Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/mpXDLcyisTLQMcAObL73NsSHVN4.roa
File: mpXDLcyisTLQMcAObL73NsSHVN4.roa (raw, json)
Hash identifier: mEaRWJw6NVq/azIhZ700NW6dAUvGZpNQjq8ndL4RK5M=
Subject key identifier: 9A:95:C3:2D:CC:A2:B1:32:D0:31:C0:0E:6C:BE:F7:36:C4:87:54:DE
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 117A
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/mpXDLcyisTLQMcAObL73NsSHVN4.roa
Signing time: Mon 10 Feb 2025 14:27:23 +0000
ROA not before: Mon 10 Feb 2025 14:27:23 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17709
IP address blocks: 2404:0:1000::/40 maxlen: 56
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4474 (0x117a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Feb 10 14:27:23 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=9A95C32DCCA2B132D031C00E6CBEF736C48754DE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:03:2e:56:07:0d:33:e9:e0:17:10:4c:fe:62:
d0:c7:24:c4:9f:28:4d:11:11:2b:56:51:64:b9:3c:
11:2c:f5:38:36:cf:75:54:c7:a3:fd:fe:17:ab:d3:
7f:cc:53:4a:fc:bf:3a:b2:ab:75:d8:2d:1b:2b:60:
cc:31:f3:0d:b7:fb:fb:a7:2d:42:41:29:96:2e:13:
a1:6f:65:66:6c:24:10:c7:9b:7c:b3:82:4c:d1:8a:
81:b2:18:d5:61:63:54:51:cb:ba:55:31:7e:56:32:
f3:64:c4:74:7b:9f:36:55:b4:19:64:c5:83:4b:f2:
cd:ab:30:d9:5f:2a:87:a5:d4:35:a5:c9:6f:b8:fd:
ff:55:00:5c:af:c5:f4:c0:da:36:44:0a:1a:ab:ff:
e4:42:2f:f4:df:82:7f:35:a7:34:d0:63:97:4d:50:
1f:7a:00:76:23:f5:15:f9:89:6f:8b:d8:dd:75:df:
0f:17:7b:fd:06:54:f0:44:0c:8a:76:0e:10:21:5e:
1c:e7:86:bc:e4:8e:c4:78:25:00:79:c8:ad:b6:23:
d4:61:d0:32:f0:84:44:cb:08:13:1e:5e:58:75:96:
97:5f:8e:1f:8a:b9:28:33:58:46:ed:8f:80:a5:31:
01:5d:58:08:43:3c:7f:22:af:35:c2:a4:ec:5f:76:
28:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:95:C3:2D:CC:A2:B1:32:D0:31:C0:0E:6C:BE:F7:36:C4:87:54:DE
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/mpXDLcyisTLQMcAObL73NsSHVN4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:0:1000::/40
Signature Algorithm: sha256WithRSAEncryption
55:05:48:00:a2:44:34:41:6e:32:d7:d5:b7:b3:1c:96:f3:4d:
40:2a:01:ee:c1:b0:6d:4f:7c:e1:11:81:d4:48:d1:11:0d:63:
50:63:d0:19:36:35:61:15:f6:8a:bc:31:dd:1f:91:59:96:e6:
51:39:72:f9:4e:61:2a:09:7a:2d:f2:01:87:7e:c1:2c:3b:5c:
f3:7e:00:7c:2d:f6:50:cb:d3:87:b6:af:1e:84:31:f8:32:58:
1d:cc:0d:dc:8c:84:99:ca:e1:15:c7:43:95:51:a0:7e:4c:8c:
6b:92:34:48:c2:b3:bd:4f:19:0d:6a:ba:8b:f9:cd:d1:9f:f3:
d2:be:08:3a:2f:74:83:b0:15:2a:a7:82:e0:9b:ec:f5:55:de:
7e:22:8c:0e:59:9c:5f:f0:38:5b:aa:c4:8e:db:64:6a:87:19:
2d:2c:59:51:cf:13:fc:75:26:94:d2:66:25:68:12:d2:ee:ea:
5f:33:81:5b:17:62:46:a2:8d:cf:e8:63:cf:f2:3c:f1:be:17:
08:54:3a:e2:58:21:d4:05:42:3e:bd:76:ac:39:4e:fb:0d:04:
0b:db:36:ff:54:24:f9:84:05:52:26:a1:61:10:91:62:bc:f3:
f9:73:9d:fe:80:c5:b9:82:19:eb:4f:c2:0d:05:c1:fa:62:91:
92:00:42:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 20:51:48 2025 by rpki-client