Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SUNHO/NvnpAbmNQHwXYEdxPQSqjhYEhuo.roa
File: NvnpAbmNQHwXYEdxPQSqjhYEhuo.roa (raw, json)
Hash identifier: taFoUTJV55/4DI9LmBCreilTwxh4/6peRRpZQwKuh/M=
Subject key identifier: 36:F9:E9:01:B9:8D:40:7C:17:60:47:71:3D:04:AA:8E:16:04:86:EA
Certificate issuer: /CN=5E85681AB6CDB83036323458032D1205A5B1AA0C
Certificate serial: 11A8
Authority key identifier: 5E:85:68:1A:B6:CD:B8:30:36:32:34:58:03:2D:12:05:A5:B1:AA:0C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XoVoGrbNuDA2MjRYAy0SBaWxqgw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SUNHO/NvnpAbmNQHwXYEdxPQSqjhYEhuo.roa
Signing time: Fri 01 Sep 2023 09:46:37 +0000
ROA not before: Fri 01 Sep 2023 09:46:37 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18419
IP address blocks: 103.130.92.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4520 (0x11a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5E85681AB6CDB83036323458032D1205A5B1AA0C
Validity
Not Before: Sep 1 09:46:37 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=36F9E901B98D407C176047713D04AA8E160486EA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:90:05:1e:2d:8e:42:f6:e1:66:ed:2d:63:ed:
57:c2:ad:af:68:f6:4a:c3:b3:01:24:15:6a:8a:93:
f0:c8:67:5e:38:e3:35:f6:79:14:6f:56:d9:9a:52:
3d:3d:52:66:63:1c:1f:22:f6:34:d1:fc:54:67:fb:
be:61:50:b8:86:92:7e:e0:e8:1c:2c:23:a3:92:4c:
e9:51:7c:68:09:95:63:ab:bf:d9:06:e1:64:5c:d0:
54:c7:aa:f3:9f:d9:f7:37:4b:7e:02:85:f8:93:8c:
97:33:9f:37:17:ca:a2:00:f8:6a:87:e9:4e:e6:ba:
2c:77:ca:cd:18:4d:3a:43:48:fc:ea:1a:a7:12:bd:
98:1a:60:af:ab:a7:c4:8b:7c:b5:0e:c7:c1:3a:a3:
bb:68:90:df:63:87:d5:2d:11:36:fe:5e:65:ac:9d:
97:79:58:8c:f8:1c:b5:c4:ee:a6:ad:9f:3e:08:46:
6b:fd:f5:3b:b2:08:d6:fc:de:aa:fe:40:e4:7d:8f:
8e:6b:0a:a1:40:75:14:50:87:3d:f2:ec:f7:23:aa:
5a:d0:43:75:d0:a0:e0:68:7a:c3:9b:b2:7f:1b:73:
16:1f:3f:1f:d6:e2:0e:e9:b9:08:6b:d9:7b:67:1e:
7f:cc:66:8c:1d:db:67:1e:2c:23:87:81:cb:cd:ff:
06:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:F9:E9:01:B9:8D:40:7C:17:60:47:71:3D:04:AA:8E:16:04:86:EA
X509v3 Authority Key Identifier:
keyid:5E:85:68:1A:B6:CD:B8:30:36:32:34:58:03:2D:12:05:A5:B1:AA:0C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SUNHO/XoVoGrbNuDA2MjRYAy0SBaWxqgw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XoVoGrbNuDA2MjRYAy0SBaWxqgw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SUNHO/NvnpAbmNQHwXYEdxPQSqjhYEhuo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.130.92.0/22
Signature Algorithm: sha256WithRSAEncryption
9b:57:a1:e7:da:ea:23:3f:c2:36:b8:90:38:8b:f8:5d:80:44:
0d:62:99:6f:09:56:4c:e4:f0:fd:56:45:fb:e3:61:7d:76:d9:
e6:84:02:44:e4:cf:7a:28:b9:43:b5:b9:a6:64:e1:ab:af:98:
ce:85:d0:46:91:ae:ae:4d:ae:56:1d:a1:52:87:24:c4:27:9d:
32:6e:98:53:e5:b0:69:7c:89:09:f6:93:2e:3b:5c:3d:bc:90:
cb:09:d1:73:4c:0a:eb:20:5a:c5:5f:10:aa:7d:c3:b9:69:78:
4a:f0:62:4f:22:ed:0b:3a:63:f3:ca:8b:a5:3e:fb:f2:dc:c7:
fb:2b:9e:39:e2:dc:d1:c9:a2:3c:9e:2e:ef:77:82:8a:37:e2:
22:5c:b1:a5:85:13:9e:a3:f3:c4:23:93:89:41:ac:52:81:6b:
af:51:1d:f6:9c:fd:03:f1:3d:b2:df:e7:de:50:c8:c9:f2:ff:
1e:aa:a9:a9:5e:da:0e:30:c0:09:fd:ee:83:50:86:e9:cb:87:
ac:e0:c8:d5:58:2e:63:28:b9:9e:32:14:56:3b:28:a2:5c:15:
c4:ac:31:b3:e9:28:af:6d:36:77:11:a6:51:cb:a1:9c:e1:31:
52:ac:e8:d8:7e:ee:6f:9e:5b:ee:7f:21:85:d5:f0:1d:e8:7e:
b5:68:bd:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org