Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APNT/QLAPFuOrTT5-3pKdttUC734KZlo.roa
File: QLAPFuOrTT5-3pKdttUC734KZlo.roa (raw, json)
Hash identifier: tKuzlQDgDa2Tt93JStoBb3cXyBEPmWXJ8oe3yJwHyDg=
Subject key identifier: 40:B0:0F:16:E3:AB:4D:3E:7E:DE:92:9D:B6:D5:02:EF:7E:0A:66:5A
Certificate issuer: /CN=C2528D8C5B676FD9A24DFDA7E9217457B7310263
Certificate serial: 1143
Authority key identifier: C2:52:8D:8C:5B:67:6F:D9:A2:4D:FD:A7:E9:21:74:57:B7:31:02:63
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wlKNjFtnb9miTf2n6SF0V7cxAmM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APNT/QLAPFuOrTT5-3pKdttUC734KZlo.roa
Signing time: Fri 12 May 2023 16:03:36 +0000
ROA not before: Fri 12 May 2023 16:03:36 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 55789
IP address blocks: 2403:b0c0::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4419 (0x1143)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C2528D8C5B676FD9A24DFDA7E9217457B7310263
Validity
Not Before: May 12 16:03:36 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=40B00F16E3AB4D3E7EDE929DB6D502EF7E0A665A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:3b:f5:64:f1:ed:9c:e2:83:69:7a:a1:93:b3:
46:1f:37:f3:9c:7f:f4:f3:70:06:00:a3:c9:c8:9a:
e5:db:75:41:d0:93:50:c0:ad:ee:9a:e0:01:2f:ec:
1b:23:b7:14:7f:81:95:13:d3:2d:fe:79:05:a4:12:
0d:c1:44:e0:0f:de:a3:22:05:f0:71:2c:6f:b8:d5:
8e:76:81:71:71:a8:c8:fa:74:7d:a4:07:34:f1:5e:
b5:68:85:14:80:61:4d:3c:3a:eb:b7:ca:e2:10:4b:
84:bf:6c:08:24:35:07:e4:18:1e:aa:59:00:c1:74:
4c:ea:3a:d7:70:07:94:bf:dc:6c:05:98:33:14:8e:
50:89:bc:58:b8:ad:71:01:c0:02:61:d4:74:8c:c4:
e0:87:74:8f:f4:05:08:af:bb:9f:90:20:72:fb:7a:
4e:c4:62:62:07:fb:4f:84:a4:09:47:8e:3e:c0:6b:
94:71:f6:b8:7a:e6:23:b7:97:f5:86:47:e9:1a:4b:
fe:69:9f:81:66:74:a9:2f:c2:b3:dc:cc:2a:0e:d5:
5d:79:03:ae:28:ab:62:3d:55:8d:e1:96:6a:c7:0d:
d6:aa:4d:76:af:98:96:80:6e:be:74:a6:2a:bb:a9:
c4:34:53:31:bf:16:7d:7d:76:bb:e2:78:73:5f:b4:
28:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:B0:0F:16:E3:AB:4D:3E:7E:DE:92:9D:B6:D5:02:EF:7E:0A:66:5A
X509v3 Authority Key Identifier:
keyid:C2:52:8D:8C:5B:67:6F:D9:A2:4D:FD:A7:E9:21:74:57:B7:31:02:63
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APNT/wlKNjFtnb9miTf2n6SF0V7cxAmM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wlKNjFtnb9miTf2n6SF0V7cxAmM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APNT/QLAPFuOrTT5-3pKdttUC734KZlo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:b0c0::/32
Signature Algorithm: sha256WithRSAEncryption
31:17:c4:b4:c7:8f:85:18:e4:bc:68:88:4b:6d:e3:60:7a:2d:
32:68:e0:5a:15:28:65:33:df:e6:6f:9e:ce:e4:d4:43:b4:6a:
f1:99:a0:03:fa:27:32:c5:ed:75:d3:c5:af:4e:71:36:bf:7b:
0c:35:ab:0e:83:5e:bf:5a:93:aa:1d:67:a3:03:dd:ad:82:e2:
9c:b7:49:9a:ad:2b:9e:6e:7e:1c:11:86:e1:92:71:66:50:3f:
ed:25:6b:ca:39:2f:be:be:89:d4:cb:2a:cc:91:56:4e:24:11:
c9:07:42:ef:53:d0:61:5d:e3:02:84:53:c7:a5:b1:cb:9a:e8:
63:be:a5:a7:00:89:6f:78:22:3c:be:b6:64:06:d3:1a:8b:56:
41:6f:f4:40:d3:fd:de:59:99:db:2e:09:cb:d6:76:65:1f:0d:
0a:07:e3:72:f8:ef:00:5a:a9:5f:54:54:af:3f:13:f3:50:e6:
97:ec:51:3c:62:40:d5:26:88:24:c2:d8:f3:5d:52:47:2b:02:
94:92:ea:25:1b:f7:f0:39:72:d3:84:a4:97:c7:3d:d0:c6:8b:
9e:ab:9d:4e:fd:56:43:d5:82:cd:eb:db:d0:7e:7b:48:e0:18:
c7:f4:14:ed:8c:17:51:cc:82:1c:f9:fa:b1:54:d4:9c:06:d9:
93:f0:0d:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:30 2024 by rpki-client on console-fra.rpki-client.org