Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASGC/99U28NRDsCpPW0AU82-am0oV5yg.roa
File: 99U28NRDsCpPW0AU82-am0oV5yg.roa (raw, json)
Hash identifier: jBxGYPCEWqMH5CHo9lHlf+93UHGmnKEmOzqLDO9t/VE=
Subject key identifier: F7:D5:36:F0:D4:43:B0:2A:4F:5B:40:14:F3:6F:9A:9B:4A:15:E7:28
Certificate issuer: /CN=760EA9F7833EDC6366FD5E23A426BCF62BB01E6C
Certificate serial: 0A3D
Authority key identifier: 76:0E:A9:F7:83:3E:DC:63:66:FD:5E:23:A4:26:BC:F6:2B:B0:1E:6C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/dg6p94M-3GNm_V4jpCa89iuwHmw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASGC/99U28NRDsCpPW0AU82-am0oV5yg.roa
Signing time: Thu 15 Sep 2022 02:48:51 +0000
ROA not before: Thu 15 Sep 2022 02:48:51 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24167
IP address blocks: 117.103.96.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2621 (0xa3d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=760EA9F7833EDC6366FD5E23A426BCF62BB01E6C
Validity
Not Before: Sep 15 02:48:51 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=F7D536F0D443B02A4F5B4014F36F9A9B4A15E728
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:30:4f:ac:f9:e7:f3:df:4b:c6:c4:0e:c0:5d:
da:d6:23:2f:e1:59:85:82:3a:89:59:b5:32:74:25:
51:d4:3b:5a:4c:38:7c:53:06:ff:23:09:0f:62:b5:
63:d7:6a:33:b8:4d:dd:75:93:06:ed:3f:31:ee:9a:
9a:42:0f:82:02:17:b4:6d:7f:4c:c7:a5:93:8c:7e:
58:8d:0c:5c:d0:65:e6:6f:f9:f3:79:b4:3b:fb:b7:
a1:9e:9e:5c:5f:6f:25:43:09:eb:2d:e7:e3:52:f0:
e5:38:8f:10:cc:10:6b:6f:90:06:ca:7f:55:89:23:
ae:30:2a:9d:70:34:b7:59:af:5d:59:83:87:b3:78:
2b:da:7f:d3:d0:75:81:40:8a:61:bf:d1:38:40:d7:
f0:0c:f9:6c:e9:14:b5:af:29:74:66:8a:3c:5c:91:
6e:87:01:89:3f:5f:e2:80:66:1b:21:bf:eb:c7:ad:
78:94:a5:f5:2e:69:3d:ab:d5:29:2b:6e:98:97:84:
8a:47:dc:ab:73:a8:96:99:5f:2b:5f:85:7d:d9:bc:
e5:d1:78:75:92:19:60:83:69:1f:41:59:79:c1:0b:
61:0b:50:db:b2:4c:0c:69:c6:d8:24:1d:0e:f1:b7:
bd:c1:e0:11:41:b4:00:fd:94:73:83:da:9a:e0:c7:
0d:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:D5:36:F0:D4:43:B0:2A:4F:5B:40:14:F3:6F:9A:9B:4A:15:E7:28
X509v3 Authority Key Identifier:
keyid:76:0E:A9:F7:83:3E:DC:63:66:FD:5E:23:A4:26:BC:F6:2B:B0:1E:6C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASGC/dg6p94M-3GNm_V4jpCa89iuwHmw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/dg6p94M-3GNm_V4jpCa89iuwHmw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASGC/99U28NRDsCpPW0AU82-am0oV5yg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
117.103.96.0/20
Signature Algorithm: sha256WithRSAEncryption
2a:f2:41:07:c0:07:21:12:3b:f8:77:e2:14:67:31:e0:26:01:
55:0a:01:88:05:8f:5b:24:c4:93:01:34:c2:c3:1a:7c:dd:a6:
4b:9b:8d:9c:d9:e3:99:8f:6d:bc:e9:b3:3f:76:ae:e6:0c:83:
1d:00:ff:f2:92:e1:61:89:0b:4c:4d:09:90:71:40:91:94:5c:
90:2b:a4:86:80:43:d6:94:00:ae:f1:08:26:99:f8:5c:9c:cb:
a1:46:3a:f4:78:b1:ce:56:83:fb:9a:56:b6:68:29:01:4d:11:
bc:d7:91:ea:7e:e5:c6:52:e9:48:a6:a4:7b:bb:68:98:06:69:
df:47:44:17:14:fc:db:4e:3e:90:9a:d0:0f:c0:35:40:c7:36:
9e:1f:85:8e:cf:f3:df:2b:cc:d0:db:01:a5:88:d8:6d:03:00:
61:a6:0f:40:9d:6c:ac:ee:d0:95:75:1c:dd:e1:83:45:58:62:
0a:e4:f3:e2:05:26:3b:4a:f0:50:92:e4:57:61:a7:e8:9b:24:
64:1f:fa:93:43:ca:89:98:e9:f4:e3:03:cd:d5:69:ac:ce:b5:
fa:4e:21:8e:ad:08:70:59:49:1e:4a:4b:22:ac:76:63:79:3c:
08:f2:98:40:c4:be:01:d4:08:6f:06:32:ef:0e:49:d1:c5:78:
e5:4f:3b:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:24:19 2025 by rpki-client