Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/vBYJoU2UTB5iL90yVudMtCTObQ8.roa
File: vBYJoU2UTB5iL90yVudMtCTObQ8.roa (raw, json)
Hash identifier: MPlW56rY6fZ6AO3IEKcD/HllyVNFZwxeQK66OyZU13k=
Subject key identifier: BC:16:09:A1:4D:94:4C:1E:62:2F:DD:32:56:E7:4C:B4:24:CE:6D:0F
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1284
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/vBYJoU2UTB5iL90yVudMtCTObQ8.roa
Signing time: Fri 01 Sep 2023 08:04:35 +0000
ROA not before: Fri 01 Sep 2023 08:04:35 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17709
IP address blocks: 210.200.64.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4740 (0x1284)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:04:35 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=BC1609A14D944C1E622FDD3256E74CB424CE6D0F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:6a:a5:de:42:71:da:33:b5:17:e0:e6:77:18:
2c:8b:51:d4:67:28:d2:65:16:1e:8d:71:4d:65:2c:
56:2a:38:b5:a9:6e:a9:fc:56:ec:eb:7c:0a:21:61:
fd:25:03:9a:f2:78:7f:8e:e2:64:2a:6f:d6:28:56:
6a:9e:f3:40:f0:d7:a9:5b:f5:45:d3:a0:4f:24:32:
72:22:5e:0b:8b:7a:28:00:5d:6a:39:2f:71:37:48:
fb:ab:6f:a7:4a:41:fc:d3:7e:1a:16:c8:98:eb:9b:
05:71:ad:40:01:08:be:3c:88:80:62:41:a2:b0:77:
fd:5f:44:9d:51:32:15:a0:52:1a:47:61:85:12:a4:
73:4b:f4:c8:da:be:24:2d:8c:67:b6:11:3c:15:5a:
35:79:ff:40:ac:be:56:58:0b:58:52:af:c9:83:db:
8a:f0:15:87:6b:59:62:a7:ce:51:28:1c:0d:8f:ee:
db:39:c5:e5:f6:ed:92:bd:55:02:cb:ae:52:3b:64:
f6:e8:83:eb:3c:28:b3:cb:c6:40:5a:a5:ee:30:90:
a1:ec:ba:b6:56:07:11:91:80:77:f4:64:09:af:4e:
3b:68:2a:60:6f:43:04:3f:eb:62:e4:92:f8:9c:c1:
41:e2:54:40:6c:a1:29:f6:97:ad:cc:bd:2f:8a:2d:
60:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:16:09:A1:4D:94:4C:1E:62:2F:DD:32:56:E7:4C:B4:24:CE:6D:0F
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/vBYJoU2UTB5iL90yVudMtCTObQ8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.200.64.0/18
Signature Algorithm: sha256WithRSAEncryption
3c:8a:ed:be:5d:16:4e:24:4a:97:cc:85:11:a1:8e:c7:18:11:
d3:84:0c:3a:03:d3:88:49:cc:5c:33:91:1f:95:e7:d5:aa:fa:
d7:b9:33:57:aa:3b:2a:5b:41:48:04:3b:e0:7c:dc:60:7f:6a:
96:8f:69:6c:f9:47:76:c9:53:58:0f:9a:26:e6:4a:3c:c7:b0:
19:3b:1d:89:11:e5:52:f3:3e:d6:fe:41:94:88:59:bf:b6:9d:
2f:ae:4b:c4:e4:db:4d:59:04:c3:dd:f9:f6:4b:30:1c:0e:b5:
b5:cc:d1:48:a5:9f:02:51:3f:3b:69:5c:a0:2a:3b:1a:db:8f:
d8:b7:6c:f4:45:e2:19:c0:cb:1b:df:d9:01:13:70:b9:90:65:
cf:6f:cb:b1:c5:82:a6:ac:a8:1f:c0:76:40:1f:48:87:b5:0c:
e2:7d:43:69:74:8a:76:1c:35:5d:55:79:5c:79:2b:bb:16:46:
f7:d3:64:18:7c:18:2a:47:cb:cd:a4:78:9b:57:ec:f8:8c:b7:
4a:72:a5:4c:b7:3f:fb:c1:c1:7a:ce:fe:e3:d6:b1:92:08:54:
fb:d9:34:a0:f9:ae:20:71:75:f0:a5:79:02:d3:a4:0e:83:1a:
79:fb:57:c7:84:26:72:a8:04:06:1e:29:3c:ce:25:e5:b5:2a:
d7:c4:2d:d0
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICEoQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMzA5MDEw
ODA0MzVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEJDMTYwOUExNEQ5NDRD
MUU2MjJGREQzMjU2RTc0Q0I0MjRDRTZEMEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDfaqXeQnHaM7UX4OZ3GCyLUdRnKNJlFh6NcU1lLFYqOLWpbqn8
VuzrfAohYf0lA5ryeH+O4mQqb9YoVmqe80Dw16lb9UXToE8kMnIiXguLeigAXWo5
L3E3SPurb6dKQfzTfhoWyJjrmwVxrUABCL48iIBiQaKwd/1fRJ1RMhWgUhpHYYUS
pHNL9MjaviQtjGe2ETwVWjV5/0CsvlZYC1hSr8mD24rwFYdrWWKnzlEoHA2P7ts5
xeX27ZK9VQLLrlI7ZPbog+s8KLPLxkBape4wkKHsurZWBxGRgHf0ZAmvTjtoKmBv
QwQ/62LkkvicwUHiVEBsoSn2l63MvS+KLWC3AgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUvBYJoU2UTB5iL90yVudMtCTObQ8wHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvdkJZSm9VMlVUQjVpTDkweVZ1ZE10
Q1RPYlE4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBtLIQDAN
BgkqhkiG9w0BAQsFAAOCAQEAPIrtvl0WTiRKl8yFEaGOxxgR04QMOgPTiEnMXDOR
H5Xn1ar617kzV6o7KltBSAQ74HzcYH9qlo9pbPlHdslTWA+aJuZKPMewGTsdiRHl
UvM+1v5BlIhZv7adL65LxOTbTVkEw9359kswHA61tczRSKWfAlE/O2lcoCo7GtuP
2Lds9EXiGcDLG9/ZARNwuZBlz2/LscWCpqyoH8B2QB9Ih7UM4n1DaXSKdhw1XVV5
XHkruxZG99NkGHwYKkfLzaR4m1fs+Iy3SnKlTLc/+8HBes7+49axkghU+9k0oPmu
IHF18KV5AtOkDoMaeftXx4QmcqgEBh4pPM4l5bUq18Qt0A==
-----END CERTIFICATE-----
Generated at Mon Jan 15 22:54:32 2024 by rpki-client on console-ams.rpki-client.org