Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SBNET/YCLlZ3pLZQ5-3gOzVmkfcOAJRcU.roa
File: YCLlZ3pLZQ5-3gOzVmkfcOAJRcU.roa (raw, json)
Hash identifier: UDpGwLjYrEXZ/cAkWgDhj2Zc0BtrXygKGv6QsYRzkxo=
Subject key identifier: 60:22:E5:67:7A:4B:65:0E:7E:DE:03:B3:56:69:1F:70:E0:09:45:C5
Certificate issuer: /CN=601AF0E931CFF7483DFB6E8A33315D79F32BC248
Certificate serial: 0F82
Authority key identifier: 60:1A:F0:E9:31:CF:F7:48:3D:FB:6E:8A:33:31:5D:79:F3:2B:C2:48
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YBrw6THP90g9-26KMzFdefMrwkg.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SBNET/YCLlZ3pLZQ5-3gOzVmkfcOAJRcU.roa
Signing time: Sun 07 Feb 2021 11:46:48 +0000
ROA not before: Sun 07 Feb 2021 11:46:48 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18046
IP address blocks: 103.130.20.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3970 (0xf82)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=601AF0E931CFF7483DFB6E8A33315D79F32BC248
Validity
Not Before: Feb 7 11:46:48 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=6022E5677A4B650E7EDE03B356691F70E00945C5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:f9:5c:68:c9:c5:93:af:46:04:34:4e:f6:e7:
8d:0f:65:33:26:31:85:47:db:ef:04:da:27:60:ae:
e3:97:9e:bd:dc:95:a7:db:29:a5:69:68:f4:c7:a3:
a8:88:74:e0:51:23:f8:1c:2a:dc:ce:d1:6d:87:36:
f3:29:02:14:e7:ad:4a:b5:90:a7:8a:c1:97:91:26:
d1:86:f2:9e:54:20:76:0c:dd:1d:d8:c4:b6:88:c2:
18:8b:b9:12:00:6f:80:00:cd:64:f8:7e:dc:51:94:
92:20:97:50:ab:47:3a:9b:42:b0:25:31:8d:75:55:
6a:ab:71:83:00:cd:44:b0:97:46:45:23:9c:52:f4:
d9:ae:c5:fe:64:2e:3e:ba:27:50:62:f7:7c:26:2c:
e0:19:ae:de:c8:4e:81:0c:d0:39:10:0a:94:bd:ce:
9f:cd:ca:86:45:de:bb:9d:ec:08:1b:e6:07:55:5e:
02:a2:59:70:79:b8:05:5d:13:1b:80:51:cc:c2:21:
68:ae:c3:38:85:34:e4:10:65:2e:d2:90:30:4d:10:
7a:69:23:bb:44:8a:07:23:84:b8:c7:28:8f:aa:44:
6c:ef:a6:3d:c8:91:d8:69:3c:52:57:87:95:b2:79:
29:86:bc:4e:c6:a8:9a:31:60:e1:3f:16:21:74:be:
ef:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:22:E5:67:7A:4B:65:0E:7E:DE:03:B3:56:69:1F:70:E0:09:45:C5
X509v3 Authority Key Identifier:
keyid:60:1A:F0:E9:31:CF:F7:48:3D:FB:6E:8A:33:31:5D:79:F3:2B:C2:48
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SBNET/YBrw6THP90g9-26KMzFdefMrwkg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YBrw6THP90g9-26KMzFdefMrwkg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SBNET/YCLlZ3pLZQ5-3gOzVmkfcOAJRcU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.130.20.0/22
Signature Algorithm: sha256WithRSAEncryption
ba:f3:2f:c1:98:a5:ea:73:ac:ff:fc:56:c8:df:97:2f:f9:56:
45:4a:bb:82:ac:c5:53:22:b1:75:ff:c0:34:30:4a:8c:0e:fa:
8b:95:92:c0:29:bc:0b:f1:db:83:bf:1b:6f:08:a2:19:d4:04:
04:64:c7:39:7f:06:cd:28:cb:2f:ac:b5:d9:8b:38:5d:78:e5:
f2:83:8c:48:41:73:92:d5:f9:0b:33:f5:b0:f6:41:b3:fd:2a:
bd:55:8c:1f:eb:4b:f2:8b:3c:39:ed:02:60:fc:3c:bb:20:50:
4d:26:5e:65:08:c3:b4:f4:78:ff:18:30:97:86:03:ef:fc:4e:
6a:7f:dc:67:39:da:27:1b:65:a2:e1:83:cf:6d:68:9b:54:8f:
25:3b:65:40:cd:c5:09:6c:77:8a:0e:60:bb:cf:93:f2:17:05:
2b:75:f9:5e:78:c8:99:16:4b:6c:c9:68:86:f9:b5:7f:2d:fc:
e4:3b:de:55:35:b5:7e:95:96:d3:cc:61:14:03:eb:07:b1:ca:
94:e4:10:59:f7:d3:08:32:f9:59:15:59:bb:f2:41:da:70:3f:
90:e9:b3:70:f8:5d:76:46:33:1a:1c:ef:0b:92:4f:05:4c:30:
38:e9:ed:3c:69:3c:b0:92:9c:08:02:d9:3c:d8:dd:33:0e:f2:
59:de:a7:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:24:07 2025 by rpki-client