Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APNT/350e2YqWU4-7PxGM1GcmH9Nk-ts.roa
File: 350e2YqWU4-7PxGM1GcmH9Nk-ts.roa (raw, json)
Hash identifier: WHJluiPTu+Zt0yrvw3K2u2COZDW3b5T8pekcoprW2bI=
Subject key identifier: DF:9D:1E:D9:8A:96:53:8F:BB:3F:11:8C:D4:67:26:1F:D3:64:FA:DB
Certificate issuer: /CN=C2528D8C5B676FD9A24DFDA7E9217457B7310263
Certificate serial: 0ED8
Authority key identifier: C2:52:8D:8C:5B:67:6F:D9:A2:4D:FD:A7:E9:21:74:57:B7:31:02:63
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wlKNjFtnb9miTf2n6SF0V7cxAmM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APNT/350e2YqWU4-7PxGM1GcmH9Nk-ts.roa
Signing time: Wed 13 Jan 2021 03:12:09 +0000
ROA not before: Wed 13 Jan 2021 03:12:09 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 55789
IP address blocks: 103.130.28.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3800 (0xed8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C2528D8C5B676FD9A24DFDA7E9217457B7310263
Validity
Not Before: Jan 13 03:12:09 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=DF9D1ED98A96538FBB3F118CD467261FD364FADB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:df:60:7d:76:9d:8c:7e:97:14:e9:8d:34:04:
28:b5:c2:d2:fa:ea:5b:a6:c2:8c:9c:4a:49:ee:88:
68:41:56:7e:17:59:73:5e:22:16:50:97:65:2c:17:
91:59:6f:b1:4d:ae:12:f4:7d:be:a1:82:15:5e:87:
fa:8a:66:c4:16:e1:b9:f8:66:d4:03:2f:8b:5d:2f:
63:30:09:14:26:1c:ef:87:d6:d1:30:d3:a2:49:01:
3f:7e:2c:b9:86:93:1c:7c:ad:0b:39:27:4a:39:ae:
76:7e:46:7d:e8:b1:b8:3d:3e:0f:28:8b:f8:08:12:
87:fc:85:5d:38:ea:52:58:2d:24:2b:fc:f2:d5:38:
fb:37:e8:9f:69:e6:e0:8c:da:b8:53:45:17:5d:e2:
32:03:2f:a9:f5:ce:48:e4:72:aa:b0:1c:49:4b:72:
93:c2:72:24:c1:5b:f3:89:f5:b3:81:69:75:12:6d:
b4:e5:15:15:0d:1f:c1:0f:56:b4:7c:e9:1c:fd:e4:
36:c3:62:09:de:33:30:7f:7b:c3:ff:24:0b:77:78:
3d:5d:0d:ee:1b:b5:e5:56:ce:3f:9b:80:0e:63:d3:
7e:70:7b:0e:e2:84:cd:28:cf:ac:18:6b:59:45:e5:
db:ad:ca:90:be:e3:92:c2:1a:57:64:79:0b:62:07:
ac:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:9D:1E:D9:8A:96:53:8F:BB:3F:11:8C:D4:67:26:1F:D3:64:FA:DB
X509v3 Authority Key Identifier:
keyid:C2:52:8D:8C:5B:67:6F:D9:A2:4D:FD:A7:E9:21:74:57:B7:31:02:63
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APNT/wlKNjFtnb9miTf2n6SF0V7cxAmM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wlKNjFtnb9miTf2n6SF0V7cxAmM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APNT/350e2YqWU4-7PxGM1GcmH9Nk-ts.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.130.28.0/22
Signature Algorithm: sha256WithRSAEncryption
4c:91:b2:02:10:b5:07:99:fb:17:39:6d:6b:62:0f:92:bd:bb:
f4:f1:d7:e2:84:9c:be:47:32:74:7e:bc:ef:68:80:bb:0b:eb:
c8:6a:7a:9f:76:00:e3:38:1c:24:24:26:6a:af:53:fc:ce:1c:
a8:c6:a9:a4:00:69:d3:5e:9d:c4:dc:df:b7:c1:0f:d1:8b:d2:
e2:0c:f5:f6:e2:d9:ee:a1:22:d4:f6:85:a5:7d:4a:34:02:03:
1e:d1:75:d7:c6:53:e5:2f:90:48:9f:9c:79:96:61:30:0c:97:
8f:0b:19:3a:6c:ed:a8:6f:10:96:9f:a2:70:fd:e7:7f:c2:15:
87:2f:8e:df:b6:f1:87:b7:98:13:f4:f7:d0:07:45:fc:72:eb:
8b:bd:be:ad:f7:20:84:b7:75:a6:29:57:f1:1f:da:0a:a2:ce:
f1:d5:b8:21:20:4e:7a:c3:ab:30:94:01:92:22:76:fa:d2:d6:
d7:9a:06:39:cc:fe:12:bf:db:72:6a:1a:9c:9e:2d:2d:8f:4c:
f2:4b:cb:7a:3f:2e:16:65:94:74:3c:90:d9:55:81:02:d2:e6:
99:33:a2:3f:b7:66:b3:8d:7e:bd:9c:34:1d:98:cc:20:b8:8b:
3b:2f:9b:d4:9e:db:00:ab:ad:19:53:80:30:90:f5:b8:49:9b:
99:0e:ee:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:30 2024 by rpki-client on console-fra.rpki-client.org