Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APNT/5yaKyMW_BqitxvspMpvqF63yyMo.roa
File: 5yaKyMW_BqitxvspMpvqF63yyMo.roa (raw, json)
Hash identifier: anVGaCOBuuLshD02+ljcoesKmOlEZQJ9LP4owJggSSM=
Subject key identifier: E7:26:8A:C8:C5:BF:06:A8:AD:C6:FB:29:32:9B:EA:17:AD:F2:C8:CA
Certificate issuer: /CN=C2528D8C5B676FD9A24DFDA7E9217457B7310263
Certificate serial: 103A
Authority key identifier: C2:52:8D:8C:5B:67:6F:D9:A2:4D:FD:A7:E9:21:74:57:B7:31:02:63
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wlKNjFtnb9miTf2n6SF0V7cxAmM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APNT/5yaKyMW_BqitxvspMpvqF63yyMo.roa
Signing time: Sun 01 May 2022 15:34:57 +0000
ROA not before: Sun 01 May 2022 15:34:57 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131659
IP address blocks: 103.130.28.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4154 (0x103a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C2528D8C5B676FD9A24DFDA7E9217457B7310263
Validity
Not Before: May 1 15:34:57 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=E7268AC8C5BF06A8ADC6FB29329BEA17ADF2C8CA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:c3:92:eb:29:14:7e:c0:d1:f5:66:56:56:bd:
41:fa:ce:65:e5:92:11:96:34:20:ec:9f:e0:70:2e:
67:8b:f9:08:46:91:dd:46:37:ef:a8:f8:80:ec:54:
59:b9:12:dc:24:66:c7:7e:49:b1:1d:b3:1a:3c:61:
a5:d1:94:4f:6d:75:66:f6:3d:bb:43:d5:f0:37:4d:
15:f2:95:1f:0c:43:57:fd:b8:53:e3:00:cb:1b:ad:
cc:91:77:4d:02:48:b4:3e:68:5f:e8:ce:b9:79:73:
0f:5a:ed:d8:03:bc:7c:66:8b:6e:14:0c:d9:fc:b7:
d1:1e:ca:35:f3:98:81:f2:2c:3c:f1:81:9b:ab:de:
a1:2e:6a:5d:a7:04:40:0a:07:24:48:2b:38:5b:99:
50:68:d9:30:a6:d3:b7:f4:49:98:fe:0f:b6:e5:c2:
96:d5:cf:20:c6:a5:f3:fb:49:1b:61:f7:0d:fd:21:
80:a3:1e:2b:58:8f:11:83:3f:6d:80:3e:05:0a:ae:
4e:ef:58:0d:20:ef:e6:a5:b1:51:ef:65:a3:8e:7f:
fd:e4:8f:ef:06:ab:f8:96:a1:05:71:6a:73:59:35:
ea:f8:3f:a5:f8:4f:55:65:6f:7f:94:d8:54:ca:9d:
71:dd:63:67:5c:0d:59:0b:10:96:b9:ef:a0:03:28:
43:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:26:8A:C8:C5:BF:06:A8:AD:C6:FB:29:32:9B:EA:17:AD:F2:C8:CA
X509v3 Authority Key Identifier:
keyid:C2:52:8D:8C:5B:67:6F:D9:A2:4D:FD:A7:E9:21:74:57:B7:31:02:63
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APNT/wlKNjFtnb9miTf2n6SF0V7cxAmM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wlKNjFtnb9miTf2n6SF0V7cxAmM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APNT/5yaKyMW_BqitxvspMpvqF63yyMo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.130.28.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:7c:62:77:65:63:36:ea:08:d8:8e:9f:90:62:af:b5:c9:46:
a7:f5:4f:c0:d6:27:9a:ce:57:ed:5d:7a:24:e0:22:91:b9:27:
9f:bf:df:8d:f2:af:66:1d:7e:71:12:d7:66:f1:8f:8b:5e:5f:
a1:bc:6b:fe:64:6f:8a:92:0a:80:63:f2:6f:08:9e:24:09:71:
f2:70:c2:f2:17:98:b7:42:dc:88:82:0f:b9:f5:a5:64:2a:b6:
b0:48:4b:de:1e:4c:70:73:0f:dc:de:f2:ca:36:b2:f6:a0:7b:
1f:bd:72:32:26:f4:2c:f0:f8:00:be:26:56:c6:98:80:fc:64:
51:92:b7:bd:57:44:ec:b2:61:59:97:40:f4:4f:95:a3:93:d9:
04:8d:ce:8c:d6:92:54:d0:85:24:80:49:3d:a2:8d:63:55:ae:
59:c3:65:df:8d:1b:0c:50:1e:47:f7:63:31:24:7d:6f:b6:85:
6f:41:ab:d1:4e:75:66:a5:d7:f6:f7:f4:35:cc:29:51:81:1f:
f3:1b:04:32:57:26:ff:16:81:fc:73:0a:84:b7:32:f3:d4:91:
be:df:58:49:ce:44:a7:5b:fc:44:5b:00:43:2c:1d:12:37:2c:
e5:43:42:76:71:8f:b3:96:3a:d7:f2:a8:c5:d9:1c:9b:a0:a9:
96:42:b4:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:59:59 2024 by rpki-client on console-ams.rpki-client.org