Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/xN2C3to_EyKmCeCeVV7sg4axr5g.roa
File: xN2C3to_EyKmCeCeVV7sg4axr5g.roa (raw, json)
Hash identifier: GbqqOfq1h51Tw/OSKfkfU0AV7CwNxUBM6UWvrxHGkKc=
Subject key identifier: C4:DD:82:DE:DA:3F:13:22:A6:09:E0:9E:55:5E:EC:83:86:B1:AF:98
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0E53
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/xN2C3to_EyKmCeCeVV7sg4axr5g.roa
Signing time: Wed 29 Sep 2021 02:40:15 +0000
ROA not before: Wed 29 Sep 2021 02:40:15 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17709
IP address blocks: 210.58.104.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3667 (0xe53)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:40:15 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=C4DD82DEDA3F1322A609E09E555EEC8386B1AF98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:69:6a:19:ce:5a:77:5e:4f:5f:a8:8d:90:16:
df:d9:2a:99:a1:e1:7e:79:01:4e:b8:84:5c:a3:0d:
9c:c0:66:af:7e:e3:40:8e:57:9f:eb:6c:46:47:e5:
21:57:9a:d1:c6:5c:da:7f:68:d1:c1:8c:25:64:cc:
e1:c9:59:4b:e5:53:cc:bd:5c:ec:0f:09:f7:f8:fc:
c5:3c:a1:3e:b0:77:5f:02:0d:a2:e4:01:14:b5:49:
6c:8c:83:d0:9d:e9:d6:42:cf:a7:cf:05:c1:15:d3:
07:d0:ee:8e:10:b7:f9:57:34:c9:65:b7:ff:5f:b2:
3f:11:12:51:09:0a:a9:5e:a1:ef:9e:af:b1:45:3d:
3e:83:56:a5:d4:e8:d2:8d:7f:6c:4b:2f:2e:8a:ff:
1e:02:d6:f0:bc:82:e6:dc:ed:72:e7:99:6b:72:16:
47:03:61:2a:be:82:ee:4d:8b:9f:c0:9c:22:78:31:
c3:c1:27:79:30:83:18:69:67:cd:ce:6c:b0:27:2d:
54:cc:49:1b:e0:18:4b:64:1c:6a:99:0b:9a:30:58:
81:4d:6d:66:8f:d4:fa:13:0f:28:38:61:e0:7b:ef:
14:e8:4f:69:30:0c:7f:a1:53:32:b6:ab:2a:07:01:
33:43:45:5f:37:22:a4:10:3d:55:bc:7f:d2:9e:22:
8e:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:DD:82:DE:DA:3F:13:22:A6:09:E0:9E:55:5E:EC:83:86:B1:AF:98
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/xN2C3to_EyKmCeCeVV7sg4axr5g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.58.104.0/22
Signature Algorithm: sha256WithRSAEncryption
75:4a:42:49:f8:bb:58:1d:1a:fe:ef:f1:69:4b:b3:6a:8e:2d:
58:42:f8:b5:e6:66:e1:4c:72:16:b3:f6:a7:68:56:f2:46:18:
aa:da:b6:e0:b4:01:c5:60:9a:09:7e:3d:12:3d:4d:66:ae:79:
db:53:1e:9a:2e:8c:95:59:24:6e:6e:9a:82:a2:c0:b4:18:9b:
08:11:a3:92:ff:5f:9a:9f:19:d6:ef:45:5e:f1:80:66:71:7b:
44:3d:6a:08:1d:1f:ce:04:db:b0:00:cf:3f:99:b6:9a:a5:23:
f0:b8:10:9b:05:83:d2:51:36:91:db:13:8d:df:2d:49:b2:d5:
7b:ec:b9:6b:2b:84:3e:3c:3b:53:fc:fd:db:f8:e1:32:ab:6d:
5a:18:b4:5f:f0:63:1a:1e:61:eb:f2:8a:af:1f:25:76:02:4c:
42:b6:b2:7f:1c:38:2a:66:2c:45:83:fa:4c:dc:2d:9f:b7:c3:
be:dc:36:82:6b:8a:26:bc:dd:9f:09:ae:05:49:db:48:bd:a4:
b6:5a:e4:eb:16:6e:d5:6c:8c:84:a6:75:1f:05:4e:65:73:49:
4d:40:8e:7f:20:87:7d:6b:83:db:df:4e:bc:bb:2f:c8:97:b5:
17:1c:c4:7a:b2:05:cc:db:38:39:69:c3:1b:e2:ca:6e:b2:d1:
b5:04:b7:23
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDlMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMTA5Mjkw
MjQwMTVaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEM0REQ4MkRFREEzRjEz
MjJBNjA5RTA5RTU1NUVFQzgzODZCMUFGOTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDSaWoZzlp3Xk9fqI2QFt/ZKpmh4X55AU64hFyjDZzAZq9+40CO
V5/rbEZH5SFXmtHGXNp/aNHBjCVkzOHJWUvlU8y9XOwPCff4/MU8oT6wd18CDaLk
ARS1SWyMg9Cd6dZCz6fPBcEV0wfQ7o4Qt/lXNMllt/9fsj8RElEJCqleoe+er7FF
PT6DVqXU6NKNf2xLLy6K/x4C1vC8gubc7XLnmWtyFkcDYSq+gu5Ni5/AnCJ4McPB
J3kwgxhpZ83ObLAnLVTMSRvgGEtkHGqZC5owWIFNbWaP1PoTDyg4YeB77xToT2kw
DH+hUzK2qyoHATNDRV83IqQQPVW8f9KeIo7BAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUxN2C3to/EyKmCeCeVV7sg4axr5gwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wveE4yQzN0b19FeUttQ2VDZVZWN3Nn
NGF4cjVnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAtI6aDAN
BgkqhkiG9w0BAQsFAAOCAQEAdUpCSfi7WB0a/u/xaUuzao4tWEL4teZm4UxyFrP2
p2hW8kYYqtq24LQBxWCaCX49Ej1NZq5521Memi6MlVkkbm6agqLAtBibCBGjkv9f
mp8Z1u9FXvGAZnF7RD1qCB0fzgTbsADPP5m2mqUj8LgQmwWD0lE2kdsTjd8tSbLV
e+y5ayuEPjw7U/z92/jhMqttWhi0X/BjGh5h6/KKrx8ldgJMQrayfxw4KmYsRYP6
TNwtn7fDvtw2gmuKJrzdnwmuBUnbSL2ktlrk6xZu1WyMhKZ1HwVOZXNJTUCOfyCH
fWuD299OvLsvyJe1FxzEerIFzNs4OWnDG+LKbrLRtQS3Iw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:02 2024 by rpki-client on console-ams.rpki-client.org