Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASGC/kXX703E79nItsk6CKzG_g7fpWs4.roa
File: kXX703E79nItsk6CKzG_g7fpWs4.roa (raw, json)
Hash identifier: kR2HJmj3WKPwUv3UC1s0kVF/T8wPXEk8ZMaNQHLfB6E=
Subject key identifier: 91:75:FB:D3:71:3B:F6:72:2D:B2:4E:82:2B:31:BF:83:B7:E9:5A:CE
Certificate issuer: /CN=760EA9F7833EDC6366FD5E23A426BCF62BB01E6C
Certificate serial: 0B35
Authority key identifier: 76:0E:A9:F7:83:3E:DC:63:66:FD:5E:23:A4:26:BC:F6:2B:B0:1E:6C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/dg6p94M-3GNm_V4jpCa89iuwHmw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASGC/kXX703E79nItsk6CKzG_g7fpWs4.roa
Signing time: Fri 01 Sep 2023 08:05:55 +0000
ROA not before: Fri 01 Sep 2023 08:05:55 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24167
IP address blocks: 2400:4500::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2869 (0xb35)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=760EA9F7833EDC6366FD5E23A426BCF62BB01E6C
Validity
Not Before: Sep 1 08:05:55 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=9175FBD3713BF6722DB24E822B31BF83B7E95ACE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:80:26:b9:26:89:f0:29:e6:d4:00:de:4d:3d:
e2:c3:73:f4:9f:6d:1a:45:e5:b0:29:1b:8d:d8:3e:
cd:f4:fa:8a:e2:7d:0d:36:91:88:ac:57:30:c9:cd:
2f:b5:e1:f2:35:b3:27:61:c3:88:74:b5:a6:5c:48:
c4:24:28:1f:08:12:e1:ff:99:3b:53:ac:b8:c5:ea:
5e:89:83:c9:21:30:ae:69:23:25:66:6a:16:93:01:
29:40:82:2e:13:6b:cf:e9:45:96:71:9c:d0:fb:90:
ae:48:98:d1:33:d1:29:d8:6a:2c:e9:b1:8f:ae:3f:
fb:1d:c4:de:b1:95:9d:c0:f8:8f:3d:7a:86:20:64:
a4:c8:68:80:ce:bb:b3:b4:5a:4d:55:4d:d2:f9:b5:
88:47:b7:a1:f5:99:fa:a7:99:c4:67:cb:48:5e:7d:
ab:9e:51:e9:6c:30:95:55:ac:28:40:6d:a1:58:7d:
bb:a3:dc:10:c6:0e:1c:f0:70:b6:58:b7:34:b7:78:
32:ef:15:b7:dc:da:f9:0a:5a:32:60:09:26:2b:ee:
1d:7d:be:aa:f0:32:fa:a4:38:b5:f4:b1:31:3b:6d:
a8:49:d5:e6:1d:62:93:6c:dc:52:21:20:74:ad:25:
76:81:24:4f:ea:f5:f9:86:fb:d6:e6:5e:76:1c:8a:
04:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:75:FB:D3:71:3B:F6:72:2D:B2:4E:82:2B:31:BF:83:B7:E9:5A:CE
X509v3 Authority Key Identifier:
keyid:76:0E:A9:F7:83:3E:DC:63:66:FD:5E:23:A4:26:BC:F6:2B:B0:1E:6C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASGC/dg6p94M-3GNm_V4jpCa89iuwHmw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/dg6p94M-3GNm_V4jpCa89iuwHmw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASGC/kXX703E79nItsk6CKzG_g7fpWs4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:4500::/32
Signature Algorithm: sha256WithRSAEncryption
61:22:61:3b:9a:9d:cb:cd:68:f4:2f:3e:43:84:fa:fe:4f:5c:
04:a7:75:04:87:35:dd:46:5c:d7:58:d1:cf:d7:7e:10:e1:03:
0e:00:c9:86:ba:a8:28:d8:e0:40:42:30:24:88:91:05:c3:0c:
02:43:a0:8f:b0:11:ef:97:ec:44:a9:c4:86:31:06:9a:85:69:
ca:e0:f6:05:c7:24:67:94:3c:c0:88:a7:d8:4a:d8:ea:ba:c3:
dc:86:e4:14:ce:09:11:44:a3:4f:c1:9b:db:c8:6b:a7:0b:9b:
6e:47:0e:0c:c2:18:35:a4:e0:21:4f:7d:75:cd:a9:aa:1b:f3:
8b:6f:1f:e9:58:fe:f7:95:d9:7e:0a:71:b4:69:ef:fd:f4:a5:
b4:aa:52:48:60:62:3d:a8:08:09:6c:ba:52:42:d4:95:89:ed:
97:92:78:fd:0c:bc:5b:f7:60:8c:26:fe:c5:11:2a:f4:bf:6b:
23:04:db:9a:b9:c5:65:f1:b6:42:82:2f:7a:da:03:09:64:74:
cc:35:ac:65:19:b3:c7:a9:2e:29:e5:92:08:ae:39:71:cf:e7:
49:5a:64:e1:1e:ed:65:f2:a8:3d:d8:07:2a:53:7f:eb:0d:d9:
19:f3:f4:cd:b9:98:e5:5f:77:71:3a:9f:22:75:80:97:9e:78:
fd:1e:08:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:25:49 2025 by rpki-client