Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/k_Gf2Bupfm1WfkME5Q5XJiyCBQg.roa
File: k_Gf2Bupfm1WfkME5Q5XJiyCBQg.roa (raw, json)
Hash identifier: 9svCNlkTTfyU1rDI50l5Idzu2e0rwakw0vYUfm2ZLbw=
Subject key identifier: 93:F1:9F:D8:1B:A9:7E:6D:56:7E:43:04:E5:0E:57:26:2C:82:05:08
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1157
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/k_Gf2Bupfm1WfkME5Q5XJiyCBQg.roa
Signing time: Fri 11 Aug 2023 09:28:47 +0000
ROA not before: Fri 11 Aug 2023 09:28:47 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17709
IP address blocks: 222.250.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4439 (0x1157)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Aug 11 09:28:47 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=93F19FD81BA97E6D567E4304E50E57262C820508
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:02:6f:58:bd:f9:e2:6a:24:9f:90:65:50:90:
e5:90:ce:a3:ce:46:50:2b:45:3b:3c:86:8c:15:2a:
d2:ab:ab:d9:0a:18:63:f4:64:8b:99:c3:e3:d5:01:
5d:ad:5a:1b:9e:1f:e3:82:fe:2a:7f:bb:57:b8:c7:
21:d2:fd:53:46:ad:4b:bd:ed:72:9a:2c:1a:7d:47:
0f:68:25:50:27:c9:68:6d:c5:db:2b:30:75:40:41:
f6:77:80:3a:5c:5f:a3:23:50:1a:02:4f:49:88:78:
90:99:f5:86:4d:f3:b0:b6:e7:e2:92:0e:80:6f:27:
42:b8:c0:0e:f8:c4:a6:c8:17:1e:91:67:55:ee:c6:
bf:2f:79:69:0c:12:ef:34:46:37:12:c2:5b:47:62:
6e:bf:2c:41:22:23:06:4a:46:e4:0e:cf:00:d7:ae:
28:87:3c:6d:f3:68:7e:1c:4b:c2:b9:9d:56:b1:dc:
20:87:03:33:66:58:f6:4b:a8:17:c4:6d:5a:d8:c6:
ea:a4:8a:ae:e1:c4:ed:57:3b:55:13:f2:ca:a1:e4:
ed:95:76:50:d4:26:d4:4a:5e:36:47:96:0e:78:b7:
6a:59:85:17:1b:95:c3:b8:50:bd:2f:4b:f5:5e:7f:
80:49:51:e1:e2:0d:07:fe:d0:63:01:d0:01:8f:91:
c1:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:F1:9F:D8:1B:A9:7E:6D:56:7E:43:04:E5:0E:57:26:2C:82:05:08
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/k_Gf2Bupfm1WfkME5Q5XJiyCBQg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
222.250.0.0/16
Signature Algorithm: sha256WithRSAEncryption
1b:90:02:df:d1:7e:17:9e:dc:ad:7b:7e:6c:bc:41:41:3d:4c:
6d:26:aa:a4:59:34:78:37:a0:36:e2:96:d1:b5:02:7a:2c:3b:
d0:db:08:b4:54:7e:98:34:b2:54:da:03:fa:7d:9a:6c:40:dd:
ad:35:b0:3d:cd:ef:48:60:f8:a5:09:f0:91:bd:66:58:38:cd:
57:a1:fb:d6:a6:38:98:5b:99:56:58:e3:fb:5a:f6:ef:32:37:
8d:77:73:98:1d:1a:ec:27:83:ef:d8:a1:0b:58:d8:0c:44:3f:
eb:59:17:aa:bf:e9:a4:76:63:3f:c7:0f:1d:7b:ae:47:49:22:
ed:3f:db:92:56:59:50:35:a8:12:2f:d1:94:0e:bf:ac:64:81:
1a:c6:1b:91:4e:c3:16:f7:fb:b5:8a:e7:b8:0a:56:71:c9:35:
4c:ef:83:70:f7:f1:c3:74:2a:88:56:a4:5e:a4:ee:3c:b1:96:
a1:5a:05:43:15:9d:37:50:53:ff:8c:65:51:68:1a:e2:9f:9c:
ab:3b:6f:f0:08:f9:c1:c5:a8:60:10:08:84:a0:f3:1e:fb:6a:
2a:10:04:b8:a1:a6:5e:d0:7b:f2:42:fb:90:4e:e8:0b:c0:f3:
50:69:1c:74:68:9d:33:f4:f9:ac:1e:ad:d5:71:24:eb:68:71:
37:3e:8a:a2
-----BEGIN CERTIFICATE-----
MIIEzTCCA7WgAwIBAgICEVcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMzA4MTEw
OTI4NDdaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDkzRjE5RkQ4MUJBOTdF
NkQ1NjdFNDMwNEU1MEU1NzI2MkM4MjA1MDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDGAm9YvfniaiSfkGVQkOWQzqPORlArRTs8howVKtKrq9kKGGP0
ZIuZw+PVAV2tWhueH+OC/ip/u1e4xyHS/VNGrUu97XKaLBp9Rw9oJVAnyWhtxdsr
MHVAQfZ3gDpcX6MjUBoCT0mIeJCZ9YZN87C25+KSDoBvJ0K4wA74xKbIFx6RZ1Xu
xr8veWkMEu80RjcSwltHYm6/LEEiIwZKRuQOzwDXriiHPG3zaH4cS8K5nVax3CCH
AzNmWPZLqBfEbVrYxuqkiq7hxO1XO1UT8sqh5O2VdlDUJtRKXjZHlg54t2pZhRcb
lcO4UL0vS/Vef4BJUeHiDQf+0GMB0AGPkcEbAgMBAAGjggHpMIIB5TAdBgNVHQ4E
FgQUk/Gf2Bupfm1WfkME5Q5XJiyCBQgwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wva19HZjJCdXBmbTFXZmtNRTVRNVhK
aXlDQlFnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAN76MA0G
CSqGSIb3DQEBCwUAA4IBAQAbkALf0X4Xntyte35svEFBPUxtJqqkWTR4N6A24pbR
tQJ6LDvQ2wi0VH6YNLJU2gP6fZpsQN2tNbA9ze9IYPilCfCRvWZYOM1XofvWpjiY
W5lWWOP7WvbvMjeNd3OYHRrsJ4Pv2KELWNgMRD/rWReqv+mkdmM/xw8de65HSSLt
P9uSVllQNagSL9GUDr+sZIEaxhuRTsMW9/u1iue4ClZxyTVM74Nw9/HDdCqIVqRe
pO48sZahWgVDFZ03UFP/jGVRaBrin5yrO2/wCPnBxahgEAiEoPMe+2oqEAS4oaZe
0HvyQvuQTugLwPNQaRx0aJ0z9PmsHq3VcSTraHE3Poqi
-----END CERTIFICATE-----
Generated at Mon May 19 00:55:32 2025 by rpki-client