Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ARCHE/UremWI23EE8u1p7CfhDnwpjhlLQ.roa
File: UremWI23EE8u1p7CfhDnwpjhlLQ.roa (raw, json)
Hash identifier: wv75pPQFMWlDZE600lDbdJZtK0tyg5SMAVgxTpem/Vo=
Subject key identifier: 52:B7:A6:58:8D:B7:10:4F:2E:D6:9E:C2:7E:10:E7:C2:98:E1:94:B4
Certificate issuer: /CN=069CE651DD7D716A89A8EE84873DCCBF41354799
Certificate serial: 0107
Authority key identifier: 06:9C:E6:51:DD:7D:71:6A:89:A8:EE:84:87:3D:CC:BF:41:35:47:99
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BpzmUd19cWqJqO6Ehz3Mv0E1R5k.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/UremWI23EE8u1p7CfhDnwpjhlLQ.roa
Signing time: Mon 10 Feb 2025 13:45:27 +0000
ROA not before: Mon 10 Feb 2025 13:45:27 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18041
IP address blocks: 2401:7a60::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 263 (0x107)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=069CE651DD7D716A89A8EE84873DCCBF41354799
Validity
Not Before: Feb 10 13:45:27 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=52B7A6588DB7104F2ED69EC27E10E7C298E194B4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:fa:48:e0:7e:42:ac:57:ca:e4:17:41:91:e3:
07:ab:08:5d:8c:fa:3c:07:44:4c:1a:e0:b0:70:ab:
c6:80:43:21:2b:d5:6a:5f:02:b5:1e:d3:31:80:42:
19:eb:88:06:05:40:66:01:fc:f8:00:83:b5:4a:7f:
4f:cb:30:92:01:25:d9:b7:8c:75:11:ef:6a:31:0e:
07:cf:15:ce:07:ba:a3:af:e6:e5:8b:da:ad:48:31:
26:5d:eb:3c:1f:94:0b:b1:db:30:ed:9f:b6:14:d1:
7f:49:88:f7:c1:a1:61:8f:0d:65:29:22:f4:8e:57:
c2:07:1d:43:f1:db:d4:6f:27:4c:3c:ac:a0:fb:d2:
b6:66:2e:9f:7b:a6:df:55:a2:e9:23:a3:13:6e:73:
cf:0f:79:fd:2f:95:ed:6b:7f:2b:01:60:60:69:56:
cf:2e:b4:13:fc:ef:d5:71:e8:5b:6d:1a:18:78:50:
b5:e5:72:78:43:1b:6d:86:3e:53:8e:14:ab:9c:90:
96:41:2f:f4:61:97:c4:02:ac:b3:93:7e:71:7c:52:
13:2a:d4:ce:0c:87:1e:b1:ff:b4:6a:ed:21:6f:8f:
80:fd:c6:a3:b1:9a:cc:90:b6:16:f4:ad:22:26:91:
5b:5b:ff:bf:0a:bd:f6:58:86:d9:f0:3a:ba:15:fa:
62:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:B7:A6:58:8D:B7:10:4F:2E:D6:9E:C2:7E:10:E7:C2:98:E1:94:B4
X509v3 Authority Key Identifier:
keyid:06:9C:E6:51:DD:7D:71:6A:89:A8:EE:84:87:3D:CC:BF:41:35:47:99
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/BpzmUd19cWqJqO6Ehz3Mv0E1R5k.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BpzmUd19cWqJqO6Ehz3Mv0E1R5k.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/UremWI23EE8u1p7CfhDnwpjhlLQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:7a60::/32
Signature Algorithm: sha256WithRSAEncryption
2a:d1:ff:3d:cb:04:28:22:13:e9:0b:d5:09:f4:bb:53:47:88:
bd:2e:b6:22:a7:22:3d:61:80:a7:3e:be:44:3b:96:26:a0:81:
9a:b9:ae:ac:e3:1c:75:3c:32:7f:cb:90:7b:ab:fa:5d:93:17:
0b:99:21:26:7a:ec:ef:72:18:1b:74:de:f3:b2:01:3f:95:af:
c8:5c:cd:37:bf:81:75:bf:80:f7:e9:59:ca:e1:aa:ec:58:26:
f5:44:ea:26:40:27:4a:d7:36:e8:e0:ba:fa:79:d2:45:73:8a:
84:c8:ad:4a:79:8c:bf:bc:ca:4c:53:d9:4e:a8:fd:81:80:c6:
5a:28:c1:69:08:88:db:4a:7c:81:5c:85:73:2a:1c:e5:ae:79:
cd:94:d4:e3:27:29:08:d7:b3:78:c7:2a:d6:06:4c:97:21:79:
ed:eb:ab:47:61:6f:54:30:ac:35:fe:88:00:d7:f3:36:02:86:
45:50:a2:30:7b:fb:f4:bf:9f:16:8e:1f:c9:21:8f:9e:98:ec:
7f:8d:50:4f:ca:c4:b9:6b:51:aa:1c:2b:09:00:c1:21:bc:e7:
e1:5b:92:7f:95:47:f4:13:c2:1e:e8:77:bb:cb:8d:2f:bd:80:
0d:91:4e:28:46:cb:c9:10:ad:d7:af:14:3b:6f:6d:60:ae:59:
e1:5f:6d:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:44:12 2025 by rpki-client