Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/9YmFLZGlt-gouQVagVvh82_c_yk.roa
File: 9YmFLZGlt-gouQVagVvh82_c_yk.roa (raw, json)
Hash identifier: Wvisu6HUrsM3yI08Wmz2vjq0PpwvpQ9IF8tTJvGtaEI=
Subject key identifier: F5:89:85:2D:91:A5:B7:E8:28:B9:05:5A:81:5B:E1:F3:6F:DC:FF:29
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 136F
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/9YmFLZGlt-gouQVagVvh82_c_yk.roa
Signing time: Tue 07 Nov 2023 05:33:48 +0000
ROA not before: Tue 07 Nov 2023 05:33:48 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17709
IP address blocks: 124.218.178.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4975 (0x136f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Nov 7 05:33:48 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=F589852D91A5B7E828B9055A815BE1F36FDCFF29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:a0:0e:f6:0d:57:8a:48:93:ac:77:d7:44:09:
9e:13:c1:ba:a4:1d:4f:16:bd:7c:2d:e6:98:e9:a6:
04:ab:8a:8c:ca:e8:53:ea:b0:cd:18:85:37:c8:94:
d1:78:6b:22:f5:21:d9:44:9d:2b:74:70:7f:f4:20:
5e:57:01:c6:c5:f6:df:d1:36:b8:17:0a:ac:f0:b2:
42:c0:60:73:50:ef:6e:85:31:02:97:21:1c:1c:1e:
2f:02:c7:44:a3:1d:47:fb:f4:e7:c3:61:5e:ec:51:
b8:34:c3:77:99:f7:9f:34:30:a3:9f:24:e8:19:41:
d6:92:f7:83:2a:f3:1e:ba:6d:2a:3b:72:ed:21:a3:
54:22:1a:30:e0:97:66:9c:66:4f:89:04:a1:3e:14:
53:15:8c:51:7a:b1:38:95:b4:b3:21:11:e1:14:13:
5b:e2:05:73:e6:6b:d2:4b:58:2c:0c:25:a5:91:56:
9d:ab:11:c0:f3:bf:d6:21:1a:c1:d5:56:b3:85:1a:
b8:44:df:5a:10:66:9c:6c:20:65:26:b5:03:ee:45:
57:92:aa:af:1d:bb:a4:15:68:8a:56:77:b3:6b:03:
68:f2:29:9d:5a:27:60:a8:31:d9:a3:6e:f5:c8:cd:
46:e4:c1:06:ba:0b:ac:7c:02:f2:1a:42:d5:de:6b:
47:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:89:85:2D:91:A5:B7:E8:28:B9:05:5A:81:5B:E1:F3:6F:DC:FF:29
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/9YmFLZGlt-gouQVagVvh82_c_yk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.218.178.0/24
Signature Algorithm: sha256WithRSAEncryption
84:6c:fb:cc:cd:87:65:13:3f:59:5f:e3:3f:f1:9f:fe:d5:bc:
67:46:cd:fa:9f:9d:f2:5d:80:de:33:24:c3:d8:9d:53:b6:81:
97:31:7f:7e:17:87:05:7e:31:2c:bf:09:21:31:71:b6:b6:7f:
a8:17:5c:3c:d8:8c:b8:ca:78:cb:6a:b2:17:fc:e1:b1:9b:5e:
14:d2:10:4d:92:59:35:41:6a:1a:bf:87:4d:33:3a:2b:55:7d:
91:da:1d:55:ba:71:65:30:2b:a6:d8:cc:1a:89:d2:56:a5:55:
08:ce:3e:d7:19:95:ea:e2:2e:8c:2d:0b:9a:40:d4:34:04:5b:
8b:ad:d0:06:25:9d:60:97:80:0c:bd:37:b6:5a:54:81:f7:7d:
42:ca:4c:87:88:60:aa:52:70:7d:75:ec:a6:ec:22:1e:a9:38:
fe:e8:4b:73:1b:20:1e:f2:ed:4d:69:57:77:ad:f7:82:32:28:
f8:dc:7c:b3:da:6f:4d:75:60:a9:80:ad:e9:8f:10:f2:8e:12:
74:dd:63:0f:0a:85:e9:56:7c:ba:5d:8e:ca:dd:bf:f2:f8:85:
eb:b8:52:70:74:04:62:0f:42:e9:72:73:3a:11:ff:4e:6d:fd:
db:f9:25:58:49:48:6f:2f:28:f5:bc:76:b3:9d:65:1f:76:1f:
cd:eb:ab:3d
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICE28wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMzExMDcw
NTMzNDhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEY1ODk4NTJEOTFBNUI3
RTgyOEI5MDU1QTgxNUJFMUYzNkZEQ0ZGMjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC1oA72DVeKSJOsd9dECZ4TwbqkHU8WvXwt5pjppgSriozK6FPq
sM0YhTfIlNF4ayL1IdlEnSt0cH/0IF5XAcbF9t/RNrgXCqzwskLAYHNQ726FMQKX
IRwcHi8Cx0SjHUf79OfDYV7sUbg0w3eZ9580MKOfJOgZQdaS94Mq8x66bSo7cu0h
o1QiGjDgl2acZk+JBKE+FFMVjFF6sTiVtLMhEeEUE1viBXPma9JLWCwMJaWRVp2r
EcDzv9YhGsHVVrOFGrhE31oQZpxsIGUmtQPuRVeSqq8du6QVaIpWd7NrA2jyKZ1a
J2CoMdmjbvXIzUbkwQa6C6x8AvIaQtXea0dLAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQU9YmFLZGlt+gouQVagVvh82/c/ykwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvOVltRkxaR2x0LWdvdVFWYWdWdmg4
Ml9jX3lrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHzasjAN
BgkqhkiG9w0BAQsFAAOCAQEAhGz7zM2HZRM/WV/jP/Gf/tW8Z0bN+p+d8l2A3jMk
w9idU7aBlzF/fheHBX4xLL8JITFxtrZ/qBdcPNiMuMp4y2qyF/zhsZteFNIQTZJZ
NUFqGr+HTTM6K1V9kdodVbpxZTArptjMGonSVqVVCM4+1xmV6uIujC0LmkDUNARb
i63QBiWdYJeADL03tlpUgfd9QspMh4hgqlJwfXXspuwiHqk4/uhLcxsgHvLtTWlX
d633gjIo+Nx8s9pvTXVgqYCt6Y8Q8o4SdN1jDwqF6VZ8ul2Oyt2/8viF67hScHQE
Yg9C6XJzOhH/Tm392/klWElIby8o9bx2s51lH3YfzeurPQ==
-----END CERTIFICATE-----
Generated at Sun Jun 22 16:19:55 2025 by rpki-client