Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CODEUPTECH/T3nmajoH1euRyNnaQYpEl-tckh8.roa
File: T3nmajoH1euRyNnaQYpEl-tckh8.roa (raw, json)
Hash identifier: R2q8CBkFoYGPu8kpqUB/N4cJrzBoH2+KnL3ykWpozBE=
Subject key identifier: 4F:79:E6:6A:3A:07:D5:EB:91:C8:D9:DA:41:8A:44:97:EB:5C:92:1F
Certificate issuer: /CN=2C20881A0EFD0664A591AF3095D29935EF9BC361
Certificate serial: 3B
Authority key identifier: 2C:20:88:1A:0E:FD:06:64:A5:91:AF:30:95:D2:99:35:EF:9B:C3:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LCCIGg79BmSlka8wldKZNe-bw2E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CODEUPTECH/T3nmajoH1euRyNnaQYpEl-tckh8.roa
Signing time: Fri 13 Sep 2024 10:53:38 +0000
ROA not before: Fri 13 Sep 2024 10:53:38 +0000
ROA not after: Thu 28 Aug 2025 15:30:19 +0000
asID: 152613
IP address blocks: 2401:bf60:4ff0::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59 (0x3b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2C20881A0EFD0664A591AF3095D29935EF9BC361
Validity
Not Before: Sep 13 10:53:38 2024 GMT
Not After : Aug 28 15:30:19 2025 GMT
Subject: CN=4F79E66A3A07D5EB91C8D9DA418A4497EB5C921F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:a7:05:8e:69:ea:22:bb:a1:7f:b0:0f:10:da:
6a:c2:c6:dc:f0:10:cd:78:c4:13:7d:1b:b3:91:cf:
3b:c8:88:6b:a7:97:8f:74:4f:3d:ca:0b:30:aa:71:
d9:98:28:9c:9a:61:d8:2b:f9:ea:17:8f:9a:2e:7b:
75:89:0a:d6:32:2d:96:79:4b:30:d6:c9:de:48:12:
5e:9d:4f:29:ed:c3:72:89:0f:c6:d9:09:4f:0d:1c:
52:0c:88:cc:66:24:35:bd:db:af:a9:ce:0c:83:76:
56:ba:99:d6:1f:18:39:4b:2c:82:f7:81:6b:61:e0:
fd:ca:25:ba:e5:15:50:58:1c:44:da:7b:57:48:ff:
23:54:f6:01:51:48:2f:29:15:9e:90:99:2e:b6:03:
ae:98:54:c6:7d:ba:f0:36:cc:31:22:eb:44:91:09:
98:dc:12:66:77:d9:6b:6b:10:99:0f:f1:3d:8c:cf:
48:60:7a:b0:7c:9f:e2:85:9e:00:4a:04:63:e4:c6:
a2:b0:b5:01:40:95:2a:e0:7f:92:9f:8b:74:b2:46:
e6:21:ca:46:be:51:dd:a5:e0:c4:92:c6:fa:fb:26:
fa:df:da:44:09:42:30:65:2b:af:cd:60:94:d4:27:
b3:8b:95:3f:4f:be:68:79:a7:85:90:31:63:d1:53:
f1:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:79:E6:6A:3A:07:D5:EB:91:C8:D9:DA:41:8A:44:97:EB:5C:92:1F
X509v3 Authority Key Identifier:
keyid:2C:20:88:1A:0E:FD:06:64:A5:91:AF:30:95:D2:99:35:EF:9B:C3:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CODEUPTECH/LCCIGg79BmSlka8wldKZNe-bw2E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LCCIGg79BmSlka8wldKZNe-bw2E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CODEUPTECH/T3nmajoH1euRyNnaQYpEl-tckh8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:bf60:4ff0::/44
Signature Algorithm: sha256WithRSAEncryption
53:ae:ae:9e:08:ee:1d:8a:36:3a:f6:1a:d7:ed:55:7b:66:06:
b7:ff:bd:d8:76:73:c9:0a:fa:1c:21:10:cd:9e:d3:c4:45:b5:
04:1a:e3:6e:0e:2a:38:82:a5:9a:ea:1f:45:06:7c:cd:be:09:
48:97:85:da:09:7c:99:e8:04:95:b5:5d:1a:be:66:e8:5b:24:
80:22:e8:24:be:dd:98:ec:3a:40:bd:b5:01:6a:e7:b4:dd:4a:
4e:ec:1a:dd:6d:48:b0:2c:10:92:38:f2:18:7e:e9:d2:c1:3b:
24:20:c6:c4:dd:0b:e9:db:4d:a0:59:c2:48:ee:56:69:85:d0:
47:bd:6a:1d:0a:f3:b8:df:0f:02:38:86:28:ed:6d:8b:0f:70:
4a:99:5c:a7:b3:d4:ae:6f:6b:ec:c0:0b:60:11:5e:e2:68:54:
ca:91:91:80:e9:f3:2e:b8:97:71:05:ac:4a:cc:42:31:01:d4:
e2:87:5e:7c:0d:d3:6a:8e:a9:76:d2:2d:93:72:47:0e:c8:b3:
05:bb:13:38:b0:e2:53:3d:27:59:c3:f0:1d:39:a5:26:e2:fc:
38:3d:12:55:37:26:59:73:16:d9:58:c9:b4:a8:50:70:27:a5:
69:3d:4a:ce:f0:0d:ad:00:19:35:53:b9:03:8a:d3:9f:43:04:
c8:47:92:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 11:42:51 2025 by rpki-client