Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNTT/KHd3D4uvbVKw8cLfowcRgleOiFM.roa
File: KHd3D4uvbVKw8cLfowcRgleOiFM.roa (raw, json)
Hash identifier: 2hZKzXOQRdpOI/wWesNdcwQs3aXS18lFkTdNSq0ZpQc=
Subject key identifier: 28:77:77:0F:8B:AF:6D:52:B0:F1:C2:DF:A3:07:11:82:57:8E:88:53
Certificate issuer: /CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214
Certificate serial: 0C70
Authority key identifier: 9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/KHd3D4uvbVKw8cLfowcRgleOiFM.roa
Signing time: Mon 26 Aug 2024 05:32:39 +0000
ROA not before: Mon 26 Aug 2024 05:32:39 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 2914
IP address blocks: 2001:d40::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3184 (0xc70)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214
Validity
Not Before: Aug 26 05:32:39 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=2877770F8BAF6D52B0F1C2DFA3071182578E8853
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ef:ca:d6:1b:24:2d:ba:35:8f:3e:88:0f:21:
f7:4f:9b:60:ec:52:f5:98:f5:23:49:5f:ac:a8:c4:
d9:51:f8:a5:8e:9e:30:60:46:58:aa:1b:bc:46:c9:
25:3d:11:85:10:58:34:08:83:32:3f:20:18:d2:f4:
25:21:f7:67:c5:d3:ef:1b:f9:d1:ac:33:6f:86:60:
36:9b:20:0a:c8:51:10:50:cc:c2:9d:08:27:51:54:
eb:e1:c6:35:6d:ce:cd:db:72:72:f9:94:83:a9:fe:
ff:23:e2:1e:1a:91:b1:a7:ed:ee:7d:c8:2d:2d:32:
d5:bd:7e:57:30:8c:0a:2a:79:ee:3e:7e:85:a6:47:
74:84:c8:00:f6:3c:b8:2e:24:2a:c0:98:01:8b:44:
78:49:0d:7f:77:75:ea:3d:0d:72:45:32:30:00:80:
1e:09:21:e9:76:6e:22:57:7b:58:31:80:e9:10:2d:
58:92:e0:46:f1:c9:f3:c7:15:d4:dc:6e:56:62:ce:
0a:3f:b3:90:86:c5:cc:9b:8c:1d:05:27:18:d9:31:
58:b4:d4:f7:2c:c1:79:28:e8:32:59:f4:06:20:07:
93:d2:1d:b3:ab:12:7d:ff:e9:e3:d3:6b:3e:29:ec:
86:5d:3f:e3:fe:bf:62:f9:f1:4d:23:72:95:55:92:
03:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:77:77:0F:8B:AF:6D:52:B0:F1:C2:DF:A3:07:11:82:57:8E:88:53
X509v3 Authority Key Identifier:
keyid:9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/KHd3D4uvbVKw8cLfowcRgleOiFM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:d40::/32
Signature Algorithm: sha256WithRSAEncryption
c6:24:60:ae:e9:b9:8b:cd:61:48:f0:8b:15:f1:cb:dc:41:84:
f3:29:85:5f:82:ec:27:74:cc:d4:3d:04:9f:7d:89:25:e1:80:
13:88:16:4c:a2:7b:73:c4:e3:61:e4:ae:f4:60:c1:77:fe:59:
28:c5:c2:26:58:5b:c0:e0:e6:00:02:61:61:8e:2f:59:ac:f0:
be:6c:78:24:df:a1:e3:2f:d4:ae:85:0d:a1:7d:67:ce:01:55:
a5:e8:aa:d4:5b:ed:c9:76:b1:d0:04:17:d1:51:59:50:39:f9:
c1:ec:f5:0b:06:d0:0d:9b:1f:68:7a:06:89:41:9e:c4:12:03:
3d:dc:8b:31:b0:94:d4:d7:56:b7:65:f3:b1:de:d3:65:93:93:
cb:94:88:8b:a7:00:2f:ef:a4:7e:de:0c:7e:5c:da:17:e0:96:
7a:82:f7:86:13:ce:49:9c:02:3f:c4:b9:e3:05:0b:f9:08:9f:
fd:48:0f:ab:6f:b1:7e:eb:06:fb:22:32:22:70:eb:16:9d:2d:
48:93:56:90:ec:f7:dd:44:49:b2:e9:16:22:c9:c2:32:fc:c4:
78:ce:e3:d9:ef:7e:38:81:9d:90:57:5b:4b:d8:a6:2d:94:01:
82:43:8a:98:5b:e7:85:38:ba:78:56:52:51:96:b4:3b:d3:10:
fc:95:6b:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 07:51:19 2025 by rpki-client