Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/s7Ky0F59fNAF5E_IeIQdNol7eog.roa
File: s7Ky0F59fNAF5E_IeIQdNol7eog.roa (raw, json)
Hash identifier: Up9mYNcoQRlobv3X0+n/NYqOqrMzFQjta/p8gVNpDic=
Subject key identifier: B3:B2:B2:D0:5E:7D:7C:D0:05:E4:4F:C8:78:84:1D:36:89:7B:7A:88
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1274
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/s7Ky0F59fNAF5E_IeIQdNol7eog.roa
Signing time: Fri 01 Sep 2023 08:04:30 +0000
ROA not before: Fri 01 Sep 2023 08:04:30 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131142
IP address blocks: 223.22.16.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4724 (0x1274)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:04:30 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=B3B2B2D05E7D7CD005E44FC878841D36897B7A88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:ab:1a:81:f0:9a:18:0d:d5:02:09:22:03:6c:
ae:7d:ee:9a:73:7a:82:fc:61:e3:a4:b4:e9:36:83:
2e:89:4c:fc:12:13:a0:d1:da:33:29:ef:f2:33:1b:
c6:56:84:1a:d2:27:12:b0:e5:a1:76:09:05:5c:89:
ab:2d:fd:b9:3e:57:81:df:91:5b:3f:f4:fb:0d:60:
ab:cc:a9:81:de:c9:6b:d5:db:5b:65:da:df:b4:7c:
28:4c:0d:e7:63:50:1a:87:ea:80:f1:d5:90:e5:16:
c6:d4:e7:86:f3:26:07:59:5c:ab:62:c1:34:99:52:
ed:8a:8b:f3:8f:a8:29:d1:13:00:ea:0a:3f:48:ef:
d0:20:39:0c:8e:7e:56:39:ee:13:ae:aa:c6:cc:85:
37:80:86:11:b4:ea:5d:73:65:bb:b8:0e:ee:d2:a9:
e9:89:d7:ea:0a:e2:40:8e:f1:29:db:41:8f:fe:4c:
c6:10:7e:2b:2f:53:a3:c0:2b:71:df:7a:a3:1a:ba:
f3:df:8c:8f:90:4a:c8:82:aa:03:26:af:a6:7b:18:
35:92:06:fb:e2:ac:b5:cc:96:01:9a:5b:82:04:e0:
86:d7:3f:b7:2c:ce:02:ea:fa:c4:d6:63:ef:02:0e:
97:1e:3a:5e:67:07:d5:7b:3c:10:52:c1:45:f8:c3:
4a:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:B2:B2:D0:5E:7D:7C:D0:05:E4:4F:C8:78:84:1D:36:89:7B:7A:88
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/s7Ky0F59fNAF5E_IeIQdNol7eog.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.22.16.0/22
Signature Algorithm: sha256WithRSAEncryption
43:67:26:33:38:a0:82:5b:bb:a8:33:24:e8:62:9b:76:88:eb:
8a:c8:f9:69:6a:1b:e9:1c:54:c9:23:13:a6:a4:44:83:2b:7d:
2c:11:df:1c:a8:e6:a8:89:9e:5c:db:f3:12:ae:76:e5:3d:68:
22:d9:f5:2f:60:58:1c:3b:ce:58:0b:ae:12:75:d9:d0:ca:ed:
e0:23:a5:d1:36:78:52:2a:5e:e0:c5:aa:56:7a:3a:14:cc:76:
af:5d:9d:41:69:eb:0b:61:20:5e:da:00:c4:42:48:da:a8:a8:
ea:8b:6b:4c:ed:15:e1:fe:a2:77:07:ad:4b:b4:9f:09:87:ae:
06:a0:85:d1:0b:e0:63:37:1a:75:44:27:2a:92:3c:53:92:d3:
93:d1:7b:a1:56:c1:1c:67:ab:ef:c9:2b:b0:cc:1e:d9:73:09:
39:e3:9c:1a:c7:19:13:ef:bd:d2:ff:5e:68:55:24:ea:e0:5a:
b3:ea:8b:b7:d8:e2:89:6c:2f:b8:dd:72:95:a0:80:43:fc:52:
62:35:89:57:78:33:7a:c2:88:16:9d:ae:0b:fb:e1:11:b0:39:
b6:d7:06:44:85:dd:c6:6e:2c:d2:41:63:f8:12:cc:8e:1a:b5:
cf:42:7c:79:01:d9:68:38:1b:3d:bf:6e:1f:7f:a8:15:bb:95:
f3:63:bf:3c
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICEnQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMzA5MDEw
ODA0MzBaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEIzQjJCMkQwNUU3RDdD
RDAwNUU0NEZDODc4ODQxRDM2ODk3QjdBODgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDPqxqB8JoYDdUCCSIDbK597ppzeoL8YeOktOk2gy6JTPwSE6DR
2jMp7/IzG8ZWhBrSJxKw5aF2CQVciast/bk+V4HfkVs/9PsNYKvMqYHeyWvV21tl
2t+0fChMDedjUBqH6oDx1ZDlFsbU54bzJgdZXKtiwTSZUu2Ki/OPqCnREwDqCj9I
79AgOQyOflY57hOuqsbMhTeAhhG06l1zZbu4Du7SqemJ1+oK4kCO8SnbQY/+TMYQ
fisvU6PAK3HfeqMauvPfjI+QSsiCqgMmr6Z7GDWSBvvirLXMlgGaW4IE4IbXP7cs
zgLq+sTWY+8CDpceOl5nB9V7PBBSwUX4w0rNAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUs7Ky0F59fNAF5E/IeIQdNol7eogwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvczdLeTBGNTlmTkFGNUVfSWVJUWRO
b2w3ZW9nLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAt8WEDAN
BgkqhkiG9w0BAQsFAAOCAQEAQ2cmMzigglu7qDMk6GKbdojrisj5aWob6RxUySMT
pqREgyt9LBHfHKjmqImeXNvzEq525T1oItn1L2BYHDvOWAuuEnXZ0Mrt4COl0TZ4
Uipe4MWqVno6FMx2r12dQWnrC2EgXtoAxEJI2qio6otrTO0V4f6idwetS7SfCYeu
BqCF0QvgYzcadUQnKpI8U5LTk9F7oVbBHGer78krsMwe2XMJOeOcGscZE++90v9e
aFUk6uBas+qLt9jiiWwvuN1ylaCAQ/xSYjWJV3gzesKIFp2uC/vhEbA5ttcGRIXd
xm4s0kFj+BLMjhq1z0J8eQHZaDgbPb9uH3+oFbuV82O/PA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:02 2024 by rpki-client on console-ams.rpki-client.org