Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CCP1138480/XC4Us5letSN9wSAxml54Gor9YVA.roa
File: XC4Us5letSN9wSAxml54Gor9YVA.roa (raw, json)
Hash identifier: DuQyRZJyC/4CPp02vlagbKqPh1oZOnwzCnVn2HW+gqQ=
Subject key identifier: 5C:2E:14:B3:99:5E:B5:23:7D:C1:20:31:9A:5E:78:1A:8A:FD:61:50
Certificate issuer: /CN=3CEBAC4057251C8AAAB954DC220B22496BEEF563
Certificate serial: 02E9
Authority key identifier: 3C:EB:AC:40:57:25:1C:8A:AA:B9:54:DC:22:0B:22:49:6B:EE:F5:63
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/POusQFclHIqquVTcIgsiSWvu9WM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CCP1138480/XC4Us5letSN9wSAxml54Gor9YVA.roa
Signing time: Mon 10 Feb 2025 14:00:05 +0000
ROA not before: Mon 10 Feb 2025 14:00:05 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 63893
IP address blocks: 2400:50a0::/32 maxlen: 64
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 745 (0x2e9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3CEBAC4057251C8AAAB954DC220B22496BEEF563
Validity
Not Before: Feb 10 14:00:05 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=5C2E14B3995EB5237DC120319A5E781A8AFD6150
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:2e:03:c7:b4:a2:83:26:48:04:6b:17:52:ed:
7d:8f:0f:83:97:19:76:de:e2:6d:8d:d7:5e:77:96:
31:fc:96:84:62:b6:74:5b:40:41:e1:09:85:3f:61:
8d:18:8a:d6:f2:90:96:b1:9a:ce:b9:03:4d:a5:2e:
78:f8:5c:56:42:38:86:05:71:9a:26:da:8b:04:ff:
81:61:dd:f3:1f:b5:a4:7f:00:ec:a0:65:5c:09:9b:
34:88:a8:29:3b:99:9c:e6:74:74:87:66:21:88:c3:
0a:69:ce:18:f7:fd:ed:19:0f:49:18:c4:d2:29:9c:
2f:5b:87:52:2f:79:06:b2:0e:6b:c2:36:d5:e4:9b:
b5:4e:88:a8:4e:79:18:18:fb:79:9a:a9:8a:89:d6:
1a:15:5f:ee:a4:e9:b9:92:c0:49:d2:2c:0a:92:0c:
8a:dd:17:ce:20:58:8c:99:5e:ef:4c:1b:2c:c6:89:
37:19:2b:9c:d6:2b:46:02:e9:e0:1e:b7:c0:2a:2a:
1f:4b:20:c1:46:05:87:ec:ec:95:30:42:87:ca:af:
76:27:a0:b2:d8:1d:7a:c4:d1:6a:a8:34:fd:8a:e8:
a4:d7:fa:50:3e:da:85:c2:1a:fa:0b:10:00:1e:3f:
c2:1d:7d:2f:d5:12:5f:3b:9f:92:4f:ab:db:66:16:
e0:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:2E:14:B3:99:5E:B5:23:7D:C1:20:31:9A:5E:78:1A:8A:FD:61:50
X509v3 Authority Key Identifier:
keyid:3C:EB:AC:40:57:25:1C:8A:AA:B9:54:DC:22:0B:22:49:6B:EE:F5:63
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CCP1138480/POusQFclHIqquVTcIgsiSWvu9WM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/POusQFclHIqquVTcIgsiSWvu9WM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CCP1138480/XC4Us5letSN9wSAxml54Gor9YVA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:50a0::/32
Signature Algorithm: sha256WithRSAEncryption
18:a6:01:46:f0:d6:60:31:c9:84:bb:f8:58:dd:b4:31:23:73:
0b:7f:25:44:5b:39:26:3c:db:8d:19:7d:24:16:3a:34:bb:cd:
4e:4e:98:5b:bd:5d:75:21:3c:d6:a3:02:18:4b:c8:83:c4:c4:
95:48:cd:82:2a:76:e1:91:fd:df:20:55:e1:9d:ec:f6:ec:4c:
c3:6f:f4:3a:f7:31:2a:25:0f:b2:e9:83:ae:4a:9f:0c:31:34:
83:57:63:df:02:30:39:6d:af:a4:c4:52:3c:77:76:5e:ef:09:
25:3c:b5:3c:c4:c4:34:76:94:ed:42:47:9f:26:1a:05:f0:ab:
23:c6:95:33:c7:e1:00:1f:0b:68:88:c5:03:67:62:0a:35:ad:
1d:7f:c4:da:91:55:7a:13:fd:e7:78:4b:2c:63:5d:1c:08:25:
f7:ed:f5:5c:f5:00:08:b9:52:18:69:19:fa:82:d8:9e:c7:75:
e3:c4:b2:fa:01:ac:a6:5d:ce:3c:77:20:41:79:e9:47:b2:98:
ad:64:0c:22:d6:4d:81:d6:d7:36:f2:e8:34:4d:07:a8:42:9a:
30:2f:44:95:6d:66:fa:1f:6e:60:b9:8c:b5:99:9d:98:7e:0e:
6c:46:0f:f2:0b:ff:98:2c:6b:52:43:fb:36:38:77:1e:5f:96:
74:c4:d5:cb
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Apr 18 22:55:35 2025 by rpki-client