Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/pcDQi4G1HT9nMyDGg8Vo6NVuh9o.roa
File: pcDQi4G1HT9nMyDGg8Vo6NVuh9o.roa (raw, json)
Hash identifier: uJWDTZLuvmbyqiP7q62+xuY8A6gJbtvJl/F3pZmPiYQ=
Subject key identifier: A5:C0:D0:8B:81:B5:1D:3F:67:33:20:C6:83:C5:68:E8:D5:6E:87:DA
Certificate issuer: /CN=ABED28FFCC040E36032C42615495562BCC6EF45C
Certificate serial: 06FC
Authority key identifier: AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/pcDQi4G1HT9nMyDGg8Vo6NVuh9o.roa
Signing time: Mon 10 Feb 2025 14:22:49 +0000
ROA not before: Mon 10 Feb 2025 14:22:49 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9678
IP address blocks: 2401:95c0::/36 maxlen: 36
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1788 (0x6fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ABED28FFCC040E36032C42615495562BCC6EF45C
Validity
Not Before: Feb 10 14:22:49 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=A5C0D08B81B51D3F673320C683C568E8D56E87DA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:8d:e8:bf:85:52:79:be:3c:6d:42:c2:ea:b7:
34:b6:f1:9a:da:65:0f:d0:c5:14:e3:ce:11:37:03:
75:33:20:d7:bb:d7:bb:cb:46:08:93:01:8f:8e:21:
07:99:f2:cc:cd:9e:83:bc:db:d1:f5:73:8c:23:f4:
8e:c6:50:b0:11:16:94:be:f3:e3:2d:25:5c:ef:98:
cd:c4:a0:83:ab:73:26:12:4a:9e:b1:61:36:cc:4e:
3e:b3:82:03:5e:7d:9f:2a:3b:d5:f9:3f:34:69:31:
1d:0e:82:95:d4:85:62:fb:62:2f:63:d5:a1:55:b2:
33:7c:8f:25:92:f9:36:59:8d:f5:c1:ef:db:27:11:
e7:fd:bf:ce:1f:32:30:e4:25:00:dc:b3:a0:62:04:
a8:66:d6:34:9a:26:17:84:17:15:8c:27:7f:30:ad:
8f:fb:b5:37:9a:65:bd:e8:22:df:b7:b5:8d:87:28:
f4:cb:ee:cf:63:c4:50:34:d0:f0:ad:52:c5:82:a1:
00:fa:23:44:21:9a:25:a6:e6:78:2a:27:62:37:a4:
9a:56:8b:c2:40:d8:0c:65:fd:59:11:d1:62:24:8c:
89:eb:0c:35:2b:3b:9c:e8:95:c4:b9:bb:cf:07:8b:
ce:88:d4:4c:aa:51:81:1e:46:de:d6:24:b9:d7:aa:
02:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:C0:D0:8B:81:B5:1D:3F:67:33:20:C6:83:C5:68:E8:D5:6E:87:DA
X509v3 Authority Key Identifier:
keyid:AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/pcDQi4G1HT9nMyDGg8Vo6NVuh9o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:95c0::/36
Signature Algorithm: sha256WithRSAEncryption
d0:36:a0:3d:93:a9:c8:c2:dc:ac:44:a7:f9:f7:22:dd:46:5b:
bf:3b:26:57:9b:18:39:de:e3:f3:b3:6a:5a:c8:07:91:9f:b5:
8f:58:f3:d1:71:d1:b5:05:f9:db:2c:29:1b:f5:bb:c2:37:f1:
1c:95:08:45:c7:e1:14:06:85:d3:58:41:64:ca:0c:93:eb:b3:
05:a8:2e:67:d7:73:e3:ba:67:10:90:f0:4f:29:db:c1:b5:c4:
f7:22:75:99:af:6d:d8:88:81:59:3c:7d:8a:71:9a:ec:54:1f:
76:ad:d1:19:c9:4e:75:4d:36:95:35:2e:31:75:d7:06:91:46:
29:99:26:cd:95:e1:19:d9:39:4e:63:b7:5f:4a:18:ea:e5:e2:
f9:47:0c:8c:20:bf:3e:9d:20:7d:24:1f:57:c5:8e:65:28:c8:
9d:66:3a:27:2c:4b:7f:9d:a1:72:a8:19:5d:db:10:62:06:2c:
8e:b2:d2:37:d9:09:b5:bc:a9:45:96:57:26:14:b0:6a:37:fc:
4e:cb:8a:61:8e:cb:1d:97:2f:24:98:4e:f4:0a:d6:d8:40:0a:
20:08:fe:da:fd:8e:09:d7:30:37:15:58:8f:5c:38:bc:9b:35:
3f:82:5d:8b:eb:33:eb:1e:93:5a:05:be:59:5e:76:5d:14:ae:
d0:3e:41:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:13:49 2025 by rpki-client