Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APNT/eB8UA0RJFGT9KkNv0StY-dBGwJ0.roa
File: eB8UA0RJFGT9KkNv0StY-dBGwJ0.roa (raw, json)
Hash identifier: 88CHCoMAJpGYZTCkla2GJIaEEhkOrCz/sbfUbgwkzOw=
Subject key identifier: 78:1F:14:03:44:49:14:64:FD:2A:43:6F:D1:2B:58:F9:D0:46:C0:9D
Certificate issuer: /CN=C2528D8C5B676FD9A24DFDA7E9217457B7310263
Certificate serial: 119A
Authority key identifier: C2:52:8D:8C:5B:67:6F:D9:A2:4D:FD:A7:E9:21:74:57:B7:31:02:63
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wlKNjFtnb9miTf2n6SF0V7cxAmM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APNT/eB8UA0RJFGT9KkNv0StY-dBGwJ0.roa
Signing time: Fri 01 Sep 2023 08:03:59 +0000
ROA not before: Fri 01 Sep 2023 08:03:59 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131630
IP address blocks: 2403:b0c0::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4506 (0x119a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C2528D8C5B676FD9A24DFDA7E9217457B7310263
Validity
Not Before: Sep 1 08:03:59 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=781F140344491464FD2A436FD12B58F9D046C09D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:81:0e:0a:c1:8b:61:22:e2:c9:78:7b:bc:77:
96:57:ad:c3:61:a1:d7:36:89:84:01:26:80:77:81:
6a:44:f8:77:15:82:32:8e:0b:8a:47:65:a4:b2:a5:
1b:90:fa:bd:e6:0d:00:af:66:72:1f:01:c3:d7:d2:
12:bb:7c:52:ce:9b:3e:f9:9e:e6:4b:a2:45:61:44:
7e:49:01:2c:cc:a8:09:53:23:fa:9e:29:c3:90:6a:
ca:e2:f6:78:dd:33:4f:3c:4a:eb:18:61:e6:21:ce:
f5:a9:5f:2b:87:8c:71:a9:ca:a0:70:08:23:9f:cc:
f1:34:7a:60:af:2b:46:78:6b:20:4b:53:89:2f:c2:
6b:0c:6f:9c:26:8f:4f:2b:93:5f:b1:c7:26:e2:d4:
83:fa:b3:86:15:51:5c:11:4a:95:c8:72:21:88:28:
c7:d3:4c:97:3e:b2:16:72:d2:c3:be:d9:30:97:04:
66:9a:cf:a3:c1:5d:30:aa:e5:2c:e5:61:78:4d:db:
b8:0f:90:62:64:87:b4:80:4e:ba:30:ec:57:ad:29:
a9:ad:14:7e:82:d9:9d:ce:d7:6f:6c:ea:82:d3:3a:
7d:8a:27:43:c2:ef:ac:49:74:94:e3:db:62:05:e2:
a6:83:b8:ed:9d:45:fc:2c:a7:63:53:81:25:e0:c7:
90:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:1F:14:03:44:49:14:64:FD:2A:43:6F:D1:2B:58:F9:D0:46:C0:9D
X509v3 Authority Key Identifier:
keyid:C2:52:8D:8C:5B:67:6F:D9:A2:4D:FD:A7:E9:21:74:57:B7:31:02:63
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APNT/wlKNjFtnb9miTf2n6SF0V7cxAmM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wlKNjFtnb9miTf2n6SF0V7cxAmM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APNT/eB8UA0RJFGT9KkNv0StY-dBGwJ0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:b0c0::/32
Signature Algorithm: sha256WithRSAEncryption
4d:cb:5f:a2:5a:c1:5d:05:fd:51:9b:2a:2a:34:d4:6b:0d:cb:
0b:3c:14:af:9c:b1:9a:0a:40:0b:75:34:2a:cc:90:e3:89:57:
f7:74:45:0b:b7:b0:ea:87:e6:43:4e:a5:38:21:e5:37:a9:8d:
98:bc:a5:cb:c6:a5:e3:5e:22:a7:d4:f9:49:4e:f4:9d:17:f5:
10:a2:8b:7b:d2:39:31:cf:61:ea:94:a1:55:d8:24:d2:27:00:
f8:80:71:7e:1b:9f:88:40:02:22:b0:81:e4:6e:9c:71:c8:ec:
ad:34:6c:be:ce:16:19:de:a9:b1:7f:6d:78:5b:cd:22:c2:1c:
b2:ff:67:3c:30:1f:58:ad:6f:8a:a1:08:63:53:9a:38:c7:61:
48:fd:b7:87:ea:61:d4:3a:d5:08:7b:48:44:14:e7:32:7d:7a:
13:54:3b:05:bf:01:13:6f:7f:8f:ec:19:ff:fc:b6:82:f3:ec:
01:b2:b2:19:b5:c5:06:72:4b:75:fe:bf:66:64:98:80:0c:17:
38:e2:ef:29:aa:30:be:db:03:0e:fe:7d:a7:eb:c9:e8:ec:49:
45:b5:d4:42:f0:20:99:7e:2c:7b:4e:39:09:32:5f:45:6e:7e:
27:20:77:36:9d:69:a7:95:f1:eb:26:9e:f9:cb:47:c3:5a:d6:
b5:f5:58:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:30 2024 by rpki-client on console-fra.rpki-client.org