Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/efFxBlDqe-r2cWHtTrut59wvwrs.roa
File: efFxBlDqe-r2cWHtTrut59wvwrs.roa (raw, json)
Hash identifier: kBWa8f4hwMG14eBbcOIqCNi4Ps0TFI3aYgJTHe16+3Y=
Subject key identifier: 79:F1:71:06:50:EA:7B:EA:F6:71:61:ED:4E:BB:AD:E7:DC:2F:C2:BB
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 12A0
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/efFxBlDqe-r2cWHtTrut59wvwrs.roa
Signing time: Fri 01 Sep 2023 08:04:44 +0000
ROA not before: Fri 01 Sep 2023 08:04:44 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131142
IP address blocks: 2404:0:7000::/36 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4768 (0x12a0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:04:44 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=79F1710650EA7BEAF67161ED4EBBADE7DC2FC2BB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:58:3e:b9:94:f9:71:3e:0a:c1:1a:2a:ce:99:
cb:ec:36:65:b0:4e:3e:9e:d3:73:b3:85:6b:4a:2e:
0e:2b:48:22:83:e4:a4:77:1a:24:d0:0e:a1:fe:84:
ed:fe:6c:c0:6f:c1:62:df:c2:62:0f:06:a8:11:3b:
7d:2a:b2:85:6d:ff:7f:b5:90:3c:3e:60:b9:41:02:
f8:47:55:35:5d:3a:04:9c:ac:71:17:ee:94:6b:04:
d2:db:fc:cf:13:7e:80:17:98:69:4d:25:0d:65:c4:
71:69:b8:af:41:e5:fe:f9:08:fa:7d:39:fc:a3:2f:
0e:69:f6:43:b8:4c:48:b9:95:ab:4d:0f:f7:30:99:
a1:8f:67:6f:34:d2:66:99:84:3f:fd:a9:c7:8c:39:
44:fd:96:e9:f6:21:3f:7f:dc:83:f0:16:fc:bc:f6:
27:3b:60:fa:c5:7c:11:25:ef:7f:6b:cd:f5:23:04:
49:29:1c:ca:94:be:b6:eb:25:cf:7c:98:61:6b:7c:
3a:eb:9a:86:e4:7c:47:a0:1e:b8:92:c7:45:78:fa:
6a:5b:1f:8e:68:40:1c:34:48:a1:ee:b5:99:03:f5:
6c:45:39:97:ca:00:f6:51:3b:5d:f5:a9:f2:fe:2e:
3a:cf:9e:06:1a:10:b2:d6:05:9d:1c:5b:97:6e:c4:
97:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:F1:71:06:50:EA:7B:EA:F6:71:61:ED:4E:BB:AD:E7:DC:2F:C2:BB
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/efFxBlDqe-r2cWHtTrut59wvwrs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:0:7000::/36
Signature Algorithm: sha256WithRSAEncryption
48:45:51:30:ee:36:15:06:e9:fb:75:4d:77:f8:5f:76:c3:6d:
a8:95:dd:2b:d3:af:6e:a6:53:b3:29:a5:a4:06:04:a2:2b:5c:
27:f6:f3:80:d3:40:1f:e0:6d:94:87:b2:39:3d:3f:34:08:a6:
4a:48:78:04:be:57:35:f8:c0:ee:7b:07:b3:02:4a:83:95:f1:
d9:9d:b1:e9:dc:07:d1:aa:4e:ea:99:84:66:c1:9a:be:88:7a:
38:25:ea:e7:27:9c:9c:2c:e1:13:72:6d:ed:fa:dd:35:9d:bf:
47:66:50:a3:2f:22:89:58:3f:d2:97:52:1e:fd:9c:1c:1b:61:
0b:da:d9:c7:cb:88:20:f1:7f:38:76:a0:f9:94:f9:96:a6:9c:
3b:0f:1f:cd:1f:4e:9c:4b:0d:a1:c1:f9:5c:13:be:1d:a1:13:
9c:61:79:bc:a6:96:14:1f:52:7a:ca:ee:6a:e9:dd:b5:ba:2f:
69:45:95:9b:ef:27:f8:14:ad:c8:8b:dd:74:f1:c8:e0:29:1a:
58:33:71:93:a7:12:40:a1:c3:b6:5a:11:83:5a:f4:0a:28:00:
74:d8:f5:78:b1:2c:f6:4c:ce:26:3e:76:a4:c8:4b:16:c9:f3:
83:51:41:0e:9b:25:15:1f:49:b6:c9:ac:ca:18:22:4c:e8:9f:
ed:65:d1:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 15 22:50:43 2024 by rpki-client on console-fra.rpki-client.org