Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/COCHENTEK/3SBH003ijPGoruueD-tT0rz9ys4.roa
File: 3SBH003ijPGoruueD-tT0rz9ys4.roa (raw, json)
Hash identifier: zEgOB8WwHkzvX6H1XL35gw2SKSImyYlb4tpOzheMKTk=
Subject key identifier: DD:20:47:D3:4D:E2:8C:F1:A8:AE:EB:9E:0F:EB:53:D2:BC:FD:CA:CE
Certificate issuer: /CN=A736CFF1948740614D0321E63B8403EB9AB9748D
Certificate serial: 0238
Authority key identifier: A7:36:CF:F1:94:87:40:61:4D:03:21:E6:3B:84:03:EB:9A:B9:74:8D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/pzbP8ZSHQGFNAyHmO4QD65q5dI0.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/COCHENTEK/3SBH003ijPGoruueD-tT0rz9ys4.roa
Signing time: Mon 10 Feb 2025 14:15:34 +0000
ROA not before: Mon 10 Feb 2025 14:15:34 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 983
IP address blocks: 2400:bea0::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 568 (0x238)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A736CFF1948740614D0321E63B8403EB9AB9748D
Validity
Not Before: Feb 10 14:15:34 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=DD2047D34DE28CF1A8AEEB9E0FEB53D2BCFDCACE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:26:7c:dd:31:4f:b2:c6:a4:3f:0f:7e:03:18:
67:18:c6:5a:e0:96:b1:67:ed:a6:90:28:9b:58:b8:
6b:46:8f:85:a7:b9:d3:62:b5:9e:c8:a9:de:a7:e8:
14:2e:af:e8:3b:91:87:16:e8:28:c9:5f:fe:5a:dd:
3e:b8:1e:66:4f:bc:96:1c:e9:ce:d7:40:9a:6f:6e:
8f:47:80:52:e6:22:94:a4:35:30:8e:19:74:17:8d:
87:e7:dd:e1:21:e0:8c:a0:0e:90:c4:e9:b9:5b:c1:
25:52:45:5a:20:8b:78:df:a2:04:56:13:c4:5e:b5:
fc:ec:42:f4:c5:79:0e:8e:7d:2b:df:0f:1c:3d:a0:
0e:89:78:70:47:7c:ad:c5:d5:d6:69:e9:e2:ac:f4:
fd:ae:26:3f:ee:41:bb:ec:06:08:3d:69:c9:c5:ac:
1d:f5:15:2e:c9:da:ac:37:de:28:66:8c:0f:93:76:
f6:91:0a:ee:79:2d:f7:bb:b4:67:e7:99:40:33:4a:
d7:cf:4c:43:cb:42:2f:e3:89:70:01:f5:fc:f0:36:
c9:ad:51:5e:d0:8f:82:f2:db:7c:02:21:3d:45:20:
23:8c:bb:dd:c7:94:cb:9a:79:62:74:2a:70:a5:25:
5f:39:ce:41:a7:4d:67:36:7a:5e:e4:ec:68:da:09:
f5:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:20:47:D3:4D:E2:8C:F1:A8:AE:EB:9E:0F:EB:53:D2:BC:FD:CA:CE
X509v3 Authority Key Identifier:
keyid:A7:36:CF:F1:94:87:40:61:4D:03:21:E6:3B:84:03:EB:9A:B9:74:8D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COCHENTEK/pzbP8ZSHQGFNAyHmO4QD65q5dI0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/pzbP8ZSHQGFNAyHmO4QD65q5dI0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COCHENTEK/3SBH003ijPGoruueD-tT0rz9ys4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:bea0::/32
Signature Algorithm: sha256WithRSAEncryption
a0:24:4c:93:99:71:1e:13:8b:f0:a7:ac:97:62:80:5f:e7:d7:
62:59:18:90:0c:4f:be:00:1c:0b:e3:82:45:86:3a:b9:4b:dd:
65:fc:8e:e4:ce:98:bc:ee:fc:46:50:7c:85:65:70:ee:47:6f:
76:7c:8b:bd:29:82:45:9a:d3:76:c3:4a:b6:b6:20:79:20:0e:
ba:f5:c7:1d:f3:f4:75:e1:8a:9b:70:17:08:1c:73:fe:a9:1b:
cb:b4:d7:24:6b:1f:24:d3:5e:65:f0:a7:89:3c:15:c0:ac:5a:
50:94:98:50:4d:0e:fa:fc:2d:a0:9a:97:7a:48:a9:9b:a9:f9:
a7:65:43:b2:3e:e7:cc:b7:44:27:5d:ef:4f:3d:6b:fc:a4:ce:
78:46:ce:87:99:e1:ef:dd:05:ab:31:72:3f:b6:ed:30:b9:42:
bd:57:47:69:4c:ba:dd:dc:a5:52:cd:ae:a6:fc:5c:65:a0:39:
29:dd:5c:54:02:00:f0:12:0e:43:28:93:c8:be:c8:38:71:d7:
4b:44:39:b0:27:d1:b3:ff:2a:f6:de:d5:5a:8a:4f:38:52:88:
c5:f5:4a:c0:97:9c:5f:9d:b5:3b:6a:68:46:62:5f:f8:2f:48:
64:fa:49:fa:ee:6a:a8:14:b0:58:35:03:ee:3b:fd:dc:02:ce:
49:0e:2b:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 12:59:29 2025 by rpki-client