a1:6a:2e:c5:86:40:de:e4:0d:65:ea:ed:
a3:94:5c:d3:8b:69:2c:af:ea:71:4d:c8:66:eb:4a:e2:1a:22:
03:75:8d:3f:76:e9:ca:36:f1:83:cb:7c:ec:8e:44:a5:61:a7:
25:b5:7f:6b:8e:a6:02:f7:13:41:02:b0:46:f1:78:47:78:31:
33:79:a1:e4:0b:19:b1:f4:f7:f7:30:3d:58:a8:33:d1:87:d4:
ac:ef:75:50:b7:82:fd:75:c8:63:71:ba:21:e6:6a:85:41:75:
fd:98:da:69:8a:8d:d6:a5:74:9c:1c:90:79:40:66:f1:4d:bc:
88:bf:e0:7c:0d:4c:55:83:5e:77:08:f7:e1:8b:b9:29:a7:8b:
02:ac:66:9a:e0:24:0b:ed:f6:05:d9:6e:8d:ce:a2:16:ca:82:
58:15:4d:a7:c7:05:f4:cc:47:42:82:d1:08:e7:10:cf:98:ef:
f7:b5:2d:22
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICEMswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMzA1MTYw
ODM2MzhaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEE5MjFFNUYxRDdCQjYw
RjFBNDRCQ0EyNDcyRkM3QUExQzVFQkQ2NjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDUXrnGCK+OoimqIYhX55R7HUqK0+DOwUOPXGyGl2bVRfWt7a0o
8WabUHGKOZN1L4FqvYWYjXoyTQiB9GxeVK4D8nAIMHg0fVC85UN/1SlTLWNsNTt2
BDNDLxL7D7OmnDNpAn0cxoro7pl/OxIRdWTiWcIkCgYHaHJV7kCFscvca5WfimMx
iZzkSvM2EDtcoxyKK1Y02hG/l3WRwcgO9jevC9W5VRR0JBV5V+GzJD5PtM1gyos6
OvTJIPRlBudgTa1cF+htvVlFZ2WN+8Qg9ZpnkW9FGFGH3nTadlOI6886YhFYDwhK
KdyCZ7QsfvAN03vtmgCxP996Ny/pOO9o3zT/AgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUqSHl8de7YPGkS8okcvx6ocXr1mkwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvcVNIbDhkZTdZUEdrUzhva2N2eDZv
Y1hyMW1rLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBtLKwDAN
BgkqhkiG9w0BAQsFAAOCAQEAIMHSguRuJuFtRJ2PwQDe6PSMDDXL+OTsHRF2dWSM
CESZvJ4zYdrrhYxGhU3LChk2fE+oDtXTLBPgs888cBW5n26Wl7n/oo+zx8Y2s0RN
oWouxYZA3uQNZerto5Rc04tpLK/qcU3IZutK4hoiA3WNP3bpyjbxg8t87I5EpWGn
JbV/a46mAvcTQQKwRvF4R3gxM3mh5AsZsfT39zA9WKgz0YfUrO91ULeC/XXIY3G6
IeZqhUF1/ZjaaYqN1qV0nByQeUBm8U28iL/gfA1MVYNedwj34Yu5KaeLAqxmmuAk
C+32Bdlujc6iFsqCWBVNp8cF9MxHQoLRCOcQz5jv97UtIg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:32 2024 by rpki-client on console-fra.rpki-client.org