Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/e9i0JWFnQsx6KJXwFTaWN9yJMY4.roa
File: e9i0JWFnQsx6KJXwFTaWN9yJMY4.roa (raw, json)
Hash identifier: q9O5wyceLR2RtxXgJNqnmFlEYYRBbqI5GAHrL23cm9s=
Subject key identifier: 7B:D8:B4:25:61:67:42:CC:7A:28:95:F0:15:36:96:37:DC:89:31:8E
Certificate issuer: /CN=CAD527022C8CD07568EC9FC82A1CE0DDE5B2C4AC
Certificate serial: 08E5
Authority key identifier: CA:D5:27:02:2C:8C:D0:75:68:EC:9F:C8:2A:1C:E0:DD:E5:B2:C4:AC
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ytUnAiyM0HVo7J_IKhzg3eWyxKw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/e9i0JWFnQsx6KJXwFTaWN9yJMY4.roa
Signing time: Mon 10 Feb 2025 14:00:48 +0000
ROA not before: Mon 10 Feb 2025 14:00:48 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9678
IP address blocks: 2405:fbc0:111::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2277 (0x8e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CAD527022C8CD07568EC9FC82A1CE0DDE5B2C4AC
Validity
Not Before: Feb 10 14:00:48 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=7BD8B425616742CC7A2895F015369637DC89318E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:5f:a7:c5:8c:f9:98:1a:66:49:bc:50:e2:18:
19:7f:ed:fd:77:9e:70:40:d1:ea:de:e5:23:21:22:
a6:ea:41:1b:cb:f7:db:f4:ad:4a:69:fa:74:ff:0d:
5b:55:c0:7f:8e:35:98:e8:66:ab:1d:1a:46:a7:58:
27:10:02:b9:ff:43:49:09:be:a7:c0:a8:b1:0a:3d:
4d:23:5e:d3:53:2f:94:a3:f8:67:63:10:54:da:fd:
aa:e6:8b:5d:3f:65:1b:3f:74:fe:e2:3c:a5:c8:d3:
5b:0d:e9:a6:24:44:aa:1b:b1:ec:d1:f1:05:f5:7e:
d6:de:59:76:3f:da:85:69:63:b9:b3:93:23:cd:a2:
df:3c:06:e7:83:38:c5:2b:f4:e0:7a:1a:03:7c:0e:
df:8c:60:d3:06:ef:f8:d8:e3:65:44:04:d4:93:90:
6b:82:cb:0d:af:b7:19:19:f7:3f:92:d8:b6:9e:06:
d7:ba:45:f0:5a:d3:97:ad:8a:90:35:a5:e1:44:cd:
b1:70:bc:24:f8:82:a9:26:bf:a1:18:c5:2b:4a:48:
64:2e:93:75:ff:e4:dd:ee:1d:bf:5f:c7:6c:25:ec:
23:f8:e7:48:7f:01:15:c2:3c:21:ad:24:8c:d3:53:
a5:e7:9f:e7:a6:77:9c:b3:f9:d9:9c:d2:fe:83:07:
9f:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:D8:B4:25:61:67:42:CC:7A:28:95:F0:15:36:96:37:DC:89:31:8E
X509v3 Authority Key Identifier:
keyid:CA:D5:27:02:2C:8C:D0:75:68:EC:9F:C8:2A:1C:E0:DD:E5:B2:C4:AC
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/ytUnAiyM0HVo7J_IKhzg3eWyxKw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ytUnAiyM0HVo7J_IKhzg3eWyxKw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/e9i0JWFnQsx6KJXwFTaWN9yJMY4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2405:fbc0:111::/48
Signature Algorithm: sha256WithRSAEncryption
3d:d6:99:d7:b7:72:b2:65:19:43:bf:42:6f:f2:ee:60:00:36:
07:41:53:6c:21:67:2a:f4:9c:15:94:0a:dd:25:23:c0:34:f8:
b0:1e:ff:44:ce:9d:6d:68:5c:83:c0:2d:65:f3:9c:64:e2:47:
37:9a:cc:75:df:88:a0:83:3d:f5:4a:79:c5:7e:27:18:ef:6e:
c9:7f:ea:cd:62:51:82:77:5f:d2:f0:16:34:33:eb:51:75:e9:
5d:33:ab:2e:28:20:26:53:6a:be:8f:00:2f:11:d5:19:36:91:
db:e6:c5:b2:90:c4:dd:ce:cc:b5:f3:f7:4a:a6:8b:8e:c6:59:
02:d9:15:ec:51:b9:df:d7:89:e4:6f:b9:e8:57:a2:35:3a:bd:
15:f3:c4:a7:12:3f:68:78:65:a0:eb:b9:5a:db:c0:0c:d7:a6:
0d:12:45:b7:47:38:50:27:69:09:6e:cb:9c:15:5f:b4:a7:0f:
e5:78:3e:1e:0e:ef:2f:62:8e:39:fc:a8:aa:46:2c:81:7b:eb:
87:96:1a:11:52:75:bb:8d:74:56:fc:d9:62:86:c6:e3:0c:31:
be:84:70:d9:db:8d:a3:ca:c2:c1:ec:18:80:9e:48:b0:e8:f3:
8a:8e:e7:5c:4f:a2:ef:1f:f3:f0:d7:e4:a0:79:b3:b3:19:3d:
43:b8:eb:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:30:01 2025 by rpki-client