Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/bz3NPlYe7TXeKY_CcKg_FJSVUfA.roa
File: bz3NPlYe7TXeKY_CcKg_FJSVUfA.roa (raw, json)
Hash identifier: eX4SvEF6xGClG364laNbt1aCS32cSif15k0yOj4E/Ec=
Subject key identifier: 6F:3D:CD:3E:56:1E:ED:35:DE:29:8F:C2:70:A8:3F:14:94:95:51:F0
Certificate issuer: /CN=CAD527022C8CD07568EC9FC82A1CE0DDE5B2C4AC
Certificate serial: 08B9
Authority key identifier: CA:D5:27:02:2C:8C:D0:75:68:EC:9F:C8:2A:1C:E0:DD:E5:B2:C4:AC
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ytUnAiyM0HVo7J_IKhzg3eWyxKw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/bz3NPlYe7TXeKY_CcKg_FJSVUfA.roa
Signing time: Wed 11 Dec 2024 06:43:51 +0000
ROA not before: Wed 11 Dec 2024 06:43:51 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9678
IP address blocks: 2405:fbc0:112::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2233 (0x8b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CAD527022C8CD07568EC9FC82A1CE0DDE5B2C4AC
Validity
Not Before: Dec 11 06:43:51 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=6F3DCD3E561EED35DE298FC270A83F14949551F0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:9e:af:cf:64:e2:6c:90:0d:cd:6a:e9:5b:c7:
f1:89:3e:99:29:46:79:d2:c8:8e:db:c0:4e:a1:49:
1b:e7:ce:9c:5c:44:3e:fe:61:3a:ed:c1:38:2e:01:
97:d8:79:bb:e2:ef:8d:1f:0d:f3:67:51:7c:08:c1:
5b:21:83:e7:4c:45:cd:ab:8a:56:48:00:86:99:16:
2e:4a:fb:f6:7e:92:02:28:73:43:97:cb:ba:85:02:
63:6d:f8:4e:51:19:60:6e:79:92:5e:f5:97:09:21:
fe:6f:eb:00:55:f0:e6:f2:b1:c2:13:f8:6f:70:33:
73:1e:de:bb:31:40:24:ab:85:a8:2d:ef:e3:ff:5a:
73:79:d5:dc:ec:10:3d:a3:50:ea:03:95:85:0b:fa:
06:4d:65:ba:25:d2:e9:97:12:77:e6:4b:de:aa:5d:
6e:73:d6:52:45:f2:90:38:c9:58:9c:af:6f:88:02:
3f:e5:90:5c:67:03:13:12:00:ab:78:b0:89:53:f5:
b1:2e:30:2c:36:e9:18:9a:f8:88:c1:7c:16:a0:db:
dc:90:d2:c8:2e:e0:ec:30:26:6d:9e:6d:86:72:3d:
16:c6:36:91:08:8d:97:57:8b:cf:c9:6c:20:08:69:
ea:f6:0c:26:56:77:71:e1:df:e3:7a:da:24:ce:7b:
a4:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:3D:CD:3E:56:1E:ED:35:DE:29:8F:C2:70:A8:3F:14:94:95:51:F0
X509v3 Authority Key Identifier:
keyid:CA:D5:27:02:2C:8C:D0:75:68:EC:9F:C8:2A:1C:E0:DD:E5:B2:C4:AC
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/ytUnAiyM0HVo7J_IKhzg3eWyxKw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ytUnAiyM0HVo7J_IKhzg3eWyxKw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/bz3NPlYe7TXeKY_CcKg_FJSVUfA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2405:fbc0:112::/48
Signature Algorithm: sha256WithRSAEncryption
08:92:26:da:fc:5b:30:3a:34:8c:80:07:e5:77:b4:a5:2f:48:
33:78:d1:2c:56:c3:af:39:78:d7:04:5f:99:aa:93:6a:2c:30:
63:7e:02:9f:d2:48:b3:a8:18:a4:d9:06:fb:c1:02:50:b5:6c:
8c:49:86:17:95:29:f7:fc:e7:fa:9e:ff:ec:8a:92:25:fa:ce:
60:1d:45:73:81:ec:09:dc:00:e1:ca:65:01:9c:71:d6:ba:cc:
b9:6f:c0:f9:26:d8:18:b0:7d:84:84:a2:77:95:9e:d6:ca:e2:
81:ef:f0:a1:57:35:90:c5:1d:36:23:38:b8:64:d4:1a:4e:4e:
d4:82:f4:0d:e3:7d:8c:79:97:25:f0:bc:a7:ce:5b:8e:9e:cb:
0c:d7:57:a8:ed:2e:62:17:c5:eb:81:4b:b7:8d:c7:b4:cb:43:
2f:dd:3b:44:86:62:1e:05:14:44:d4:94:e2:97:f2:29:e7:33:
44:ad:7f:97:c5:50:36:7e:bc:ca:99:a2:6d:e8:fd:f1:c8:41:
fc:fb:cc:82:a4:9d:8d:a8:88:c4:6b:7b:10:15:77:68:ed:28:
c1:ad:31:48:4b:66:91:83:36:97:5e:26:41:d3:b0:5c:f6:05:
98:6d:cd:2f:90:d2:f3:2a:af:37:bc:fe:7b:7b:ea:3d:d6:1c:
3b:4f:fb:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 01:32:59 2025 by rpki-client