Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/XINYUN/5nAP2deFpPRWJBgJ_DEx7tVRRwo.roa
File: 5nAP2deFpPRWJBgJ_DEx7tVRRwo.roa (raw, json)
Hash identifier: poo7Pgh5dOiX8LRCuPRjlk8mjIaplRSuXZK+EyIuKjc=
Subject key identifier: E6:70:0F:D9:D7:85:A4:F4:56:24:18:09:FC:31:31:EE:D5:51:47:0A
Certificate issuer: /CN=84F850C0651B699E190DC9D97CD1DE326C164EC5
Certificate serial: 0C02
Authority key identifier: 84:F8:50:C0:65:1B:69:9E:19:0D:C9:D9:7C:D1:DE:32:6C:16:4E:C5
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/hPhQwGUbaZ4ZDcnZfNHeMmwWTsU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XINYUN/5nAP2deFpPRWJBgJ_DEx7tVRRwo.roa
Signing time: Wed 03 Feb 2021 16:44:57 +0000
ROA not before: Wed 03 Feb 2021 16:44:57 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38047
IP address blocks: 103.133.153.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3074 (0xc02)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84F850C0651B699E190DC9D97CD1DE326C164EC5
Validity
Not Before: Feb 3 16:44:57 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E6700FD9D785A4F456241809FC3131EED551470A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:6e:9d:97:27:d2:a4:5e:ef:03:fe:07:73:3a:
13:08:c7:2d:7b:33:0c:21:23:a6:ad:b6:78:97:b6:
b8:77:34:67:ac:89:0d:1f:23:e4:12:77:d4:41:d3:
76:00:30:4c:4b:49:d6:d4:50:11:ef:9d:2f:e0:70:
be:6a:91:00:cd:56:63:aa:8a:c8:22:c2:e3:a5:0d:
93:ae:70:a9:dc:27:0c:45:4c:9d:a6:26:46:77:8b:
af:1e:fd:43:0b:e8:2d:b8:b7:5c:12:91:37:58:7a:
16:25:ad:81:b8:18:50:dc:ba:3c:69:1a:6a:a6:9e:
2d:f0:bb:78:cc:94:d3:8b:db:b1:fe:43:31:16:7f:
09:c3:90:b4:f3:be:62:ef:15:de:ca:e3:72:10:31:
ba:4d:2d:1f:6d:77:04:17:11:65:c3:eb:25:3b:e8:
35:a0:e3:cf:5d:0a:5a:c2:38:7d:2e:5d:8e:46:55:
fc:0c:1a:9b:9b:0d:cf:af:7a:6d:07:63:61:63:16:
57:a4:7d:f0:54:a3:a9:13:16:36:51:ca:5c:c3:91:
d2:6b:34:0f:90:54:07:9e:32:b8:36:db:98:0f:69:
cf:7d:ed:75:fa:cb:61:f6:e1:f2:ce:bd:77:6e:80:
44:db:b1:ac:ae:d3:23:f1:58:73:98:bd:35:f1:86:
4a:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:70:0F:D9:D7:85:A4:F4:56:24:18:09:FC:31:31:EE:D5:51:47:0A
X509v3 Authority Key Identifier:
keyid:84:F8:50:C0:65:1B:69:9E:19:0D:C9:D9:7C:D1:DE:32:6C:16:4E:C5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XINYUN/hPhQwGUbaZ4ZDcnZfNHeMmwWTsU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/hPhQwGUbaZ4ZDcnZfNHeMmwWTsU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XINYUN/5nAP2deFpPRWJBgJ_DEx7tVRRwo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.133.153.0/24
Signature Algorithm: sha256WithRSAEncryption
73:6f:fb:e6:30:7e:25:c8:84:f8:75:76:30:50:27:9f:9f:84:
99:20:70:12:80:5b:e3:6b:b7:ea:56:a5:93:f6:7d:65:94:b1:
2d:12:e2:4e:e6:3c:56:1e:5e:db:94:dd:7d:55:35:d5:a1:2d:
4a:c5:31:a9:7b:44:1b:6f:1d:d7:6a:e3:93:27:20:da:49:c9:
ff:7b:7d:f3:7b:e2:4c:ff:9e:e4:a8:e8:fe:54:19:94:df:96:
45:38:4e:1c:5f:98:a6:6f:8f:13:8f:db:0f:a7:a8:54:d2:34:
66:a3:88:a2:4d:5f:35:2b:76:5a:1a:35:f8:67:f1:50:a5:1b:
ba:b5:aa:1a:59:50:90:4b:23:16:4d:e7:f8:f4:45:7e:d3:51:
98:5b:bd:d0:cc:f5:96:93:94:88:9d:21:cd:4e:77:9c:cd:82:
38:7a:c8:21:b0:69:ea:49:ee:26:70:a5:bc:0a:cd:d1:6b:1e:
2d:23:d3:99:44:c1:b1:27:56:0d:67:ea:95:b2:7a:03:8d:32:
9c:b7:a6:62:3b:54:00:f6:62:c6:64:f5:5b:14:cb:9d:4f:bc:
32:e4:7c:6b:19:7f:02:10:d2:e3:28:6e:84:76:23:2a:53:2d:
c4:7f:df:12:82:c8:c8:9c:46:2b:a9:4e:11:ff:0a:f8:62:eb:
60:8b:c3:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:11:36 2025 by rpki-client