Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APNT/5wqcS7P1ygAQZaMwSTLmGXjwBwo.roa
File: 5wqcS7P1ygAQZaMwSTLmGXjwBwo.roa (raw, json)
Hash identifier: FruaD/y3Q7Jo4AA1K/jHOXyM3KtJfjPH7i+/0yHNR3U=
Subject key identifier: E7:0A:9C:4B:B3:F5:CA:00:10:65:A3:30:49:32:E6:19:78:F0:07:0A
Certificate issuer: /CN=C2528D8C5B676FD9A24DFDA7E9217457B7310263
Certificate serial: 0F95
Authority key identifier: C2:52:8D:8C:5B:67:6F:D9:A2:4D:FD:A7:E9:21:74:57:B7:31:02:63
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wlKNjFtnb9miTf2n6SF0V7cxAmM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APNT/5wqcS7P1ygAQZaMwSTLmGXjwBwo.roa
Signing time: Wed 29 Sep 2021 02:44:29 +0000
ROA not before: Wed 29 Sep 2021 02:44:29 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 55789
IP address blocks: 103.130.28.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3989 (0xf95)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C2528D8C5B676FD9A24DFDA7E9217457B7310263
Validity
Not Before: Sep 29 02:44:29 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=E70A9C4BB3F5CA001065A3304932E61978F0070A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:da:9e:d8:d4:cf:be:ab:62:2b:35:24:06:b0:
48:69:83:61:84:d0:85:23:9d:02:a1:31:19:c7:32:
7f:12:46:ec:fc:cc:e9:b3:a1:82:ce:2b:63:25:bb:
ce:1c:62:97:93:f9:36:a8:b7:32:47:13:8a:08:a4:
89:34:15:b9:ce:a7:ad:94:fe:00:0c:99:be:9e:bc:
b3:7b:57:54:86:5e:a5:94:d6:cf:13:0a:6e:ac:d6:
dc:62:93:3d:dd:05:c7:7c:df:fa:0f:0c:a8:84:0f:
3d:46:2c:09:55:bd:c4:33:e6:8a:32:b2:87:27:0a:
07:8d:52:a3:8a:3c:d2:6b:0e:c9:f9:53:d7:4e:ac:
30:b0:42:2d:a1:54:1e:51:d4:37:73:ca:38:ca:d2:
06:1a:07:bc:f9:9c:64:4d:0f:f0:9d:9b:e0:d5:f0:
2a:54:c8:4d:3d:f0:21:ae:81:28:74:ac:4b:62:52:
8a:03:52:e4:0b:af:11:c6:09:a5:6b:f1:50:71:50:
3a:c5:39:27:ab:a8:45:a1:0b:9d:67:f5:6c:4a:a2:
a9:d7:e9:2b:cc:8c:3a:e0:1a:73:a6:c1:43:1d:7f:
30:fa:5e:55:3f:55:d4:67:1e:e3:e6:74:34:cc:0f:
86:1f:a5:36:0b:21:02:39:48:55:92:06:24:cb:55:
3f:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:0A:9C:4B:B3:F5:CA:00:10:65:A3:30:49:32:E6:19:78:F0:07:0A
X509v3 Authority Key Identifier:
keyid:C2:52:8D:8C:5B:67:6F:D9:A2:4D:FD:A7:E9:21:74:57:B7:31:02:63
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APNT/wlKNjFtnb9miTf2n6SF0V7cxAmM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wlKNjFtnb9miTf2n6SF0V7cxAmM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APNT/5wqcS7P1ygAQZaMwSTLmGXjwBwo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.130.28.0/22
Signature Algorithm: sha256WithRSAEncryption
68:83:d5:ff:84:dc:92:91:66:fd:1b:5c:39:7b:09:3d:73:8b:
e9:ed:dc:5c:d3:52:4b:87:39:58:5d:94:ae:12:6f:25:f5:d1:
04:f4:ce:ab:86:0b:80:05:bd:f2:87:64:60:85:16:82:5a:03:
38:60:e0:54:ab:30:1b:5a:c6:a9:f8:35:8e:a7:d3:cf:14:e3:
21:54:a3:e8:60:21:cf:3d:5d:09:45:60:f5:d6:09:74:b7:6f:
de:fa:a4:11:bd:de:75:02:f0:99:2b:14:00:db:ab:58:5d:48:
b8:4e:20:ca:dd:2d:c1:e3:bd:61:f0:c3:21:5a:71:5b:23:23:
71:71:35:42:47:27:f2:eb:0e:a3:91:c8:a0:5e:9b:16:11:da:
f0:bf:ad:05:85:b3:5c:e3:ab:73:15:39:8d:c2:88:43:e7:ba:
db:f1:44:a0:16:d1:31:fe:66:2d:09:b1:24:de:84:b0:da:7c:
6d:ff:66:54:50:10:d8:21:0e:4c:43:c2:5a:40:c6:91:e7:42:
1b:37:5d:5b:bc:24:f0:e4:79:6e:f1:6d:72:1b:95:95:6e:8f:
60:6b:f3:e2:93:f1:0a:14:63:9d:ae:3b:0e:a3:bc:06:ce:82:
b3:b2:a7:a5:b0:1d:04:4e:19:99:40:1e:03:ed:35:39:b0:fb:
ab:cf:4b:5f
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICD5UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzI1
MjhEOEM1QjY3NkZEOUEyNERGREE3RTkyMTc0NTdCNzMxMDI2MzAeFw0yMTA5Mjkw
MjQ0MjlaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEU3MEE5QzRCQjNGNUNB
MDAxMDY1QTMzMDQ5MzJFNjE5NzhGMDA3MEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDW2p7Y1M++q2IrNSQGsEhpg2GE0IUjnQKhMRnHMn8SRuz8zOmz
oYLOK2Mlu84cYpeT+TaotzJHE4oIpIk0FbnOp62U/gAMmb6evLN7V1SGXqWU1s8T
Cm6s1txikz3dBcd83/oPDKiEDz1GLAlVvcQz5ooysocnCgeNUqOKPNJrDsn5U9dO
rDCwQi2hVB5R1DdzyjjK0gYaB7z5nGRND/Cdm+DV8CpUyE098CGugSh0rEtiUooD
UuQLrxHGCaVr8VBxUDrFOSerqEWhC51n9WxKoqnX6SvMjDrgGnOmwUMdfzD6XlU/
VdRnHuPmdDTMD4YfpTYLIQI5SFWSBiTLVT/xAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQU5wqcS7P1ygAQZaMwSTLmGXjwBwowHwYDVR0jBBgwFoAUwlKNjFtnb9miTf2n
6SF0V7cxAmMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBOVC93
bEtOakZ0bmI5bWlUZjJuNlNGMFY3Y3hBbU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L3dsS05qRnRuYjltaVRmMm42U0YwVjdjeEFtTS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQTlQvNXdxY1M3UDF5Z0FRWmFNd1NUTG1H
WGp3QndvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmeCHDAN
BgkqhkiG9w0BAQsFAAOCAQEAaIPV/4TckpFm/RtcOXsJPXOL6e3cXNNSS4c5WF2U
rhJvJfXRBPTOq4YLgAW98odkYIUWgloDOGDgVKswG1rGqfg1jqfTzxTjIVSj6GAh
zz1dCUVg9dYJdLdv3vqkEb3edQLwmSsUANurWF1IuE4gyt0tweO9YfDDIVpxWyMj
cXE1Qkcn8usOo5HIoF6bFhHa8L+tBYWzXOOrcxU5jcKIQ+e62/FEoBbRMf5mLQmx
JN6EsNp8bf9mVFAQ2CEOTEPCWkDGkedCGzddW7wk8OR5bvFtchuVlW6PYGvz4pPx
ChRjna47DqO8Bs6Cs7KnpbAdBE4ZmUAeA+01ObD7q89LXw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:30 2024 by rpki-client on console-fra.rpki-client.org