Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HOSTCOMTW/x-IqHT8mO50FTK8PIVhOiRVyPpI.roa
File: x-IqHT8mO50FTK8PIVhOiRVyPpI.roa (raw, json)
Hash identifier: abw+GqPPULki4YnUj/G6JuKIEqxzRwc5BukKkWSpoos=
Subject key identifier: C7:E2:2A:1D:3F:26:3B:9D:05:4C:AF:0F:21:58:4E:89:15:72:3E:92
Certificate issuer: /CN=4E609BA74186D0B0E3A1A9C010DA1DF0559A1982
Certificate serial: 0A2C
Authority key identifier: 4E:60:9B:A7:41:86:D0:B0:E3:A1:A9:C0:10:DA:1D:F0:55:9A:19:82
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TmCbp0GG0LDjoanAENod8FWaGYI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTCOMTW/x-IqHT8mO50FTK8PIVhOiRVyPpI.roa
Signing time: Mon 14 Nov 2022 23:41:56 +0000
ROA not before: Mon 14 Nov 2022 23:41:56 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131149
IP address blocks: 2403:81c0::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2604 (0xa2c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4E609BA74186D0B0E3A1A9C010DA1DF0559A1982
Validity
Not Before: Nov 14 23:41:56 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=C7E22A1D3F263B9D054CAF0F21584E8915723E92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:cb:32:e5:6b:ab:95:e6:54:af:4f:16:29:c5:
4f:74:cd:14:21:98:dc:b0:22:00:d3:c4:e3:f9:5e:
7a:45:6a:a3:94:a0:0f:e8:9c:8b:97:fa:e3:5b:f8:
4e:77:eb:b3:bf:9c:0a:7c:07:15:fc:c5:1d:6c:9f:
01:79:6b:8d:b1:f9:cb:5f:f4:b4:c2:b3:d0:c1:41:
fd:d2:17:db:d6:6e:14:7a:74:a3:f3:52:c8:c3:10:
92:84:b6:60:e3:dc:be:98:5a:fc:1d:fb:84:e6:25:
0b:eb:22:90:06:7d:c5:95:3b:a1:2d:1c:a0:d3:4c:
1b:ae:a0:04:90:24:10:08:91:5a:61:a1:23:be:4b:
ee:23:24:3b:0e:e2:7e:d8:47:44:51:f8:a8:c7:77:
ae:04:89:b5:0a:d8:0c:de:8c:94:d8:ab:3a:48:6a:
d4:b5:1e:89:8c:7a:40:e2:57:73:0b:4d:ae:42:0d:
ac:ca:74:ed:11:08:da:93:c6:6a:c2:99:18:3d:48:
a3:e4:78:dd:14:0a:50:87:10:3a:38:46:c9:64:68:
00:97:ab:4d:40:ef:4b:67:5c:55:ef:20:6b:91:f3:
75:d3:21:b0:f2:d0:90:d9:2f:5f:94:b2:72:7a:0c:
f2:98:fd:09:78:41:88:18:70:5a:f8:59:9f:e8:8e:
f6:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:E2:2A:1D:3F:26:3B:9D:05:4C:AF:0F:21:58:4E:89:15:72:3E:92
X509v3 Authority Key Identifier:
keyid:4E:60:9B:A7:41:86:D0:B0:E3:A1:A9:C0:10:DA:1D:F0:55:9A:19:82
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTCOMTW/TmCbp0GG0LDjoanAENod8FWaGYI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TmCbp0GG0LDjoanAENod8FWaGYI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTCOMTW/x-IqHT8mO50FTK8PIVhOiRVyPpI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:81c0::/32
Signature Algorithm: sha256WithRSAEncryption
28:73:e0:9b:d0:89:62:85:ef:85:e6:95:8b:0b:a9:e9:98:46:
ff:63:32:89:98:f4:08:d9:94:97:b1:96:c3:e2:b0:2c:d0:cc:
85:79:33:8d:d4:39:32:cb:4c:85:de:c5:db:c4:50:75:4d:5e:
f4:11:73:a9:4c:38:ab:34:2f:ce:aa:7c:83:1e:8b:a5:4e:0b:
65:0a:f9:58:c0:aa:78:51:0c:1d:0e:e5:b2:5a:44:71:60:74:
6b:84:55:9e:e5:41:80:f2:73:cd:9b:28:6d:2c:14:f8:10:ea:
bd:af:5a:f9:9c:5b:c6:85:2a:73:88:f0:e3:ae:c8:d0:4f:8e:
5c:2d:e8:32:d0:ec:68:64:88:a3:fd:6a:7a:c0:d5:7a:8a:fa:
ae:bd:63:f0:f6:53:f7:a7:14:5d:46:03:bf:94:55:b8:31:fd:
f9:50:30:2a:75:76:f2:bf:43:53:d7:5c:79:d2:39:36:06:4c:
1a:64:6c:ab:28:f5:c1:41:e2:d0:0f:5b:bb:7d:c9:73:7b:9a:
0b:50:93:c6:a5:68:a6:31:a5:27:9a:33:aa:24:3b:4b:a4:d5:
57:fa:48:7d:6f:ab:41:19:6d:c0:26:b8:f5:5c:1a:c5:1d:0c:
ef:89:99:98:76:96:46:77:7c:e9:43:87:c3:33:5f:2c:ae:dd:
13:b9:19:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org