Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APNT/YYuYI9TNRZlkKZOeA_qj3KHFacU.roa
File: YYuYI9TNRZlkKZOeA_qj3KHFacU.roa (raw, json)
Hash identifier: 0moIF3ebwYdR4S6vllIkF6PlSJg0gKxpQSneuxD5MOk=
Subject key identifier: 61:8B:98:23:D4:CD:45:99:64:29:93:9E:03:FA:A3:DC:A1:C5:69:C5
Certificate issuer: /CN=C2528D8C5B676FD9A24DFDA7E9217457B7310263
Certificate serial: 119B
Authority key identifier: C2:52:8D:8C:5B:67:6F:D9:A2:4D:FD:A7:E9:21:74:57:B7:31:02:63
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wlKNjFtnb9miTf2n6SF0V7cxAmM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APNT/YYuYI9TNRZlkKZOeA_qj3KHFacU.roa
Signing time: Fri 01 Sep 2023 08:04:00 +0000
ROA not before: Fri 01 Sep 2023 08:04:00 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131659
IP address blocks: 103.130.28.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4507 (0x119b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C2528D8C5B676FD9A24DFDA7E9217457B7310263
Validity
Not Before: Sep 1 08:04:00 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=618B9823D4CD45996429939E03FAA3DCA1C569C5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ab:7b:9a:0c:57:73:3b:9b:ba:de:05:95:de:
d8:38:0c:d9:e6:47:db:f8:f4:6c:f9:dc:11:0e:fc:
f8:fc:b7:f6:79:97:36:2a:2c:ba:ba:fc:9c:8a:ef:
10:5e:d8:31:c7:64:95:93:d1:50:53:b4:93:3c:0b:
07:0d:f5:89:c1:9a:db:7e:6d:8c:32:be:0d:f1:1a:
01:7d:af:bf:57:5b:09:18:89:2d:c4:e8:d6:68:17:
53:58:c3:4a:b8:92:41:e8:3b:c2:24:fd:9e:0a:f9:
63:07:13:30:09:99:8c:04:f5:a4:d0:bb:a8:b3:24:
b5:eb:dd:a4:b0:17:e0:6e:bc:a8:e4:9b:8a:0a:df:
84:bf:b1:bf:bc:ec:70:cc:75:46:18:25:69:56:0b:
68:9c:c4:b0:ff:df:ce:03:26:98:88:d5:3d:e2:a9:
06:04:be:7f:21:4c:db:56:1c:c7:31:ae:77:e1:97:
b8:25:43:9e:70:14:75:35:23:6a:d2:5c:fa:f2:08:
31:72:7a:c6:8f:ef:f7:88:c7:e5:8b:d2:b1:db:69:
9f:6a:2b:64:db:65:5f:74:4e:0d:cd:ee:58:90:c6:
1c:c5:4a:98:64:1e:bd:17:c1:c5:47:f6:c3:3b:40:
c2:aa:83:34:45:49:d4:b1:72:14:a5:6d:1f:d1:6d:
0e:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:8B:98:23:D4:CD:45:99:64:29:93:9E:03:FA:A3:DC:A1:C5:69:C5
X509v3 Authority Key Identifier:
keyid:C2:52:8D:8C:5B:67:6F:D9:A2:4D:FD:A7:E9:21:74:57:B7:31:02:63
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APNT/wlKNjFtnb9miTf2n6SF0V7cxAmM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wlKNjFtnb9miTf2n6SF0V7cxAmM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APNT/YYuYI9TNRZlkKZOeA_qj3KHFacU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.130.28.0/22
Signature Algorithm: sha256WithRSAEncryption
a7:10:d4:14:0a:72:60:44:fb:84:0f:30:0d:62:df:b6:ee:24:
10:2f:13:3a:28:14:f1:7a:c4:0e:3a:40:0a:95:74:f8:be:a2:
38:4d:2c:2a:c1:52:55:5f:f0:0d:09:3e:73:7f:4f:50:74:f6:
18:37:19:9d:a1:4f:64:00:7b:00:5a:8a:41:51:8d:15:44:6c:
37:d4:81:e6:57:32:37:8a:13:d0:3a:ba:d7:e9:3b:37:7e:84:
7b:a6:ff:52:c7:03:83:a4:7a:8d:78:a8:a3:53:f5:e4:59:bf:
2f:70:c9:29:d6:2a:b6:53:df:fc:02:3a:9a:88:78:2f:a0:8e:
b9:60:03:df:88:df:a1:e7:c0:98:97:d3:ad:06:94:8a:6b:f6:
d9:64:60:ed:51:fd:5b:3f:06:5d:39:8d:f0:dc:b4:14:05:a1:
38:dd:31:89:35:6a:b4:ba:fd:01:02:6d:29:4d:fa:77:ba:23:
0b:ee:f5:d3:22:16:b5:4c:5a:dd:82:cd:db:72:0c:56:f8:f9:
5f:67:01:79:64:3b:ca:55:d6:99:ef:1a:30:1e:ef:a1:23:e8:
10:5a:99:fb:32:1d:ee:96:c5:74:17:91:d5:7a:81:24:25:59:
c5:00:54:ec:52:24:38:8a:39:3d:a5:f4:a8:3c:9b:42:c5:7d:
70:c7:32:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:04:44 2025 by rpki-client