Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APNT/2Zz_IvlgaT_dxcmCQ9fo7KexWX4.roa
File: 2Zz_IvlgaT_dxcmCQ9fo7KexWX4.roa (raw, json)
Hash identifier: LWZrAQCxsSu1rFiLVLnisEZQgV5M1lLteCnpoPtqGR8=
Subject key identifier: D9:9C:FF:22:F9:60:69:3F:DD:C5:C9:82:43:D7:E8:EC:A7:B1:59:7E
Certificate issuer: /CN=C2528D8C5B676FD9A24DFDA7E9217457B7310263
Certificate serial: 1098
Authority key identifier: C2:52:8D:8C:5B:67:6F:D9:A2:4D:FD:A7:E9:21:74:57:B7:31:02:63
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wlKNjFtnb9miTf2n6SF0V7cxAmM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APNT/2Zz_IvlgaT_dxcmCQ9fo7KexWX4.roa
Signing time: Thu 15 Sep 2022 02:44:07 +0000
ROA not before: Thu 15 Sep 2022 02:44:07 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131659
IP address blocks: 103.130.30.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4248 (0x1098)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C2528D8C5B676FD9A24DFDA7E9217457B7310263
Validity
Not Before: Sep 15 02:44:07 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=D99CFF22F960693FDDC5C98243D7E8ECA7B1597E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:99:01:c3:e6:41:86:bf:04:aa:4e:d3:3c:30:
a5:65:e7:14:90:c5:07:e5:b0:f9:61:c8:d0:de:23:
a7:0a:c0:e4:39:16:e4:c4:a5:9d:5b:52:a8:32:de:
4c:30:1e:ed:e6:ac:81:3f:df:c9:5a:dd:c8:ec:ca:
29:08:74:c9:bc:16:74:47:d5:cb:16:c0:6c:2d:35:
c3:33:8f:eb:ea:d7:26:f6:41:fb:a7:a3:1f:c9:86:
ef:b8:22:34:71:ee:2e:36:93:83:a4:77:57:bf:0c:
57:f6:88:04:e1:dd:5d:53:9a:22:d7:d6:0b:c4:07:
1a:ab:0f:3e:34:1a:7a:4f:89:e5:51:9c:cb:04:5a:
6b:29:69:88:e5:25:ae:55:58:0e:1c:42:c6:c6:67:
20:80:79:ea:b0:3e:bf:42:db:69:16:b8:34:d6:ab:
81:28:00:98:40:89:23:bd:bd:ab:bb:d0:ef:c4:e5:
16:cf:65:17:f9:fd:69:ef:43:ed:cc:e8:d1:03:6d:
d7:70:dc:bc:6f:c3:ad:85:5c:a5:7f:24:1c:2a:a7:
a3:d1:ab:cb:90:cd:a8:b2:9d:dd:1a:cf:0b:19:d5:
8a:72:c5:8f:ef:71:cc:5e:99:99:44:f0:6d:68:f4:
e3:b3:99:dc:6c:7f:b0:b0:81:84:06:f8:65:35:81:
0c:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:9C:FF:22:F9:60:69:3F:DD:C5:C9:82:43:D7:E8:EC:A7:B1:59:7E
X509v3 Authority Key Identifier:
keyid:C2:52:8D:8C:5B:67:6F:D9:A2:4D:FD:A7:E9:21:74:57:B7:31:02:63
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APNT/wlKNjFtnb9miTf2n6SF0V7cxAmM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wlKNjFtnb9miTf2n6SF0V7cxAmM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APNT/2Zz_IvlgaT_dxcmCQ9fo7KexWX4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.130.30.0/24
Signature Algorithm: sha256WithRSAEncryption
76:6b:55:7b:cb:ee:d1:44:a3:47:c9:54:a0:0b:63:77:78:dc:
ed:70:e7:53:ae:9e:0b:e0:14:2f:98:98:7c:b0:c0:fe:9e:99:
61:60:6f:5d:17:e3:8a:1b:e5:d4:d4:c3:9f:cd:7e:1b:82:71:
69:2b:34:f2:34:7a:18:0d:73:67:02:05:0b:45:36:86:53:fe:
65:95:71:08:61:bb:e5:b1:fb:fb:57:e0:c7:e0:0a:40:08:bb:
55:ed:ec:14:13:80:b1:50:8f:f7:49:10:37:f1:2e:63:0b:0b:
29:f6:f6:11:e9:04:56:d8:ba:51:46:12:9d:45:46:ae:2c:c5:
44:7e:a5:81:52:73:e6:31:2b:d1:4e:50:cb:ea:0c:b2:c5:a5:
91:f5:b8:99:57:26:e6:69:9a:92:ba:52:d4:e2:a0:47:eb:d3:
cc:8e:0b:91:65:e4:aa:74:24:f4:c6:2e:96:11:68:b5:1f:5b:
23:49:60:78:7f:4c:88:fc:64:b8:79:68:3c:21:61:e0:a1:3d:
ce:5d:85:ba:3d:58:47:80:e5:95:49:b2:c7:bc:be:67:3b:e0:
dd:06:7c:8d:16:4d:1e:9a:b6:28:c4:5e:04:00:36:39:cf:a4:
2b:bc:49:d6:81:c1:62:e6:04:af:74:08:6a:5c:4f:82:6e:a8:
42:fd:dc:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:59:06 2025 by rpki-client