Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/U11X0eGZ1CnO1LbwSYjyPzZKq-M.roa
File: U11X0eGZ1CnO1LbwSYjyPzZKq-M.roa (raw, json)
Hash identifier: o/JvUiixXU7025/UsYD/+jnhtxqBUV+FXnGWmJBOwDY=
Subject key identifier: 53:5D:57:D1:E1:99:D4:29:CE:D4:B6:F0:49:88:F2:3F:36:4A:AB:E3
Certificate issuer: /CN=CAD527022C8CD07568EC9FC82A1CE0DDE5B2C4AC
Certificate serial: 08B7
Authority key identifier: CA:D5:27:02:2C:8C:D0:75:68:EC:9F:C8:2A:1C:E0:DD:E5:B2:C4:AC
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ytUnAiyM0HVo7J_IKhzg3eWyxKw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/U11X0eGZ1CnO1LbwSYjyPzZKq-M.roa
Signing time: Wed 11 Dec 2024 06:43:08 +0000
ROA not before: Wed 11 Dec 2024 06:43:08 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9678
IP address blocks: 2405:fbc0:111::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2231 (0x8b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CAD527022C8CD07568EC9FC82A1CE0DDE5B2C4AC
Validity
Not Before: Dec 11 06:43:08 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=535D57D1E199D429CED4B6F04988F23F364AABE3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:a8:cb:d6:76:0c:ab:e3:14:fb:c7:f8:e9:5b:
bb:f2:0e:47:83:8a:77:a9:48:89:7c:72:da:44:c6:
be:60:0d:90:1a:2b:eb:59:d7:2c:6f:10:17:ff:68:
ca:9c:12:24:8d:0c:0c:c2:ea:2d:0e:3a:72:20:25:
c8:54:5b:0e:19:7e:c3:31:6b:34:e3:79:b0:70:97:
69:d0:e5:4f:08:c2:8f:1c:8e:21:8c:3e:39:61:c6:
b0:3e:f4:be:04:1d:f0:9e:7a:e9:6e:6d:aa:76:7e:
9d:be:26:59:4c:bf:f8:24:3d:c1:34:ab:56:20:bb:
1e:8f:ba:fd:ab:9a:92:ca:2e:e2:25:b5:d6:a8:09:
73:fa:ce:cc:5a:10:f3:7d:4e:10:c6:2f:43:41:be:
89:b9:2a:7f:4a:40:2f:d8:ec:af:4a:d4:ed:a8:03:
ad:d1:4b:99:54:cb:98:27:3e:33:18:18:da:65:c5:
60:54:c5:18:f2:7d:a2:99:80:b1:7b:53:db:7d:47:
3b:cd:9a:35:42:29:95:ff:18:b8:9d:47:14:dc:54:
e2:b0:17:40:64:d9:d6:d1:cc:8c:6c:3d:ce:7b:7e:
66:aa:3f:d2:7a:63:86:54:92:cb:36:82:09:60:66:
80:59:a2:2a:05:2f:4f:b5:25:b9:5f:1e:33:f1:f8:
02:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:5D:57:D1:E1:99:D4:29:CE:D4:B6:F0:49:88:F2:3F:36:4A:AB:E3
X509v3 Authority Key Identifier:
keyid:CA:D5:27:02:2C:8C:D0:75:68:EC:9F:C8:2A:1C:E0:DD:E5:B2:C4:AC
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/ytUnAiyM0HVo7J_IKhzg3eWyxKw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ytUnAiyM0HVo7J_IKhzg3eWyxKw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/U11X0eGZ1CnO1LbwSYjyPzZKq-M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2405:fbc0:111::/48
Signature Algorithm: sha256WithRSAEncryption
01:9d:4f:a0:2d:9c:fc:28:70:40:61:a2:bd:33:ee:00:6a:05:
07:b6:ae:f7:58:4f:d6:dd:e7:3a:57:c4:75:ae:fa:c9:5a:6b:
77:ce:20:15:16:9d:01:6a:fd:ff:52:7f:9b:d5:68:e2:c5:a2:
43:77:13:d8:da:5d:b2:43:be:a7:94:21:dc:24:36:08:0e:9d:
ea:24:32:45:a1:96:a8:c7:14:fa:ad:8b:78:24:23:82:a5:75:
57:98:30:90:20:99:65:df:2c:c8:57:56:3c:2e:4a:9c:f0:91:
8b:af:97:5f:ca:3f:12:2f:8e:c1:1e:1a:ad:cf:9c:ae:3b:b9:
5d:91:4d:c6:17:b8:4f:4f:0c:1e:f0:e4:d7:5e:2f:d9:7b:92:
84:ae:db:95:4e:be:67:93:eb:24:5a:db:4a:6d:6f:48:68:a2:
06:55:ce:76:61:47:f1:2f:45:43:49:3d:63:8b:6a:c0:e2:5e:
3c:08:b5:9c:5a:67:f3:4a:d0:c5:81:bd:9b:08:2d:6c:c7:4b:
8e:20:73:00:b5:64:14:61:58:e4:f3:92:3b:e3:4e:73:f8:aa:
89:a6:45:c1:11:49:e1:8b:3c:5f:24:5e:64:ae:b8:31:7a:70:
ae:e5:ac:5e:01:f2:9d:1a:7e:0f:60:06:0f:bb:bc:eb:05:52:
5e:24:86:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 01:45:35 2025 by rpki-client