Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/xINEu-C6cXSdu8WWOaPgAMKXLp8.roa
File: xINEu-C6cXSdu8WWOaPgAMKXLp8.roa (raw, json)
Hash identifier: enYi7oj1Tzbx/ZGGGvQKZ4sh/0Ctyy7ZToNJYEZ2Gt0=
Subject key identifier: C4:83:44:BB:E0:BA:71:74:9D:BB:C5:96:39:A3:E0:00:C2:97:2E:9F
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 12F5
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/xINEu-C6cXSdu8WWOaPgAMKXLp8.roa
Signing time: Fri 01 Sep 2023 08:05:13 +0000
ROA not before: Fri 01 Sep 2023 08:05:13 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 7482
IP address blocks: 210.201.192.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4853 (0x12f5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:05:13 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=C48344BBE0BA71749DBBC59639A3E000C2972E9F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:b8:ea:f1:7b:22:fa:82:85:44:cf:5d:b3:c4:
94:76:aa:8b:99:69:1e:88:26:0c:a3:ee:f3:17:7f:
91:9f:a9:e1:74:b1:68:13:7b:cd:e3:00:72:28:d1:
7f:37:84:6c:ea:a9:c9:18:28:be:29:59:90:07:bb:
07:46:d4:5e:8e:51:b5:ce:05:0f:01:35:4e:fb:4b:
15:69:94:b0:05:f9:66:d6:1c:8f:73:28:bc:52:d2:
5e:7a:e8:b3:af:9a:39:eb:18:80:3c:dc:ff:bf:4e:
fb:ee:c6:07:97:b6:a2:67:19:8e:0f:52:48:d0:a6:
da:63:ba:9f:90:7c:ac:ab:0d:c9:21:d9:31:bb:e1:
af:b6:a1:fd:e2:b2:9d:c4:cd:ce:ed:46:b3:44:2b:
7c:82:29:ea:f8:dc:31:4f:49:6c:2e:13:b4:6b:fd:
90:a6:d0:e2:3e:2c:65:ac:a0:18:0b:b7:9d:e9:2d:
33:a6:4d:6e:1a:dc:c2:c3:40:cf:48:b6:12:cc:6f:
89:c0:2f:88:77:c4:bb:d9:5c:f4:73:10:4a:c1:9b:
de:40:53:20:ea:ea:69:86:43:bd:6b:73:b6:11:a3:
0c:8d:48:b4:5e:c0:36:0a:a1:6a:25:0a:89:e4:18:
8f:29:31:07:9f:9c:b5:41:76:b5:08:ef:bd:9d:74:
03:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:83:44:BB:E0:BA:71:74:9D:BB:C5:96:39:A3:E0:00:C2:97:2E:9F
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/xINEu-C6cXSdu8WWOaPgAMKXLp8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.201.192.0/18
Signature Algorithm: sha256WithRSAEncryption
a1:73:1e:bb:31:5f:97:09:0c:e2:45:a2:e1:b7:57:13:f8:14:
bd:fb:1e:a9:26:c7:89:27:11:ee:ab:60:51:12:b6:e4:15:14:
57:95:cd:c0:42:80:83:2c:02:5a:b0:2d:11:43:35:6e:91:8e:
93:60:e3:91:16:05:cc:ff:6c:66:86:62:6b:8d:33:75:5b:4e:
15:00:f5:09:29:53:9c:c4:be:76:e7:57:e5:fd:41:76:2c:6f:
41:7d:ec:e0:c3:71:90:71:2f:fa:fb:1f:d8:24:4e:0e:aa:63:
36:25:69:d1:d9:db:af:d3:27:f7:18:2f:6f:09:e1:7a:84:6d:
dd:1b:03:00:54:a1:1f:99:59:e9:e9:38:b4:e4:57:7e:37:20:
1d:ec:4f:bd:e8:74:8e:65:c8:1e:4e:f6:96:14:a2:6b:8a:59:
64:29:cb:05:de:f0:45:f4:9b:19:f3:2a:a8:07:5c:c2:77:06:
3f:fe:47:a6:46:9c:87:72:94:fc:d0:f2:22:47:1c:50:44:b5:
72:30:9d:9b:7a:52:73:98:9a:a7:b3:7b:db:80:c2:e0:09:24:
b9:28:e7:39:67:b8:71:1b:67:8d:5a:f9:07:41:ef:b8:a1:3e:
e4:ff:46:7d:cf:d0:e0:02:e5:51:3c:35:01:c6:59:9b:18:f8:
b5:60:28:43
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICEvUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMzA5MDEw
ODA1MTNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEM0ODM0NEJCRTBCQTcx
NzQ5REJCQzU5NjM5QTNFMDAwQzI5NzJFOUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDBuOrxeyL6goVEz12zxJR2qouZaR6IJgyj7vMXf5GfqeF0sWgT
e83jAHIo0X83hGzqqckYKL4pWZAHuwdG1F6OUbXOBQ8BNU77SxVplLAF+WbWHI9z
KLxS0l566LOvmjnrGIA83P+/TvvuxgeXtqJnGY4PUkjQptpjup+QfKyrDckh2TG7
4a+2of3isp3Ezc7tRrNEK3yCKer43DFPSWwuE7Rr/ZCm0OI+LGWsoBgLt53pLTOm
TW4a3MLDQM9IthLMb4nAL4h3xLvZXPRzEErBm95AUyDq6mmGQ71rc7YRowyNSLRe
wDYKoWolConkGI8pMQefnLVBdrUI772ddAMZAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUxINEu+C6cXSdu8WWOaPgAMKXLp8wHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wveElORXUtQzZjWFNkdThXV09hUGdB
TUtYTHA4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBtLJwDAN
BgkqhkiG9w0BAQsFAAOCAQEAoXMeuzFflwkM4kWi4bdXE/gUvfseqSbHiScR7qtg
URK25BUUV5XNwEKAgywCWrAtEUM1bpGOk2DjkRYFzP9sZoZia40zdVtOFQD1CSlT
nMS+dudX5f1BdixvQX3s4MNxkHEv+vsf2CRODqpjNiVp0dnbr9Mn9xgvbwnheoRt
3RsDAFShH5lZ6ek4tORXfjcgHexPveh0jmXIHk72lhSia4pZZCnLBd7wRfSbGfMq
qAdcwncGP/5Hpkach3KU/NDyIkccUES1cjCdm3pSc5iap7N724DC4AkkuSjnOWe4
cRtnjVr5B0HvuKE+5P9Gfc/Q4ALlUTw1AcZZmxj4tWAoQw==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:58:17 2025 by rpki-client