Route Origin Authorization
Location:                 rpkica.twnic.tw/rpki/TWNICCA/PARADISE/ZDzpp4bmHqEwForeEN0CUxQg_Ws.roa (download)

Subject key identifier:   64:3C:E9:A7:86:E6:1E:A1:30:16:8A:DE:10:DD:02:53:14:20:FD:6B 
Authority key identifier: E2:77:49:EA:A5:57:BC:A5:64:5A:27:5E:3D:E0:A3:AF:53:47:F7:C3
asID:                     AS20473
Prefixes:
    1: 103.175.152.0/23 maxlen: 24

--
$ test-roa -p rpkica.twnic.tw/rpki/TWNICCA/PARADISE/ZDzpp4bmHqEwForeEN0CUxQg_Ws.roa | openssl x509 -text
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 154 (0x9a)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=E27749EAA557BCA5645A275E3DE0A3AF5347F7C3
        Validity
            Not Before: Jun  7 08:28:21 2022 GMT
            Not After : Nov  3 05:41:53 2022 GMT
        Subject: CN=643CE9A786E61EA130168ADE10DD02531420FD6B
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ad:08:ba:80:ab:b6:a8:86:b1:a6:5d:05:c5:8c:
                    d6:01:9d:72:28:4b:09:23:8a:f1:63:a4:dc:54:f3:
                    d7:39:f8:bc:6d:6a:05:44:52:48:17:a4:b3:e7:ec:
                    3c:2e:be:b3:6f:0a:a3:ea:92:8b:25:81:9b:5c:0f:
                    c2:34:63:89:d7:b9:be:fb:d1:7c:db:95:d0:02:f8:
                    5b:5a:9e:2a:b2:9c:44:9c:0a:e7:56:36:1b:b5:61:
                    a3:8d:b2:1e:73:bc:be:66:7a:6e:72:59:3d:9d:7e:
                    88:54:e8:e0:5b:de:51:c4:9d:8b:35:18:62:b9:7f:
                    9d:e8:62:d8:3e:f3:25:eb:51:5d:da:47:8d:77:ab:
                    29:8e:aa:36:fb:0c:56:8c:0c:15:2f:5f:6c:a0:57:
                    bf:c1:16:4a:ea:6c:e5:4e:d9:e1:06:20:0d:49:e7:
                    22:18:cc:6b:54:2d:82:93:d1:80:77:c9:32:eb:07:
                    d0:b8:db:7f:04:37:00:7d:87:11:48:52:b0:f0:02:
                    17:71:4a:30:e1:ab:3a:c3:15:3d:97:b5:6a:59:67:
                    57:d9:01:45:1e:91:95:4a:37:2e:97:88:67:3f:4b:
                    4c:5a:86:a1:c6:49:90:dd:84:c6:6c:67:31:2d:52:
                    5a:b9:ba:b8:86:d0:29:37:82:00:cb:79:52:d1:55:
                    dc:d3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                64:3C:E9:A7:86:E6:1E:A1:30:16:8A:DE:10:DD:02:53:14:20:FD:6B
            X509v3 Authority Key Identifier: 
                keyid:E2:77:49:EA:A5:57:BC:A5:64:5A:27:5E:3D:E0:A3:AF:53:47:F7:C3

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PARADISE/4ndJ6qVXvKVkWidePeCjr1NH98M.crl

            Authority Information Access: 
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4ndJ6qVXvKVkWidePeCjr1NH98M.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access: 
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PARADISE/ZDzpp4bmHqEwForeEN0CUxQg_Ws.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  103.175.152.0/23

    Signature Algorithm: sha256WithRSAEncryption
         48:14:b1:a2:da:d6:18:ff:5f:c2:c0:ae:0c:2c:e3:56:04:bb:
         16:66:78:65:78:d9:90:b0:bf:72:7b:e6:dd:30:04:7e:f8:6a:
         d1:0c:f6:d7:d2:87:4b:6d:f3:29:7e:96:46:4c:cd:f5:04:40:
         ad:47:c1:2d:33:e0:bb:e0:94:34:c3:27:2c:78:bd:a2:f0:fd:
         41:d2:5c:d2:4a:3f:6c:a7:d8:e8:14:f6:c4:f4:d5:33:4f:b2:
         4a:57:b2:7a:28:30:80:08:ac:58:30:b4:89:b9:7f:f6:11:22:
         6f:06:db:fe:32:a6:1a:ef:2e:4c:25:8e:2f:0d:46:64:e4:59:
         f0:56:02:04:92:7f:5a:15:7d:73:a5:ca:a8:7d:5d:17:80:a4:
         1f:53:7e:62:23:4a:9f:86:c0:9d:f5:17:29:15:56:9d:be:38:
         a8:be:cc:10:cf:51:20:98:9c:c1:d4:e3:d2:3e:d8:2d:e9:99:
         15:77:28:e0:ff:f2:34:10:8b:aa:81:b8:bd:3d:5b:9f:e2:e6:
         72:db:34:37:b7:a2:5a:e1:1a:4a:e3:54:6e:33:e4:9c:fe:43:
         ef:ed:d2:f6:aa:1b:76:4a:c0:74:9b:8b:47:0f:83:9b:39:fa:
         01:33:d6:99:70:ae:6f:3a:df:10:12:b1:20:47:d3:ad:8c:af:
         77:27:61:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Generated at Tue Jun 7 14:20:50 2022 by LibreSSL & rpki-client.