Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HOSTCOMTW/NXB4vqceyE_JXe8ndO559aVHG3U.roa
File: NXB4vqceyE_JXe8ndO559aVHG3U.roa (raw, json)
Hash identifier: m4jzMJ/kaGOmIzwrZZfNU7j7WOAnaKN7PISFEK1Sl7k=
Subject key identifier: 35:70:78:BE:A7:1E:C8:4F:C9:5D:EF:27:74:EE:79:F5:A5:47:1B:75
Certificate issuer: /CN=4E609BA74186D0B0E3A1A9C010DA1DF0559A1982
Certificate serial: 0A2D
Authority key identifier: 4E:60:9B:A7:41:86:D0:B0:E3:A1:A9:C0:10:DA:1D:F0:55:9A:19:82
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TmCbp0GG0LDjoanAENod8FWaGYI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTCOMTW/NXB4vqceyE_JXe8ndO559aVHG3U.roa
Signing time: Mon 14 Nov 2022 23:41:56 +0000
ROA not before: Mon 14 Nov 2022 23:41:56 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131149
IP address blocks: 103.129.168.0/22 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2605 (0xa2d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4E609BA74186D0B0E3A1A9C010DA1DF0559A1982
Validity
Not Before: Nov 14 23:41:56 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=357078BEA71EC84FC95DEF2774EE79F5A5471B75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:20:a1:a9:3e:1c:ff:8b:81:60:ff:88:10:a2:
bb:67:4e:f2:53:f8:6b:35:e2:e6:1a:25:1e:b8:77:
0c:18:1a:5f:2b:4e:e1:56:ba:d1:58:4d:85:10:60:
e7:48:d6:2e:0c:ba:3b:20:af:49:cc:76:92:cf:22:
56:d2:1e:79:a0:c1:4a:c9:83:92:9d:0b:a3:1e:32:
21:69:5d:29:ce:77:a0:cd:ec:fc:af:75:da:03:96:
6b:de:6b:a2:43:38:df:58:78:d8:d3:31:ce:9e:dc:
9e:37:b9:26:29:8c:de:f1:8f:93:ba:1b:ea:7d:a8:
29:5c:96:34:40:c5:e0:31:f0:24:43:f1:93:da:a6:
e8:47:e5:8a:9c:43:32:04:69:1f:31:6c:5c:6c:76:
7e:34:98:5e:89:5a:ab:91:cb:b8:09:44:5a:d1:7a:
f1:d6:d4:c2:a0:12:e3:70:5d:b6:05:2b:ba:9a:a0:
b1:54:4e:1b:9b:3c:1b:0f:29:a3:fd:a9:5c:fa:5f:
31:8f:59:a5:b3:e9:c0:67:e8:35:27:97:c2:9e:62:
a1:bc:dc:93:0a:35:e7:37:2a:f8:f9:74:43:72:23:
ec:b1:31:6e:35:ac:54:c8:51:bd:a5:e4:d6:a1:55:
fd:ef:4b:de:06:97:46:26:61:12:35:6b:a3:f7:b5:
11:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:70:78:BE:A7:1E:C8:4F:C9:5D:EF:27:74:EE:79:F5:A5:47:1B:75
X509v3 Authority Key Identifier:
keyid:4E:60:9B:A7:41:86:D0:B0:E3:A1:A9:C0:10:DA:1D:F0:55:9A:19:82
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTCOMTW/TmCbp0GG0LDjoanAENod8FWaGYI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TmCbp0GG0LDjoanAENod8FWaGYI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTCOMTW/NXB4vqceyE_JXe8ndO559aVHG3U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.129.168.0/22
Signature Algorithm: sha256WithRSAEncryption
18:50:9e:63:6f:6b:35:84:a4:b2:ac:ed:dd:88:e0:d3:84:a6:
01:72:71:36:16:fb:f1:0b:14:a6:4b:de:68:1b:2e:23:69:e2:
9a:36:4f:32:0f:33:02:fc:19:9b:75:0a:51:34:ab:ec:23:00:
64:d8:cc:53:09:ed:43:8f:6d:ad:d1:48:2a:77:c2:07:47:b6:
7c:98:e7:8a:64:51:a4:1b:3f:2b:eb:2f:de:d8:8f:e8:1e:c9:
50:51:6d:0e:9d:2d:42:3d:81:fa:5a:50:da:af:b6:65:f3:39:
82:ac:01:a7:99:c6:af:e5:8e:01:69:ca:20:c8:25:d3:ce:40:
96:9b:c0:b5:9e:31:ad:2a:dd:40:47:15:ce:0c:35:bc:7f:46:
57:f6:8f:a4:f0:f9:65:ca:c2:d4:e3:ae:0b:a4:6a:5d:a2:96:
8d:9e:06:25:95:60:37:34:0b:02:25:cc:e6:b1:d8:b6:a7:1b:
b9:c7:52:be:4b:97:30:ed:d8:f1:e1:75:4a:e6:26:a6:68:e6:
b2:16:95:59:44:9b:f2:81:79:4a:ad:ad:8d:d5:ce:13:42:34:
6c:54:80:18:16:04:37:ae:7b:b0:25:66:e2:85:24:26:68:88:
6d:77:85:29:c2:a5:b6:99:5a:e1:b2:be:5b:1e:d8:7a:1e:fa:
f6:23:80:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org