Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APNT/-UIhTfMbJZpj-PkhztIgwRCC8fc.roa
File: -UIhTfMbJZpj-PkhztIgwRCC8fc.roa (raw, json)
Hash identifier: vB2bu2gmXThK6Sm5r5f8NLj2QNNoHuo1KdgItHpdqzY=
Subject key identifier: F9:42:21:4D:F3:1B:25:9A:63:F8:F9:21:CE:D2:20:C1:10:82:F1:F7
Certificate issuer: /CN=C2528D8C5B676FD9A24DFDA7E9217457B7310263
Certificate serial: 0FE3
Authority key identifier: C2:52:8D:8C:5B:67:6F:D9:A2:4D:FD:A7:E9:21:74:57:B7:31:02:63
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wlKNjFtnb9miTf2n6SF0V7cxAmM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APNT/-UIhTfMbJZpj-PkhztIgwRCC8fc.roa
Signing time: Tue 18 Jan 2022 06:13:34 +0000
ROA not before: Tue 18 Jan 2022 06:13:34 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131630
IP address blocks: 103.130.28.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4067 (0xfe3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C2528D8C5B676FD9A24DFDA7E9217457B7310263
Validity
Not Before: Jan 18 06:13:34 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=F942214DF31B259A63F8F921CED220C11082F1F7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:6f:0d:a8:4c:60:72:5d:9d:e2:f9:7a:68:40:
fd:92:3b:7c:9d:ec:0d:f9:8a:b4:1e:ec:e6:c9:e4:
bb:34:e3:6b:a7:3a:67:0b:f4:9b:82:f2:7f:b7:f3:
38:28:e1:16:53:3a:e2:86:92:f8:d8:ac:6d:ef:3b:
f4:27:84:ee:c3:94:0a:c1:99:0a:d4:1a:7c:cd:a8:
81:35:23:c3:ed:94:c1:fc:4e:c3:46:bc:1b:42:b3:
29:22:c4:49:c4:c1:fe:2e:45:b4:f6:b8:a2:58:e9:
f1:4c:07:96:26:ff:a5:45:8e:ae:f9:4c:2c:d2:ce:
b5:06:61:93:59:b1:82:47:ee:c7:b3:e4:82:7d:37:
ff:3a:ec:d3:d0:64:2c:df:ab:fd:82:25:1b:f1:fc:
c7:dc:c4:c3:2d:6c:a6:b9:57:21:df:7c:b4:ba:34:
8d:6c:86:95:f4:f8:77:e9:47:d2:27:9c:e4:04:7d:
22:bb:c7:7b:a1:5f:e7:63:60:0f:88:d8:07:0c:a0:
de:6a:f3:9d:dc:3f:13:b5:2a:2d:85:95:ec:bc:ca:
2e:da:ec:1f:8c:4a:bc:60:ee:8b:9b:33:8f:9f:60:
de:28:5e:d9:07:ce:8a:02:5c:0c:42:b9:2d:62:24:
72:38:bf:0a:46:64:08:f1:c2:d3:9f:0e:2b:68:d6:
61:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:42:21:4D:F3:1B:25:9A:63:F8:F9:21:CE:D2:20:C1:10:82:F1:F7
X509v3 Authority Key Identifier:
keyid:C2:52:8D:8C:5B:67:6F:D9:A2:4D:FD:A7:E9:21:74:57:B7:31:02:63
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APNT/wlKNjFtnb9miTf2n6SF0V7cxAmM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wlKNjFtnb9miTf2n6SF0V7cxAmM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APNT/-UIhTfMbJZpj-PkhztIgwRCC8fc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.130.28.0/22
Signature Algorithm: sha256WithRSAEncryption
1a:aa:ac:50:e0:f9:20:a5:5a:83:85:0e:b9:a5:15:5b:fc:ef:
74:1b:1f:67:19:1d:7d:be:e1:e6:e9:59:ae:35:3e:54:d7:ef:
73:2f:94:37:a8:30:e2:27:e0:85:ea:77:c4:9a:0a:25:e2:05:
20:e2:7f:19:e6:26:a2:41:b9:5f:97:05:58:3e:8e:07:5a:f1:
38:e3:66:c2:15:29:54:7b:ea:3e:83:97:94:fc:e0:06:f2:b5:
ea:58:4c:ca:08:16:12:17:85:7d:0b:97:ba:b0:5a:84:34:55:
ea:74:75:b4:84:fd:b4:ca:e0:d5:86:80:0b:d1:60:fd:14:e9:
b5:82:50:5a:e2:8d:20:d8:1f:d9:d7:6b:f3:eb:d0:28:ad:fa:
cd:ad:89:84:a3:e0:15:e0:25:fc:9f:32:5e:9d:58:ab:e3:2a:
f8:60:e8:c2:90:f0:09:b8:61:b6:26:a4:3e:2c:29:b2:3c:35:
c1:96:3a:9c:55:42:7c:a2:14:3f:7d:87:cb:48:73:4c:33:3a:
54:1d:5a:38:9c:c7:43:98:78:a2:a1:f5:a5:f7:5e:25:a9:be:
5e:f2:4c:d9:de:8b:76:88:63:ba:a3:91:a5:ab:a6:60:ff:ed:
6d:08:e5:db:51:19:f7:cd:64:3b:93:0a:6f:78:a6:87:7b:a0:
1d:d5:54:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:59:59 2024 by rpki-client on console-ams.rpki-client.org