Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/BRICKSINC/x6hYY8XHUQ6UVpfdp508Uf_pCJQ.roa
File: x6hYY8XHUQ6UVpfdp508Uf_pCJQ.roa (raw, json)
Hash identifier: cy1kkY+A7+3Wf4YoNzhgq/vkiYWpwyB6T3cqipITpxQ=
Subject key identifier: C7:A8:58:63:C5:C7:51:0E:94:56:97:DD:A7:9D:3C:51:FF:E9:08:94
Certificate issuer: /CN=A5A6AC38EE68C364CF79188F06427E9C766D4C1A
Certificate serial: 01B4
Authority key identifier: A5:A6:AC:38:EE:68:C3:64:CF:79:18:8F:06:42:7E:9C:76:6D:4C:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/paasOO5ow2TPeRiPBkJ-nHZtTBo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BRICKSINC/x6hYY8XHUQ6UVpfdp508Uf_pCJQ.roa
Signing time: Mon 26 Aug 2024 05:09:56 +0000
ROA not before: Mon 26 Aug 2024 05:09:56 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131657
IP address blocks: 2400:c9e0::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 436 (0x1b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A5A6AC38EE68C364CF79188F06427E9C766D4C1A
Validity
Not Before: Aug 26 05:09:56 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=C7A85863C5C7510E945697DDA79D3C51FFE90894
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:be:bb:6d:09:4d:84:36:86:7c:f8:25:6f:19:
b1:83:ee:10:ac:2d:8c:06:46:4c:09:86:09:b4:56:
4a:14:a2:10:80:56:fc:46:4e:bd:7b:cc:55:ae:02:
a6:0c:52:e1:9c:a1:57:66:d9:40:70:67:e8:6d:32:
3d:c5:53:99:18:a5:1e:61:03:c0:22:97:32:59:02:
4b:00:f9:28:35:c7:4e:ab:7c:21:c0:12:6d:7c:85:
8d:af:d0:e5:28:33:1b:ae:2b:25:27:b1:e9:2d:29:
ae:32:ff:d1:66:54:46:9e:7a:0f:3d:4c:7d:29:41:
35:48:43:27:e5:92:87:97:1c:92:e9:90:3c:b7:29:
10:10:af:4d:f9:92:51:5b:f9:ee:cc:40:39:37:4e:
91:39:c3:93:74:9d:84:e6:fd:bc:2f:57:58:e2:9c:
8f:a2:ae:87:c2:c1:68:35:be:83:4c:fd:20:8f:29:
e2:71:82:af:be:f2:23:a1:f3:01:fa:ec:23:37:59:
c2:d1:5a:8f:bd:20:3f:ea:f1:e6:76:81:0f:ce:db:
86:f4:65:23:9c:ec:da:da:ec:a4:5c:39:b4:38:1c:
0f:96:bf:f1:aa:bc:27:9c:60:8c:c4:1a:df:7b:9c:
3a:ac:46:8e:c2:06:02:5e:d2:6f:41:0e:9f:24:03:
94:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:A8:58:63:C5:C7:51:0E:94:56:97:DD:A7:9D:3C:51:FF:E9:08:94
X509v3 Authority Key Identifier:
keyid:A5:A6:AC:38:EE:68:C3:64:CF:79:18:8F:06:42:7E:9C:76:6D:4C:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BRICKSINC/paasOO5ow2TPeRiPBkJ-nHZtTBo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/paasOO5ow2TPeRiPBkJ-nHZtTBo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BRICKSINC/x6hYY8XHUQ6UVpfdp508Uf_pCJQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:c9e0::/32
Signature Algorithm: sha256WithRSAEncryption
11:41:fd:4a:2b:e5:5e:dd:16:10:e3:d1:12:5e:88:d7:dd:69:
68:3c:dc:b0:0b:a7:87:31:7f:6f:c4:81:3e:ab:69:3b:80:5e:
dd:c9:30:a9:23:8a:1a:aa:4a:ba:c7:5b:8e:8e:c1:f3:ae:27:
ea:51:31:e0:58:fc:27:a2:4a:d9:62:f3:81:ab:50:14:db:cc:
20:4b:47:aa:e3:99:8b:a1:0b:be:9b:7f:0b:d9:7e:a6:16:58:
d1:a9:52:97:20:46:ff:e1:64:b3:2a:5d:5f:50:6a:95:f1:aa:
01:c7:b0:b3:c0:05:e6:f9:f7:b9:55:c7:ee:4d:aa:85:eb:e8:
7e:86:7a:a9:fb:9e:92:49:57:33:78:ca:9e:8c:41:c4:bd:e8:
aa:17:f2:cd:9e:99:e1:0e:2a:99:56:4f:bb:35:f8:e1:4f:cb:
48:9e:59:1a:ab:a8:f0:28:47:23:93:4b:54:e6:91:a4:3c:11:
bf:54:e9:5b:48:6c:34:6b:fc:52:a7:b9:e1:1f:bf:37:92:54:
8b:21:aa:8c:e5:c9:61:a6:9c:0a:b8:36:a1:47:2b:99:ee:e9:
c3:0b:c8:d8:ad:d5:1b:63:64:61:67:d7:14:89:da:ea:21:28:
51:28:68:24:83:83:b2:e0:6c:7b:da:0a:0d:0b:2c:87:81:7b:
c8:db:87:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 01:38:04 2025 by rpki-client