Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/Udfcp71Pcq09_WlWGVrQLaiaroc.roa
File: Udfcp71Pcq09_WlWGVrQLaiaroc.roa (raw, json)
Hash identifier: 1j2P7pkcVpgLaVqq0GJFEYCSC0dB3M/CGJNHeIlBMfk=
Subject key identifier: 51:D7:DC:A7:BD:4F:72:AD:3D:FD:69:56:19:5A:D0:2D:A8:9A:AE:87
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/Udfcp71Pcq09_WlWGVrQLaiaroc.roa
Signing time: Thu 15 Sep 2022 02:40:03 +0000
ROA not before: Thu 15 Sep 2022 02:40:03 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9311
IP address blocks: 2404:0:4000::/36 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:40:03 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=51D7DCA7BD4F72AD3DFD6956195AD02DA89AAE87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:c2:c4:14:29:4a:12:02:83:dc:a1:bd:c7:3d:
c7:2a:89:e9:76:aa:be:ec:f6:b0:44:74:33:34:4e:
24:21:f1:77:df:71:b1:66:d6:a2:9a:54:92:ec:ab:
e8:23:71:32:c0:0c:c5:3a:2e:86:24:f2:28:b1:cc:
70:8b:a9:2f:d9:d5:f7:90:ab:ef:a7:4a:eb:51:39:
86:27:ca:01:72:f4:6b:91:d9:55:61:1e:1e:0f:78:
5b:ed:4a:94:46:76:22:99:ca:6e:d7:f5:f0:6f:be:
fc:b6:a6:05:a0:85:d4:6e:e7:4d:a9:2c:ae:c2:4d:
c5:2d:75:8d:45:b1:23:61:ad:71:6e:a0:0b:9d:b8:
95:47:82:09:c9:dc:bb:6e:81:6c:91:cf:b8:32:22:
6e:93:e0:ce:40:08:d3:37:6b:c0:a1:9f:d2:6c:2d:
89:26:c5:3d:30:3c:95:7f:77:fd:58:fd:dd:e0:8c:
c5:9b:ee:9e:38:3f:e0:5d:d7:7d:aa:4f:b7:83:b1:
f7:8e:54:d9:c4:3f:cc:9d:d1:f3:e6:87:c5:86:44:
a8:09:fa:0a:74:bc:dd:f2:f3:ec:19:cc:bc:d8:98:
e4:69:7b:83:32:a8:a6:13:3f:13:4e:f6:17:d6:e9:
56:9c:da:ef:13:fc:36:ba:b2:7f:1f:1e:d4:54:92:
a4:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:D7:DC:A7:BD:4F:72:AD:3D:FD:69:56:19:5A:D0:2D:A8:9A:AE:87
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/Udfcp71Pcq09_WlWGVrQLaiaroc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:0:4000::/36
Signature Algorithm: sha256WithRSAEncryption
51:b6:8d:e4:30:9d:6f:b3:25:4f:c7:42:1d:0e:6b:2a:47:50:
78:0f:57:ec:ab:f6:da:58:b7:c7:70:74:58:fc:49:e3:45:d9:
b0:0b:63:55:77:44:1e:88:33:a1:5e:69:95:39:06:d0:2a:ee:
03:3f:1c:94:d2:aa:c0:08:74:6c:69:c8:a7:ef:1e:b7:eb:7e:
91:43:47:9c:c4:69:05:e3:9d:f8:fe:bd:f8:74:7b:13:fa:44:
ce:e8:97:b1:7e:a2:b5:b4:f5:a9:26:20:6b:fa:ec:8a:2f:00:
79:3c:e9:72:70:09:1d:bd:99:8d:a2:42:65:d6:16:1e:43:18:
20:8a:bf:26:f2:ca:b2:bf:8d:0e:6d:a8:7e:c0:ec:58:4a:53:
7c:f7:99:fb:31:2c:1c:4d:bb:e9:91:2c:d0:92:50:d6:3a:ee:
d2:ac:cf:e9:af:38:0f:b8:fa:96:c2:40:8f:02:e4:cb:4c:dc:
d6:b6:08:77:f5:35:73:63:b0:8d:b6:69:bd:3c:6f:be:6e:18:
06:7b:c0:2e:dd:b3:26:50:00:5e:0c:40:06:f5:a7:fa:5c:51:
d9:be:13:cf:78:ad:d5:24:82:26:6a:31:bc:2d:b1:fa:56:cd:
be:04:85:4a:a5:37:85:9d:46:5e:07:df:18:80:7a:b5:29:fa:
b7:11:4b:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:49:15 2025 by rpki-client