Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APNT/7f0hYSzZpiN9gCNP9sd1gJ_LH10.roa
File: 7f0hYSzZpiN9gCNP9sd1gJ_LH10.roa (raw, json)
Hash identifier: aiodeisV8vtKJ8MkIN8GWQFxxeyL6G6oOQk2GtBU6cs=
Subject key identifier: ED:FD:21:61:2C:D9:A6:23:7D:80:23:4F:F6:C7:75:80:9F:CB:1F:5D
Certificate issuer: /CN=C2528D8C5B676FD9A24DFDA7E9217457B7310263
Certificate serial: 1133
Authority key identifier: C2:52:8D:8C:5B:67:6F:D9:A2:4D:FD:A7:E9:21:74:57:B7:31:02:63
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wlKNjFtnb9miTf2n6SF0V7cxAmM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APNT/7f0hYSzZpiN9gCNP9sd1gJ_LH10.roa
Signing time: Wed 03 May 2023 09:01:23 +0000
ROA not before: Wed 03 May 2023 09:01:23 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131630
IP address blocks: 103.130.28.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4403 (0x1133)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C2528D8C5B676FD9A24DFDA7E9217457B7310263
Validity
Not Before: May 3 09:01:23 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=EDFD21612CD9A6237D80234FF6C775809FCB1F5D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:e8:da:7b:67:70:bc:9a:eb:07:cc:41:5d:05:
c4:64:94:38:fc:2f:14:be:be:7b:e6:ee:6a:51:f4:
0d:33:ac:50:d6:d2:12:b6:81:47:5f:2e:67:9d:96:
b4:30:f7:09:33:cd:ab:c4:25:ad:d7:d2:4c:46:51:
e1:a5:67:06:a3:88:cd:75:b8:7f:98:67:63:79:2e:
42:f1:df:56:c1:3d:00:df:1a:f4:4c:ae:2b:fe:82:
5e:2d:36:67:f7:9f:e5:3d:bf:71:0a:37:f1:82:83:
a8:f6:e2:db:72:0f:6d:ae:bd:a5:74:d8:93:9d:23:
73:51:77:ba:bc:ac:62:3b:b4:cb:c9:52:e8:45:08:
7b:c2:6e:3f:8b:47:f6:67:a4:2d:cc:e1:aa:32:75:
b6:9e:6c:ec:0e:69:ee:56:01:12:7b:d8:fd:bf:52:
99:9f:a8:49:02:0f:ab:74:51:d2:06:af:c4:05:a7:
81:58:6c:2b:2f:6d:ff:86:aa:42:69:f4:24:11:a2:
c9:4c:26:b7:e3:35:a9:39:fa:47:19:05:0a:89:10:
bb:5a:b2:db:6f:b4:20:94:2c:5f:5c:26:4d:a2:f3:
53:f5:d7:f3:2b:2d:94:69:2c:49:09:ea:47:47:fb:
e0:45:5c:89:23:5d:8c:7b:b3:18:f6:ce:e1:88:6b:
36:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:FD:21:61:2C:D9:A6:23:7D:80:23:4F:F6:C7:75:80:9F:CB:1F:5D
X509v3 Authority Key Identifier:
keyid:C2:52:8D:8C:5B:67:6F:D9:A2:4D:FD:A7:E9:21:74:57:B7:31:02:63
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APNT/wlKNjFtnb9miTf2n6SF0V7cxAmM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wlKNjFtnb9miTf2n6SF0V7cxAmM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APNT/7f0hYSzZpiN9gCNP9sd1gJ_LH10.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.130.28.0/22
Signature Algorithm: sha256WithRSAEncryption
92:b5:4a:f3:69:b4:30:38:1f:b2:b4:a1:1b:55:d7:fe:02:b9:
7d:1e:87:20:f6:32:24:34:6d:e2:1a:27:af:7b:f3:15:34:a7:
7b:f6:40:a1:32:d1:97:40:38:0f:1b:52:f8:6a:f9:50:bd:dd:
fa:70:27:69:60:85:65:50:fa:7f:f8:76:cc:00:03:83:4b:29:
ad:f7:5b:bd:8e:bf:44:45:9a:f9:8b:ca:b5:7d:77:c3:ce:51:
52:1b:80:49:9b:9e:7c:7d:b2:e6:c6:7f:70:f6:dd:34:64:45:
1c:36:71:55:a5:67:46:9b:d8:4b:7f:bc:a2:11:de:a7:ef:06:
38:ff:f4:c0:64:fc:bf:d8:fa:6e:3b:1c:b3:25:2e:7f:05:4e:
30:e1:7e:d7:dc:e4:22:45:3d:44:0d:64:08:f5:22:14:4f:22:
37:f0:e9:26:86:9f:98:ac:30:eb:6f:25:bd:58:61:91:30:2a:
f9:8b:2a:c1:27:18:03:3c:a7:8e:ae:66:55:31:71:c1:3e:1d:
7f:28:5e:b1:7d:ec:78:39:71:a5:fc:de:49:0c:2f:d5:35:23:
dd:13:f7:6d:53:8f:fe:ed:73:88:8f:84:b6:fe:dd:5b:c3:a5:
f8:26:a1:ff:00:f3:02:a6:22:86:0c:c6:39:b6:98:e5:84:f3:
8b:a3:bd:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:59:59 2024 by rpki-client on console-ams.rpki-client.org