Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/zE3n1na1_XLbDZZiVEyG2coqb8s.roa
File: zE3n1na1_XLbDZZiVEyG2coqb8s.roa (raw, json)
Hash identifier: nzSPwsOSkRynlUxtHWAEDORh/WiwWHOuuLWE49Ygh1o=
Subject key identifier: CC:4D:E7:D6:76:B5:FD:72:DB:0D:96:62:54:4C:86:D9:CA:2A:6F:CB
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1317
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/zE3n1na1_XLbDZZiVEyG2coqb8s.roa
Signing time: Fri 01 Sep 2023 08:05:22 +0000
ROA not before: Fri 01 Sep 2023 08:05:22 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17709
IP address blocks: 218.184.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4887 (0x1317)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:05:22 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=CC4DE7D676B5FD72DB0D9662544C86D9CA2A6FCB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:92:db:e1:0e:52:05:78:41:53:2b:3c:79:ac:
3e:81:3a:c8:06:32:53:46:f6:fa:39:89:42:93:e3:
49:bd:a8:78:3a:19:bc:fc:a8:d2:5f:20:9e:c1:e2:
a2:b2:00:86:5b:01:cb:7d:29:39:04:22:9d:b2:a9:
79:8a:e1:3e:87:36:78:72:4a:e9:83:ba:50:76:39:
4e:3b:75:43:36:f5:59:b4:1a:3e:cb:69:41:10:d1:
ad:25:1e:76:6f:df:fa:83:3f:88:9e:cf:bb:4e:51:
3b:20:d5:03:f6:29:ea:a7:41:50:74:44:76:af:34:
2b:d4:70:58:a9:67:3c:05:b7:ab:c2:53:64:60:94:
4e:a6:be:28:95:74:6b:af:d0:ed:03:9d:e7:6a:a0:
16:1e:33:f1:bd:39:39:bb:52:23:7d:fa:8e:61:92:
28:0e:ea:c1:ad:a2:3c:1a:36:b6:9c:db:5f:c8:9f:
da:1b:9a:64:f4:c5:fa:25:b4:ea:1a:98:2f:72:50:
7a:5a:89:17:74:0e:3d:e5:12:2f:6d:68:5f:7d:f9:
e8:8f:9e:c8:4e:b8:71:6a:36:1c:11:d0:2f:02:08:
34:8e:fb:7d:90:f0:30:d7:51:74:98:84:1c:f0:02:
4d:4a:9b:12:8b:f8:e2:1d:76:08:89:66:1a:84:e9:
5c:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:4D:E7:D6:76:B5:FD:72:DB:0D:96:62:54:4C:86:D9:CA:2A:6F:CB
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/zE3n1na1_XLbDZZiVEyG2coqb8s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.184.0.0/16
Signature Algorithm: sha256WithRSAEncryption
b4:0f:ed:81:e6:63:48:30:fd:1b:4a:6f:95:69:04:1a:6a:81:
e3:21:62:9f:27:50:8d:ec:79:56:68:78:57:e5:7a:83:33:a2:
37:18:be:6d:bf:35:68:70:29:cf:15:52:71:42:cd:00:0d:8b:
4b:af:d0:ba:05:0c:3c:b0:ed:76:1e:f3:17:6c:4f:ea:f4:fc:
5f:f5:39:e4:03:81:9b:b4:f1:9a:12:84:2d:eb:0d:dc:54:b4:
66:db:0e:a8:34:f6:67:8d:80:02:8a:67:e3:d4:f3:cf:49:d1:
b8:5c:0b:7d:04:47:10:e1:a7:23:19:70:c3:59:4a:8d:66:ed:
57:ba:4e:ce:10:4d:8c:35:be:86:1a:b1:cc:1d:da:10:ef:ea:
b9:0e:99:57:cd:a6:df:e7:68:3a:41:b7:9b:66:92:31:df:5f:
65:67:93:04:60:41:08:7f:db:b7:c3:7e:28:cb:e0:ef:93:23:
97:f3:80:09:cd:5d:13:b7:48:05:69:84:f3:1a:f6:d0:37:c1:
fb:bc:a0:dc:82:bf:d3:af:38:a9:a5:ea:ce:27:2a:f5:4d:bb:
70:b2:03:0d:5f:08:f5:3d:3c:96:51:e5:c7:cc:4b:16:16:0a:
27:dc:3a:14:11:40:9a:2f:07:ef:9b:87:45:0b:cc:66:7e:a2:
57:fa:4d:c4
-----BEGIN CERTIFICATE-----
MIIEzTCCA7WgAwIBAgICExcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMzA5MDEw
ODA1MjJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKENDNERFN0Q2NzZCNUZE
NzJEQjBEOTY2MjU0NEM4NkQ5Q0EyQTZGQ0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC1ktvhDlIFeEFTKzx5rD6BOsgGMlNG9vo5iUKT40m9qHg6Gbz8
qNJfIJ7B4qKyAIZbAct9KTkEIp2yqXmK4T6HNnhySumDulB2OU47dUM29Vm0Gj7L
aUEQ0a0lHnZv3/qDP4iez7tOUTsg1QP2KeqnQVB0RHavNCvUcFipZzwFt6vCU2Rg
lE6mviiVdGuv0O0DnedqoBYeM/G9OTm7UiN9+o5hkigO6sGtojwaNrac21/In9ob
mmT0xfoltOoamC9yUHpaiRd0Dj3lEi9taF99+eiPnshOuHFqNhwR0C8CCDSO+32Q
8DDXUXSYhBzwAk1KmxKL+OIddgiJZhqE6VwBAgMBAAGjggHpMIIB5TAdBgNVHQ4E
FgQUzE3n1na1/XLbDZZiVEyG2coqb8swHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvekUzbjFuYTFfWExiRFpaaVZFeUcy
Y29xYjhzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDANq4MA0G
CSqGSIb3DQEBCwUAA4IBAQC0D+2B5mNIMP0bSm+VaQQaaoHjIWKfJ1CN7HlWaHhX
5XqDM6I3GL5tvzVocCnPFVJxQs0ADYtLr9C6BQw8sO12HvMXbE/q9Pxf9TnkA4Gb
tPGaEoQt6w3cVLRm2w6oNPZnjYACimfj1PPPSdG4XAt9BEcQ4acjGXDDWUqNZu1X
uk7OEE2MNb6GGrHMHdoQ7+q5DplXzabf52g6QbebZpIx319lZ5MEYEEIf9u3w34o
y+DvkyOX84AJzV0Tt0gFaYTzGvbQN8H7vKDcgr/TrzipperOJyr1TbtwsgMNXwj1
PTyWUeXHzEsWFgon3DoUEUCaLwfvm4dFC8xmfqJX+k3E
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:02 2024 by rpki-client on console-ams.rpki-client.org