Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ARCHE/R1xWOYCLnBItKFS5ZmE2Trf-euY.roa
File: R1xWOYCLnBItKFS5ZmE2Trf-euY.roa (raw, json)
Hash identifier: 2RA8EzZQ6FK//10WjS2ls2A1zn4FCqeTxlYXrbbpaWk=
Subject key identifier: 47:5C:56:39:80:8B:9C:12:2D:28:54:B9:66:61:36:4E:B7:FE:7A:E6
Certificate issuer: /CN=069CE651DD7D716A89A8EE84873DCCBF41354799
Certificate serial: EC
Authority key identifier: 06:9C:E6:51:DD:7D:71:6A:89:A8:EE:84:87:3D:CC:BF:41:35:47:99
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BpzmUd19cWqJqO6Ehz3Mv0E1R5k.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/R1xWOYCLnBItKFS5ZmE2Trf-euY.roa
Signing time: Thu 09 Jan 2025 15:34:13 +0000
ROA not before: Thu 09 Jan 2025 15:34:13 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131668
IP address blocks: 2401:7a60::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 236 (0xec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=069CE651DD7D716A89A8EE84873DCCBF41354799
Validity
Not Before: Jan 9 15:34:13 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=475C5639808B9C122D2854B96661364EB7FE7AE6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:39:ef:74:00:31:ff:b7:b4:84:3a:20:3b:1f:
92:7d:df:f4:9e:83:67:5f:2c:34:72:d1:99:63:a6:
a1:d3:c3:27:17:cb:fb:02:dc:40:50:d0:f6:eb:64:
ae:d4:f4:16:4e:a2:b6:74:e6:bf:95:37:3a:42:84:
8d:63:4e:bd:4e:cd:95:b2:be:3d:85:38:2d:43:d6:
89:c8:41:be:54:9c:65:2b:9b:a1:aa:b4:ed:ce:c9:
bf:62:57:df:0b:df:d4:e6:28:fc:53:75:f1:f3:a4:
a4:5c:c9:8e:ae:ed:f6:39:d0:1e:57:e7:41:55:d3:
77:14:6e:e8:99:d0:9e:39:ca:4a:25:10:ec:a7:df:
9b:f8:35:db:1e:aa:3c:3f:f9:23:a7:35:0f:40:8d:
fa:b3:5b:af:c9:22:4e:ab:c1:e7:84:31:33:ee:4c:
53:fd:49:db:df:94:98:0d:0a:91:42:46:0c:77:8b:
2a:da:02:43:9d:10:1c:dc:72:06:8f:36:8e:57:13:
d6:eb:f1:58:d3:07:3e:cf:fb:13:c8:8f:18:c4:17:
ff:96:89:24:29:21:5e:e8:e2:d2:8e:e9:de:f9:3f:
0e:aa:31:b6:f8:67:17:d0:76:94:f9:ce:40:b1:17:
db:16:f8:57:c0:37:77:85:44:84:f3:7b:13:79:1d:
8b:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:5C:56:39:80:8B:9C:12:2D:28:54:B9:66:61:36:4E:B7:FE:7A:E6
X509v3 Authority Key Identifier:
keyid:06:9C:E6:51:DD:7D:71:6A:89:A8:EE:84:87:3D:CC:BF:41:35:47:99
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/BpzmUd19cWqJqO6Ehz3Mv0E1R5k.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BpzmUd19cWqJqO6Ehz3Mv0E1R5k.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/R1xWOYCLnBItKFS5ZmE2Trf-euY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:7a60::/32
Signature Algorithm: sha256WithRSAEncryption
53:84:9c:d5:9f:75:66:5b:9c:0b:00:69:0c:ad:f9:22:e4:e0:
47:09:2b:4f:e8:3d:47:45:5b:ee:5b:c1:9e:00:ab:26:66:bf:
5c:1e:6e:16:fb:cf:a1:83:4f:04:8f:24:90:dd:9d:3d:a0:2e:
72:7a:ad:3a:8a:22:8c:e6:e0:fb:40:c4:c3:28:5f:87:b5:bf:
b1:85:a2:f4:95:f1:84:eb:2b:36:f1:70:a8:a0:a1:50:11:88:
58:53:a1:88:69:a7:86:47:01:fa:89:ac:4e:42:fb:f0:f7:db:
d5:c5:51:7b:68:04:23:95:b7:1b:32:ce:a6:82:72:e8:86:5a:
84:0b:bf:e5:35:70:4d:80:20:9c:63:29:b9:20:d3:cd:50:95:
3e:72:6c:83:17:c3:1b:ed:5d:c8:e7:3a:bf:ce:21:39:8a:a7:
41:c7:52:d4:71:80:ab:38:a1:5f:e1:e3:29:9e:d1:d0:b3:1c:
fd:6e:12:bb:e8:44:08:31:a5:97:17:0c:78:ac:11:68:7f:c1:
c7:b4:13:22:be:67:7a:90:88:16:1c:e9:3b:d2:c1:14:cf:55:
da:2f:a0:f2:15:90:2b:b5:a9:49:93:87:b2:21:41:61:65:e0:
c7:4f:ab:ec:f2:63:35:c5:f8:ef:69:fa:5b:5f:a9:4c:a7:5d:
14:8c:0f:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 13:58:01 2025 by rpki-client