Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/eVOtvqNXHtIPH_KaYNTvEzMMq_I.roa
File:                     eVOtvqNXHtIPH_KaYNTvEzMMq_I.roa (download)
Hash identifier:          HPaY5YKkuUviQ5hIxL0rKeuhkcEKljQYPjVe89vSc4s=
Subject key identifier:   79:53:AD:BE:A3:57:1E:D2:0F:1F:F2:9A:60:D4:EF:13:33:0C:AB:F2
Certificate issuer:       /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Certificate serial:       0B37
Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/eVOtvqNXHtIPH_KaYNTvEzMMq_I.roa
ROA valid until:          Wed 06 Sep 2023 03:00:35 +0000
asID:                     24168
IP address blocks:
    1: 121.50.144.0/21 maxlen: 24

Validation: OK

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2871 (0xb37)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
        Validity
            Not Before: Sep 15 02:50:30 2022 GMT
            Not After : Sep  6 03:00:35 2023 GMT
        Subject: CN=7953ADBEA3571ED20F1FF29A60D4EF13330CABF2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9d:e7:d0:fa:62:88:0b:ee:84:98:10:45:a6:84:
                    04:5e:08:2c:b6:53:7d:a2:4f:16:fa:f5:93:9d:46:
                    dd:5f:0d:07:5e:b0:9f:40:a6:36:a7:79:50:6e:0f:
                    75:2e:4f:bd:55:2c:a3:c0:f0:8b:e6:b4:c6:70:70:
                    d1:1b:02:1c:ce:57:6d:d0:b0:3c:54:67:8a:07:84:
                    eb:a8:d1:f6:2e:80:15:57:c0:80:54:24:df:df:05:
                    ae:18:df:96:89:be:71:83:a5:6e:51:41:e8:d3:67:
                    a3:de:36:ae:46:33:23:49:2d:d5:92:c6:27:91:59:
                    d2:4b:a1:27:b0:5c:9b:53:6d:57:09:b2:3b:f9:f6:
                    6c:7d:4a:6b:05:38:82:bd:4d:bc:13:53:aa:78:3b:
                    15:b0:0d:11:fc:b8:ab:6a:ff:fc:82:2e:23:bb:6b:
                    ce:d4:73:42:c0:61:da:0f:ad:94:74:1d:64:12:1f:
                    ed:9b:58:ee:f5:6c:72:35:0c:ee:2b:85:91:52:c6:
                    a3:01:7f:3a:22:a6:e8:cd:37:ba:ca:ef:f5:45:d6:
                    67:57:df:db:dd:8e:ba:a1:df:98:e6:61:a0:1a:c6:
                    2b:08:65:0a:c9:bd:2c:c7:96:60:2a:c2:3e:7c:9b:
                    95:27:3a:7b:ae:86:dc:9e:53:fd:a4:d2:e6:1a:86:
                    c8:75
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                79:53:AD:BE:A3:57:1E:D2:0F:1F:F2:9A:60:D4:EF:13:33:0C:AB:F2
            X509v3 Authority Key Identifier: 
                keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl

            Authority Information Access: 
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access: 
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/eVOtvqNXHtIPH_KaYNTvEzMMq_I.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  121.50.144.0/21

    Signature Algorithm: sha256WithRSAEncryption
         0a:7e:d2:de:61:3f:2b:bc:55:7f:a2:e4:9d:49:29:ba:58:60:
         cf:5c:af:76:a9:b0:f8:f6:52:f1:83:f2:37:cf:29:89:66:d9:
         bf:e9:70:2e:45:d7:64:30:98:7f:db:f9:56:f8:43:bb:e5:b9:
         01:5c:c3:92:ed:d2:23:91:f7:ca:f2:96:b0:a3:6e:2b:a3:8d:
         b2:fb:d0:84:13:52:bb:02:d2:ba:51:6f:65:2b:15:8d:02:f1:
         1e:db:9a:32:17:3c:19:c4:7e:01:74:58:0a:5e:0e:93:b9:a5:
         8e:3e:43:d0:1b:88:9a:09:e5:e8:86:26:cf:5c:90:f9:8b:39:
         25:88:80:78:83:06:98:a7:7f:8d:e3:d9:0e:fd:bf:d7:2e:f5:
         32:b5:1c:f6:1d:24:00:29:9d:a3:45:ee:b1:8d:d2:71:06:a4:
         46:c3:79:79:fc:fb:30:47:4d:5d:bb:5f:25:e9:74:2a:e3:ad:
         bb:9f:41:be:22:16:19:76:b8:54:35:b3:4b:c5:b3:ca:ef:a4:
         8f:0c:91:01:f6:67:99:3c:b5:72:48:3c:8b:c2:43:f2:0a:4d:
         16:4f:40:ba:d9:20:9d:63:e0:4d:97:f9:c0:38:5b:66:32:c1:
         84:57:54:5f:46:c2:6b:13:59:68:53:59:7f:7d:ac:b7:d5:73:
         3e:dd:e2:96
-----BEGIN CERTIFICATE-----
MIIE2DCCA8CgAwIBAgICCzcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkY3
RUNEQjYyMDJGRkMyQzM0REY3QkNENzFBMUMwODg4NTM4MkZCNzAeFw0yMjA5MTUw
MjUwMzBaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDc5NTNBREJFQTM1NzFF
RDIwRjFGRjI5QTYwRDRFRjEzMzMwQ0FCRjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCd59D6YogL7oSYEEWmhAReCCy2U32iTxb69ZOdRt1fDQdesJ9A
pjaneVBuD3UuT71VLKPA8IvmtMZwcNEbAhzOV23QsDxUZ4oHhOuo0fYugBVXwIBU
JN/fBa4Y35aJvnGDpW5RQejTZ6PeNq5GMyNJLdWSxieRWdJLoSewXJtTbVcJsjv5
9mx9SmsFOIK9TbwTU6p4OxWwDRH8uKtq//yCLiO7a87Uc0LAYdoPrZR0HWQSH+2b
WO71bHI1DO4rhZFSxqMBfzoipujNN7rK7/VF1mdX39vdjrqh35jmYaAaxisIZQrJ
vSzHlmAqwj58m5UnOnuuhtyeU/2k0uYahsh1AgMBAAGjggH0MIIB8DAdBgNVHQ4E
FgQUeVOtvqNXHtIPH/KaYNTvEzMMq/IwHwYDVR0jBBgwFoAU/37NtiAv/Cw033vN
caHAiIU4L7cwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg
UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VCVEFJ
V0FOL18zN050aUF2X0N3MDMzdk5jYUhBaUlVNEw3Yy5jcmwwYAYIKwYBBQUHAQEE
VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX
TklDQ0EvXzM3TnRpQXZfQ3cwMzN2TmNhSEFpSVU0TDdjLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw
a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VCVEFJV0FOL2VWT3R2cU5YSHRJ
UEhfS2FZTlR2RXpNTXFfSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50
d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAN5MpAwDQYJKoZIhvcNAQELBQADggEBAAp+0t5hPyu8VX+i5J1JKbpYYM9c
r3apsPj2UvGD8jfPKYlm2b/pcC5F12QwmH/b+Vb4Q7vluQFcw5Lt0iOR98rylrCj
biujjbL70IQTUrsC0rpRb2UrFY0C8R7bmjIXPBnEfgF0WApeDpO5pY4+Q9AbiJoJ
5eiGJs9ckPmLOSWIgHiDBpinf43j2Q79v9cu9TK1HPYdJAApnaNF7rGN0nEGpEbD
eXn8+zBHTV27XyXpdCrjrbufQb4iFhl2uFQ1s0vFs8rvpI8MkQH2Z5k8tXJIPIvC
Q/IKTRZPQLrZIJ1j4E2X+cA4W2YywYRXVF9GwmsTWWhTWX99rLfVcz7d4pY=
-----END CERTIFICATE-----
Generated at Mon Feb 6 18:25:11 2023 by rpki-client.