Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APNT/dN-qqY6zH3GSvlZOF1DC67s96uE.roa
File: dN-qqY6zH3GSvlZOF1DC67s96uE.roa (raw, json)
Hash identifier: NhuNxRfWCRWGSvSCBIJNVV2gqH85wnt5jC61cBNc+/g=
Subject key identifier: 74:DF:AA:A9:8E:B3:1F:71:92:BE:56:4E:17:50:C2:EB:BB:3D:EA:E1
Certificate issuer: /CN=C2528D8C5B676FD9A24DFDA7E9217457B7310263
Certificate serial: 0EEC
Authority key identifier: C2:52:8D:8C:5B:67:6F:D9:A2:4D:FD:A7:E9:21:74:57:B7:31:02:63
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wlKNjFtnb9miTf2n6SF0V7cxAmM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APNT/dN-qqY6zH3GSvlZOF1DC67s96uE.roa
Signing time: Sun 07 Feb 2021 13:13:13 +0000
ROA not before: Sun 07 Feb 2021 13:13:13 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 55789
IP address blocks: 103.130.28.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3820 (0xeec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C2528D8C5B676FD9A24DFDA7E9217457B7310263
Validity
Not Before: Feb 7 13:13:13 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=74DFAAA98EB31F7192BE564E1750C2EBBB3DEAE1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:30:b4:82:13:c9:9f:e5:3a:b5:52:88:52:0e:
a6:63:1d:28:aa:e5:b6:2b:c2:c2:73:a4:5c:91:3b:
8d:12:df:31:50:97:7d:dd:0a:97:d6:9a:bc:15:64:
2a:a4:08:35:7f:53:4f:9e:1a:9a:56:68:21:a6:59:
be:7c:fe:48:1b:ac:79:db:0e:84:a2:d1:86:49:e2:
95:38:be:a6:f6:b8:80:3e:1d:4b:00:b0:a1:df:5d:
bd:90:0e:0a:15:f7:08:c0:a4:ee:62:8c:26:22:fe:
fb:07:91:39:91:4a:6a:df:70:ed:85:ba:e9:8e:b5:
5d:65:0f:b7:dd:f9:85:05:b2:88:54:77:05:f7:74:
36:35:d4:cb:b3:29:59:b7:5a:6a:f4:e5:bd:ad:8a:
f3:2a:13:6e:0f:57:41:3d:08:85:69:d1:4e:44:11:
cc:0c:9b:0c:22:8f:ec:61:a3:d9:c8:1d:06:73:50:
1a:68:60:a3:7c:c9:77:c1:89:a9:06:95:36:dc:a5:
78:45:f4:aa:6a:23:41:e1:8b:b7:6e:b3:01:c8:a1:
9e:29:cc:e8:d2:06:4f:87:62:b0:27:e5:cb:8d:43:
e3:e1:5f:b3:47:f7:50:1e:56:50:d9:cd:56:e3:af:
e5:3d:5c:ab:38:c5:33:b5:b1:b2:88:d3:cb:fa:d4:
fd:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:DF:AA:A9:8E:B3:1F:71:92:BE:56:4E:17:50:C2:EB:BB:3D:EA:E1
X509v3 Authority Key Identifier:
keyid:C2:52:8D:8C:5B:67:6F:D9:A2:4D:FD:A7:E9:21:74:57:B7:31:02:63
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APNT/wlKNjFtnb9miTf2n6SF0V7cxAmM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wlKNjFtnb9miTf2n6SF0V7cxAmM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APNT/dN-qqY6zH3GSvlZOF1DC67s96uE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.130.28.0/22
Signature Algorithm: sha256WithRSAEncryption
a9:8a:de:ea:35:c0:c6:26:ce:18:d2:7e:36:7e:f7:00:f5:74:
5e:f2:86:2f:1d:b2:77:21:27:0b:23:d4:e0:d0:58:31:69:3f:
7e:e0:b2:4f:5d:bf:9a:bc:55:5a:ef:32:76:ea:3a:40:b8:c9:
15:4e:cb:7b:15:32:b0:fe:86:3d:1a:51:c8:12:ec:af:29:e7:
1a:a7:2e:14:fa:1c:95:0c:d3:dc:e4:fc:5b:f4:5a:dc:95:7d:
61:1c:7d:b0:88:44:0d:06:98:0f:33:a9:fa:b3:e2:b5:ea:46:
71:e1:b8:e2:24:ad:c3:11:de:18:27:22:d5:28:68:c0:cc:9f:
ff:32:81:0b:40:af:30:c8:0c:f9:89:18:73:33:5d:70:46:5f:
5f:99:58:7e:ed:54:75:a1:fc:ec:45:00:61:54:eb:d8:b0:93:
cc:6b:36:a4:19:0f:80:55:5e:d7:83:f5:31:e4:ae:a7:aa:90:
85:81:6f:c5:45:24:3a:59:f6:da:f7:1e:a4:6c:5c:f0:32:60:
8c:79:93:23:84:6d:40:e6:d0:34:d6:8b:4d:24:fb:51:51:71:
73:b0:cb:32:9b:03:cb:3e:d5:d8:73:8f:84:51:f3:ed:07:dc:
d6:22:35:f0:f2:b3:45:05:7d:a8:cd:01:be:c7:18:6b:0c:18:
57:5a:7e:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:59:59 2024 by rpki-client on console-ams.rpki-client.org