Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/FynrUDBMa5IyMmC0hsybYYiDehs.roa
File: FynrUDBMa5IyMmC0hsybYYiDehs.roa (raw, json)
Hash identifier: SG7sIP6YvmnFCiPDR9ohxwcQohhMki8WHr8CK0Gmnqc=
Subject key identifier: 17:29:EB:50:30:4C:6B:92:32:32:60:B4:86:CC:9B:61:88:83:7A:1B
Certificate issuer: /CN=ABED28FFCC040E36032C42615495562BCC6EF45C
Certificate serial: 06F9
Authority key identifier: AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/FynrUDBMa5IyMmC0hsybYYiDehs.roa
Signing time: Mon 10 Feb 2025 14:22:49 +0000
ROA not before: Mon 10 Feb 2025 14:22:49 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9678
IP address blocks: 2401:95c0:808::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1785 (0x6f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ABED28FFCC040E36032C42615495562BCC6EF45C
Validity
Not Before: Feb 10 14:22:49 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=1729EB50304C6B92323260B486CC9B6188837A1B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:09:f3:cc:f2:13:5b:97:4f:c5:e7:03:7e:c4:
1a:99:3b:ee:8b:8c:45:4b:81:f2:fb:62:3f:1c:28:
de:bc:85:40:9f:c6:12:5f:24:ad:55:cc:8f:00:e3:
60:0a:50:06:d6:e1:66:f2:dd:a6:f0:03:e0:67:32:
72:09:0e:08:ed:71:08:4e:29:5d:7f:fd:be:09:9d:
54:c8:ee:53:c6:de:9a:a7:aa:ba:14:a1:21:23:73:
fa:02:21:34:40:e5:99:36:28:76:18:33:de:e7:cf:
ba:7a:77:f9:e9:5b:0e:cd:e3:79:f5:54:67:18:47:
49:cd:7f:3b:22:d8:7c:6b:57:12:c2:d4:09:d6:61:
41:fd:41:3e:5f:db:c7:f1:e2:04:ef:c2:18:f9:d3:
78:21:d1:93:dc:9c:01:10:05:a7:2a:5a:34:a9:f7:
5c:79:c5:f0:9a:39:c8:af:8d:c2:c5:3b:d1:96:04:
34:24:59:c5:3b:5e:dc:dc:a3:d6:55:22:dc:25:32:
78:35:5a:0a:5b:d6:d3:5a:c0:d2:79:fc:7d:03:09:
1f:4c:35:33:15:6b:bc:b5:dd:95:20:3e:8c:2f:1c:
6e:1c:e9:c7:80:1c:81:c3:bb:51:25:20:b7:d8:d3:
0d:5b:54:4a:c7:aa:82:d5:07:dc:1e:7a:68:36:f4:
96:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:29:EB:50:30:4C:6B:92:32:32:60:B4:86:CC:9B:61:88:83:7A:1B
X509v3 Authority Key Identifier:
keyid:AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/FynrUDBMa5IyMmC0hsybYYiDehs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:95c0:808::/48
Signature Algorithm: sha256WithRSAEncryption
59:85:f0:24:72:8d:86:a0:9c:c0:9f:aa:42:30:8f:8b:cc:8f:
27:d0:f2:9d:89:69:59:a2:ad:00:b9:c2:0c:60:95:14:02:c3:
d2:f8:2a:fb:2c:40:2a:d0:2e:95:8a:6e:27:c8:11:36:cd:0f:
db:99:a1:d8:a4:47:1c:01:99:61:16:67:82:0f:92:34:60:55:
90:be:d9:1d:86:ca:d0:ba:36:cd:0b:2b:fa:9a:9c:3b:92:65:
cb:6e:29:1a:be:b2:aa:5b:92:89:3d:55:bd:6d:66:db:35:fe:
b0:9a:38:ef:c4:14:93:49:e3:a9:04:e2:ee:a1:a7:17:6a:bf:
5a:e8:17:3a:2d:0e:1b:5a:6f:e4:db:c7:73:c1:79:0c:ef:d1:
21:6a:2c:54:8a:fc:b5:d4:a0:3c:c6:ba:2f:cf:f5:9a:44:1e:
57:65:f0:17:56:ce:dd:46:8d:bb:35:9f:f7:c6:ce:e3:8f:7a:
55:12:27:dc:e3:4f:a4:48:b3:ee:af:d7:99:09:be:20:c8:8d:
eb:ee:22:73:7c:f5:13:2f:47:7d:0c:a7:90:ff:09:ab:4e:4e:
2b:6d:2a:83:89:56:ec:53:da:0c:2d:4f:7e:b4:63:55:5c:d1:
16:df:da:f8:fc:7b:b1:f1:e7:6d:e7:f8:0a:e4:7a:3d:14:9d:
88:16:4a:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:13:37 2025 by rpki-client