Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APNT/F6tG-Burbitcfb24Oad2qW-nxm0.roa
File: F6tG-Burbitcfb24Oad2qW-nxm0.roa (raw, json)
Hash identifier: /IFt2huWA31I1Heg1kiSefUHEfiQksk6rOpxzB2VCRU=
Subject key identifier: 17:AB:46:F8:1B:AB:6E:2B:5C:7D:BD:B8:39:A7:76:A9:6F:A7:C6:6D
Certificate issuer: /CN=C2528D8C5B676FD9A24DFDA7E9217457B7310263
Certificate serial: 0FE7
Authority key identifier: C2:52:8D:8C:5B:67:6F:D9:A2:4D:FD:A7:E9:21:74:57:B7:31:02:63
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wlKNjFtnb9miTf2n6SF0V7cxAmM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APNT/F6tG-Burbitcfb24Oad2qW-nxm0.roa
Signing time: Fri 21 Jan 2022 10:41:16 +0000
ROA not before: Fri 21 Jan 2022 10:41:16 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 55789
IP address blocks: 103.130.31.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4071 (0xfe7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C2528D8C5B676FD9A24DFDA7E9217457B7310263
Validity
Not Before: Jan 21 10:41:16 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=17AB46F81BAB6E2B5C7DBDB839A776A96FA7C66D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:53:e5:f2:70:c2:04:d9:20:f3:0c:47:65:b0:
a8:31:ff:7b:8b:5a:c4:22:aa:47:3a:a6:22:54:44:
e4:01:41:ab:de:00:40:58:7a:4e:8d:a8:52:03:05:
bd:dd:87:7c:d2:e5:3d:04:17:ab:93:3a:64:a8:87:
8e:37:20:d0:9f:68:95:cf:cf:20:81:43:d6:fd:db:
dc:c5:50:39:70:7f:97:70:f1:e2:f2:c2:70:15:f3:
b3:32:ec:c1:b9:d7:9e:f5:14:97:d9:ac:29:12:73:
77:f7:b0:ed:73:1b:12:9b:8f:4e:45:1b:1a:d5:c9:
8c:50:0a:e6:80:21:8e:a3:b1:39:71:da:4b:96:cc:
ca:63:3f:db:a4:81:ef:99:29:cb:06:aa:f8:71:dc:
39:c9:94:be:e4:52:e2:32:0f:69:e3:a7:a3:71:80:
08:0d:36:58:05:05:5a:6a:4a:c4:9c:b5:78:7a:03:
2b:eb:b8:03:f8:85:b0:c2:95:26:f8:0f:a6:51:01:
8f:31:d6:22:0b:9f:b9:f8:e6:40:e2:3a:7a:d5:45:
1b:18:cf:f6:81:8e:f7:59:60:fb:3f:3c:3d:26:db:
ec:e2:d9:b1:df:34:64:f1:8e:10:41:6c:ff:bb:6a:
5d:75:1c:82:b2:c8:20:d1:8d:c3:19:47:24:e2:c1:
ed:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:AB:46:F8:1B:AB:6E:2B:5C:7D:BD:B8:39:A7:76:A9:6F:A7:C6:6D
X509v3 Authority Key Identifier:
keyid:C2:52:8D:8C:5B:67:6F:D9:A2:4D:FD:A7:E9:21:74:57:B7:31:02:63
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APNT/wlKNjFtnb9miTf2n6SF0V7cxAmM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wlKNjFtnb9miTf2n6SF0V7cxAmM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APNT/F6tG-Burbitcfb24Oad2qW-nxm0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.130.31.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:dd:0b:32:6a:56:a3:c4:10:40:b0:d2:58:dc:ca:0c:d6:08:
1f:d9:8b:15:c7:71:1b:6e:97:0c:5e:bd:d8:79:81:d3:f2:f3:
c5:92:c3:dc:08:a1:a9:c8:5e:ee:db:ee:a7:fd:13:31:fc:1a:
50:36:8c:54:68:47:8f:3d:89:63:3c:4d:19:98:9f:d2:31:34:
2c:c2:ec:3d:19:fa:34:e2:6f:cb:cc:6f:da:7f:ab:48:bf:a5:
24:b8:1a:b3:17:db:ff:9c:9e:3b:6e:8a:db:dd:f1:ca:59:c9:
91:32:87:10:54:7d:9c:28:c4:e3:7a:18:f1:2e:cd:f5:96:9f:
82:83:c7:fb:74:06:48:00:fc:3f:20:ae:f3:6b:40:e7:74:16:
b4:f6:1d:28:16:0f:1e:6d:52:5f:c0:65:af:e7:af:a8:f2:9d:
1b:50:64:82:87:cb:15:e6:11:06:ed:ac:d1:bf:48:1a:f2:1a:
09:fb:b8:66:5b:5b:c2:f1:c1:6e:d9:95:ae:9a:0e:e6:75:17:
52:d0:3e:ed:02:2d:22:e4:60:94:2c:86:f6:a1:fa:7c:f1:44:
d3:df:84:cd:5e:48:1b:f3:23:4b:00:fa:74:56:cb:49:37:99:
61:dc:1e:2e:b3:2e:e5:2f:09:23:d3:cb:e6:0c:b9:ea:87:73:
b4:d9:2d:a1
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICD+cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzI1
MjhEOEM1QjY3NkZEOUEyNERGREE3RTkyMTc0NTdCNzMxMDI2MzAeFw0yMjAxMjEx
MDQxMTZaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDE3QUI0NkY4MUJBQjZF
MkI1QzdEQkRCODM5QTc3NkE5NkZBN0M2NkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDoU+XycMIE2SDzDEdlsKgx/3uLWsQiqkc6piJUROQBQaveAEBY
ek6NqFIDBb3dh3zS5T0EF6uTOmSoh443INCfaJXPzyCBQ9b929zFUDlwf5dw8eLy
wnAV87My7MG51571FJfZrCkSc3f3sO1zGxKbj05FGxrVyYxQCuaAIY6jsTlx2kuW
zMpjP9ukge+ZKcsGqvhx3DnJlL7kUuIyD2njp6NxgAgNNlgFBVpqSsSctXh6Ayvr
uAP4hbDClSb4D6ZRAY8x1iILn7n45kDiOnrVRRsYz/aBjvdZYPs/PD0m2+zi2bHf
NGTxjhBBbP+7al11HIKyyCDRjcMZRyTiwe07AgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUF6tG+Burbitcfb24Oad2qW+nxm0wHwYDVR0jBBgwFoAUwlKNjFtnb9miTf2n
6SF0V7cxAmMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBOVC93
bEtOakZ0bmI5bWlUZjJuNlNGMFY3Y3hBbU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L3dsS05qRnRuYjltaVRmMm42U0YwVjdjeEFtTS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQTlQvRjZ0Ry1CdXJiaXRjZmIyNE9hZDJx
Vy1ueG0wLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGeCHzAN
BgkqhkiG9w0BAQsFAAOCAQEAwd0LMmpWo8QQQLDSWNzKDNYIH9mLFcdxG26XDF69
2HmB0/LzxZLD3Aihqche7tvup/0TMfwaUDaMVGhHjz2JYzxNGZif0jE0LMLsPRn6
NOJvy8xv2n+rSL+lJLgasxfb/5yeO26K293xylnJkTKHEFR9nCjE43oY8S7N9Zaf
goPH+3QGSAD8PyCu82tA53QWtPYdKBYPHm1SX8Blr+evqPKdG1BkgofLFeYRBu2s
0b9IGvIaCfu4ZltbwvHBbtmVrpoO5nUXUtA+7QItIuRglCyG9qH6fPFE09+EzV5I
G/MjSwD6dFbLSTeZYdweLrMu5S8JI9PL5gy56odztNktoQ==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:53:49 2025 by rpki-client