Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APNT/RsbPV63GSJ1GECslrTO1el1y3a0.roa
File: RsbPV63GSJ1GECslrTO1el1y3a0.roa (raw, json)
Hash identifier: AOzB7AF9Qt+vLKxjMMWuzbHaAaS+HfSZdH9MrJa58dg=
Subject key identifier: 46:C6:CF:57:AD:C6:48:9D:46:10:2B:25:AD:33:B5:7A:5D:72:DD:AD
Certificate issuer: /CN=C2528D8C5B676FD9A24DFDA7E9217457B7310263
Certificate serial: 113E
Authority key identifier: C2:52:8D:8C:5B:67:6F:D9:A2:4D:FD:A7:E9:21:74:57:B7:31:02:63
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wlKNjFtnb9miTf2n6SF0V7cxAmM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APNT/RsbPV63GSJ1GECslrTO1el1y3a0.roa
Signing time: Wed 10 May 2023 13:18:22 +0000
ROA not before: Wed 10 May 2023 13:18:22 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131659
IP address blocks: 103.130.29.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4414 (0x113e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C2528D8C5B676FD9A24DFDA7E9217457B7310263
Validity
Not Before: May 10 13:18:22 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=46C6CF57ADC6489D46102B25AD33B57A5D72DDAD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:68:09:a1:ca:84:f7:93:42:f7:9d:92:23:b5:
7c:79:d7:79:0f:67:71:fa:cb:2d:8e:67:3f:ac:f2:
da:25:0a:99:1a:cb:7f:b4:a9:05:30:77:f4:46:19:
9f:6e:03:07:76:c1:0e:05:98:ee:4b:83:dc:88:55:
28:ee:7c:3d:0e:d2:64:5c:f1:83:b9:be:02:50:34:
4d:1c:da:7c:5f:4b:de:2e:5f:f7:fa:21:35:de:c1:
97:5d:e6:c8:0f:8f:53:9d:70:65:2e:83:0c:5e:ef:
9c:d6:52:ef:41:7f:03:9f:19:7a:d3:b6:bd:b5:bc:
e3:42:a4:83:3d:2b:64:cb:8a:5e:78:96:a2:dc:92:
d5:7c:79:e4:80:89:93:c2:77:df:19:89:d0:38:5d:
bd:c2:42:73:93:f2:b3:eb:8e:d6:7b:ab:70:5d:07:
2d:88:44:75:a8:ac:ab:87:aa:ad:e0:3b:c6:b5:58:
ac:55:69:39:72:e2:55:36:d3:b2:ad:21:92:ae:a2:
16:c9:39:9b:20:e6:b5:eb:b5:c8:7f:84:ba:53:06:
4d:55:b6:62:ed:c5:09:7d:56:c0:86:d7:c0:d5:66:
50:30:24:97:ba:87:30:2d:d4:48:56:22:8c:81:0c:
a5:1f:86:ec:33:5e:1f:65:7f:7c:19:27:0b:70:07:
d2:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:C6:CF:57:AD:C6:48:9D:46:10:2B:25:AD:33:B5:7A:5D:72:DD:AD
X509v3 Authority Key Identifier:
keyid:C2:52:8D:8C:5B:67:6F:D9:A2:4D:FD:A7:E9:21:74:57:B7:31:02:63
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APNT/wlKNjFtnb9miTf2n6SF0V7cxAmM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wlKNjFtnb9miTf2n6SF0V7cxAmM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APNT/RsbPV63GSJ1GECslrTO1el1y3a0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.130.29.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:dd:df:62:2a:71:b3:ea:8b:b6:20:42:05:61:e1:fc:8c:18:
1e:ea:6a:87:be:62:f9:83:68:c6:14:90:ee:50:54:1f:57:ba:
46:e4:8c:c0:37:bc:2f:5e:c6:8b:fe:04:7f:8e:4f:d8:f2:64:
a0:94:15:9d:e7:ff:fb:3a:40:2f:63:b6:47:de:be:4f:0f:25:
4d:5d:bc:74:dc:82:91:68:8d:ea:93:6e:d0:aa:cf:83:5b:81:
52:31:f1:8a:b4:35:50:99:45:40:ab:44:f8:7c:9e:7d:5e:a3:
d2:f2:39:18:26:c3:f8:db:c8:4d:cd:34:17:ef:ce:01:d0:20:
32:22:ce:02:f7:c8:ea:b4:6c:18:30:b2:69:a7:56:ec:5b:c2:
58:95:36:8f:8a:90:89:bc:18:ea:1a:16:85:3d:02:6a:af:be:
75:05:1a:ad:64:ef:e3:ce:84:7f:22:a5:32:11:d3:52:79:5b:
66:6e:25:f5:10:80:cf:9d:a3:69:96:8e:68:ea:36:26:04:eb:
d5:bc:7a:bd:ad:38:9c:26:ee:a5:64:83:95:f0:b7:10:ad:45:
11:b4:a6:3a:e4:a7:7e:5b:0a:59:8e:ad:bd:a6:00:0c:aa:31:
92:b7:be:5f:b5:1b:b8:fb:7c:c5:97:9b:93:50:a0:18:bc:9d:
bd:61:28:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:58:29 2025 by rpki-client