Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TIDC/Zcweb5eJE91lKs0C-7jucWpO3pk.roa
File: Zcweb5eJE91lKs0C-7jucWpO3pk.roa (raw, json)
Hash identifier: lUYWPSbjB7x4r2SXG1TQfHYTBfuk+dlaK+eLrWvwGi0=
Subject key identifier: 65:CC:1E:6F:97:89:13:DD:65:2A:CD:02:FB:B8:EE:71:6A:4E:DE:99
Certificate issuer: /CN=C08515C8B9FB53F8CED489D2134F6441FFADA05E
Certificate serial: 08AF
Authority key identifier: C0:85:15:C8:B9:FB:53:F8:CE:D4:89:D2:13:4F:64:41:FF:AD:A0:5E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wIUVyLn7U_jO1InSE09kQf-toF4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TIDC/Zcweb5eJE91lKs0C-7jucWpO3pk.roa
Signing time: Sun 07 Feb 2021 11:52:54 +0000
ROA not before: Sun 07 Feb 2021 11:52:54 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131609
IP address blocks: 103.99.88.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2223 (0x8af)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C08515C8B9FB53F8CED489D2134F6441FFADA05E
Validity
Not Before: Feb 7 11:52:54 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=65CC1E6F978913DD652ACD02FBB8EE716A4EDE99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:56:ec:dd:87:54:30:a9:3c:17:b1:9e:07:f7:
fe:11:5d:2d:bf:a0:33:27:76:17:0c:c5:05:05:23:
a0:7e:e6:e1:63:b2:16:88:69:d3:10:c7:13:de:55:
0f:5d:53:db:cb:6e:36:c5:89:c9:8a:14:14:a0:6c:
bb:65:8e:42:ad:ad:8e:3d:75:d0:03:8c:06:bc:c3:
45:05:0a:17:09:68:49:7f:9e:d8:17:96:8f:50:82:
0b:6d:7c:09:b6:3c:44:28:74:ac:10:7d:f9:85:9a:
6b:92:e2:b1:65:e5:2c:37:54:1e:f5:0f:57:2f:fd:
7c:71:dd:d5:27:7d:5e:f0:a2:59:1e:f5:e6:11:44:
72:72:19:99:16:f2:c7:62:d2:41:18:78:26:0e:e2:
c1:5e:b0:cb:bd:2a:e0:92:7b:4b:78:dd:17:79:b5:
35:a5:50:b7:d4:b9:b3:7e:63:f1:c9:6f:ee:c9:b4:
e4:fd:e5:41:af:55:8e:9b:4f:54:41:46:b2:e3:72:
99:86:17:94:19:0f:75:cb:1e:93:60:a1:eb:6c:cb:
01:c7:fc:b0:9b:f3:1b:36:46:e4:bc:08:f3:e6:cc:
8d:10:9e:89:8f:24:b1:4c:2d:01:e5:67:6e:e2:b8:
11:30:d7:19:d6:ed:53:ad:20:11:d4:70:c0:2a:70:
9e:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:CC:1E:6F:97:89:13:DD:65:2A:CD:02:FB:B8:EE:71:6A:4E:DE:99
X509v3 Authority Key Identifier:
keyid:C0:85:15:C8:B9:FB:53:F8:CE:D4:89:D2:13:4F:64:41:FF:AD:A0:5E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TIDC/wIUVyLn7U_jO1InSE09kQf-toF4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wIUVyLn7U_jO1InSE09kQf-toF4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TIDC/Zcweb5eJE91lKs0C-7jucWpO3pk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.99.88.0/22
Signature Algorithm: sha256WithRSAEncryption
04:4f:74:8f:36:8f:5a:be:42:7f:8e:b2:76:2c:eb:cf:ab:b9:
62:76:cd:e3:7d:4a:d9:91:d7:55:1f:6d:4b:bb:52:3d:ea:dc:
60:13:c5:e3:6c:5c:a0:e8:0b:60:f0:e7:c8:27:5f:04:99:37:
35:ec:0f:94:98:00:0c:96:c0:ee:fb:6b:48:a9:6c:89:cc:90:
07:1e:70:b2:ea:cb:7e:db:93:9f:e3:a5:26:c5:0f:80:0c:6e:
83:bd:ed:4c:1b:d7:5d:1b:b3:c6:50:30:a1:a0:21:5d:5e:c6:
57:92:df:d0:b2:de:f2:3e:77:b6:20:48:38:be:66:86:e5:97:
e1:96:1f:6b:ca:33:e2:48:1d:84:29:04:72:03:0a:d6:4a:f2:
85:9f:38:2c:74:61:5e:d3:89:01:0d:77:ca:59:f8:6e:00:ec:
26:65:fd:d8:c2:2a:a0:d1:cb:d3:36:7d:f1:07:ee:6c:29:e4:
87:c2:b1:95:29:1a:ea:2b:4e:7a:bd:04:bd:90:12:5d:52:47:
e1:bd:21:fd:8d:e3:bc:9e:7c:67:e2:ee:02:85:89:e8:6c:02:
a3:2e:c5:f5:12:89:09:38:36:dc:b5:2d:9e:e8:31:37:38:f5:
ad:e2:24:b2:9b:0d:64:eb:d9:4f:0e:e5:dd:bf:07:f3:e8:72:
ad:be:9a:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:13:50 2025 by rpki-client