Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APNT/5jMy3H5P52zd13N0JxmUWLLGYtw.roa
File: 5jMy3H5P52zd13N0JxmUWLLGYtw.roa (raw, json)
Hash identifier: brZEqkmKNp5/X5/2vxJklM9Au0XQBdSQ/9v83Duy7HA=
Subject key identifier: E6:33:32:DC:7E:4F:E7:6C:DD:D7:73:74:27:19:94:58:B2:C6:62:DC
Certificate issuer: /CN=C2528D8C5B676FD9A24DFDA7E9217457B7310263
Certificate serial: 119F
Authority key identifier: C2:52:8D:8C:5B:67:6F:D9:A2:4D:FD:A7:E9:21:74:57:B7:31:02:63
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wlKNjFtnb9miTf2n6SF0V7cxAmM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APNT/5jMy3H5P52zd13N0JxmUWLLGYtw.roa
Signing time: Fri 01 Sep 2023 08:04:01 +0000
ROA not before: Fri 01 Sep 2023 08:04:01 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131659
IP address blocks: 103.130.29.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4511 (0x119f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C2528D8C5B676FD9A24DFDA7E9217457B7310263
Validity
Not Before: Sep 1 08:04:01 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=E63332DC7E4FE76CDDD7737427199458B2C662DC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:f5:77:f4:3e:b5:f2:08:08:61:09:af:77:dc:
d4:58:9c:bd:76:77:87:06:19:d1:f0:4e:ad:f9:a0:
3f:87:8a:0f:1a:7f:94:77:7c:c3:63:62:97:17:47:
31:64:34:2d:f8:1b:ff:20:d0:5f:4d:17:72:13:f3:
17:e2:7a:58:71:4d:4e:23:2a:c7:a6:75:10:a6:db:
6e:8b:f4:eb:38:f5:4b:b9:8a:11:a0:3e:68:73:8c:
b9:bb:92:67:b1:ec:2f:42:0a:be:41:de:b8:c2:5e:
ab:91:52:6d:30:6f:40:a2:cb:0a:22:fb:95:ad:27:
18:75:f8:e6:1a:8f:35:68:b3:74:82:e1:20:45:11:
4d:b8:1a:7c:9b:aa:9a:e7:4c:d8:f5:92:fc:62:2b:
f6:e5:18:04:45:64:65:80:90:19:ae:0e:65:cd:04:
3c:63:ff:59:7e:1f:03:af:d7:32:cf:b9:e0:15:45:
40:cf:e5:2e:00:45:93:9b:89:ac:dd:4d:ce:07:c1:
05:14:2e:87:ad:4c:b9:7d:95:40:de:de:69:1a:9d:
40:13:cd:1e:1c:ae:3f:20:a3:e3:7f:2b:1b:44:78:
e5:0b:5a:5d:70:3c:2a:2f:1b:d2:6b:8e:c4:62:c3:
3c:04:51:05:5b:74:12:b3:f9:b6:31:73:fd:79:ae:
aa:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:33:32:DC:7E:4F:E7:6C:DD:D7:73:74:27:19:94:58:B2:C6:62:DC
X509v3 Authority Key Identifier:
keyid:C2:52:8D:8C:5B:67:6F:D9:A2:4D:FD:A7:E9:21:74:57:B7:31:02:63
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APNT/wlKNjFtnb9miTf2n6SF0V7cxAmM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wlKNjFtnb9miTf2n6SF0V7cxAmM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APNT/5jMy3H5P52zd13N0JxmUWLLGYtw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.130.29.0/24
Signature Algorithm: sha256WithRSAEncryption
01:13:ef:1d:50:7d:c1:7c:8d:7c:6c:9a:20:6c:c7:a4:0f:0a:
52:f9:6e:2d:17:b2:a1:60:ea:8f:0c:19:8e:c4:6e:85:f2:99:
9f:04:7a:27:65:cc:24:d8:7a:8f:4e:ee:e0:3e:ff:da:23:a2:
c5:76:0e:97:ab:08:8d:68:41:1e:70:0b:38:e6:1f:dc:97:b7:
5e:a2:d2:69:0d:55:1d:e9:74:8b:7a:64:8a:49:44:7c:e8:9c:
e3:b8:02:80:a2:44:80:fa:29:02:ce:0e:12:38:a2:4e:56:ab:
d5:a0:17:5f:08:c0:fe:3f:71:dd:55:1b:5f:57:73:3b:82:a1:
f8:12:67:c9:16:60:ef:0e:59:72:17:64:ff:0d:89:0d:16:eb:
ab:7b:ba:b9:82:cc:b9:04:28:1c:01:7f:1d:0c:ff:f1:cd:d4:
73:fa:14:0c:22:ec:25:d7:04:06:dc:d8:35:25:0a:e1:cf:60:
c3:3b:95:96:a3:d3:5c:41:51:7f:d6:71:90:3c:bb:d9:38:43:
d9:87:cf:10:43:b0:5e:66:8b:ac:68:62:a4:05:08:4c:c2:22:
d1:56:ed:1f:3a:ed:d8:29:e2:6b:57:bd:71:eb:f8:d0:9d:30:
a4:01:ea:62:0e:42:4f:b8:40:f4:83:00:ff:c5:ad:71:11:b3:
18:b9:9c:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:42:50 2025 by rpki-client