Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DOPPLER/hYWQNjp0B5AT9dFcBmxPvnKP91Q.roa
File: hYWQNjp0B5AT9dFcBmxPvnKP91Q.roa (raw, json)
Hash identifier: ojey9q/sJOaTALiI33t0S6Lspx9A1UFcn82LO5eziDY=
Subject key identifier: 85:85:90:36:3A:74:07:90:13:F5:D1:5C:06:6C:4F:BE:72:8F:F7:54
Certificate issuer: /CN=364776C68F9B6CDCA080E26B01F3187E072F5C99
Certificate serial: 0C88
Authority key identifier: 36:47:76:C6:8F:9B:6C:DC:A0:80:E2:6B:01:F3:18:7E:07:2F:5C:99
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Nkd2xo-bbNyggOJrAfMYfgcvXJk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DOPPLER/hYWQNjp0B5AT9dFcBmxPvnKP91Q.roa
Signing time: Wed 14 Sep 2022 23:49:39 +0000
ROA not before: Wed 14 Sep 2022 23:49:39 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131670
IP address blocks: 2404:fdc0:111::/48 maxlen: 64
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3208 (0xc88)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=364776C68F9B6CDCA080E26B01F3187E072F5C99
Validity
Not Before: Sep 14 23:49:39 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=858590363A74079013F5D15C066C4FBE728FF754
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:63:e1:81:15:e9:b5:22:5f:fc:c9:28:5f:b8:
81:c4:f7:8c:bd:58:3e:f9:03:9f:f2:d1:b9:7b:e3:
99:f0:4b:94:98:eb:d2:36:ba:5b:84:83:8a:cc:45:
6f:9c:0b:db:9d:b2:4c:d2:3f:b6:05:22:73:f3:61:
af:a9:f7:bc:1d:34:12:de:2a:82:a3:2f:23:bd:fc:
81:cc:f6:b9:3f:84:fc:81:ec:a7:4c:ba:d7:67:4d:
ef:f3:f6:30:c7:6a:62:ef:04:7a:ff:ec:af:f0:23:
95:82:d0:ca:88:5c:29:a3:fd:86:72:17:60:54:81:
f8:a5:82:ae:ff:63:4d:d5:c0:0c:45:65:3b:2a:13:
67:63:cf:6f:1d:a1:9e:49:d2:cb:c6:27:05:bc:d9:
81:1e:75:1d:e5:94:e6:a8:b5:cb:a1:f9:64:73:56:
1e:67:33:61:df:9c:5f:22:22:49:3e:9e:7e:1a:ea:
bb:af:22:11:12:6b:35:89:1e:d3:8a:2a:93:41:52:
e3:9d:a9:76:78:7b:c4:bf:35:a0:7c:43:cc:2a:bf:
32:14:db:de:28:52:3d:36:83:2b:71:96:df:2a:9a:
b2:4d:36:a8:cc:46:22:80:36:02:ca:6d:53:5c:05:
0a:56:80:da:e2:dd:d5:82:3f:2f:af:89:6a:d3:51:
20:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:85:90:36:3A:74:07:90:13:F5:D1:5C:06:6C:4F:BE:72:8F:F7:54
X509v3 Authority Key Identifier:
keyid:36:47:76:C6:8F:9B:6C:DC:A0:80:E2:6B:01:F3:18:7E:07:2F:5C:99
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DOPPLER/Nkd2xo-bbNyggOJrAfMYfgcvXJk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Nkd2xo-bbNyggOJrAfMYfgcvXJk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DOPPLER/hYWQNjp0B5AT9dFcBmxPvnKP91Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:fdc0:111::/48
Signature Algorithm: sha256WithRSAEncryption
68:46:9a:a9:6c:6b:fe:39:f2:5a:00:89:a5:e4:8f:69:02:ef:
70:d4:c7:63:8e:75:1d:3a:86:99:3a:fe:6f:54:de:77:34:8d:
d5:c8:48:ae:14:24:b7:3b:42:d9:4e:ff:2a:2f:16:01:45:37:
4f:41:12:c8:38:8f:e9:45:57:2d:93:a7:aa:36:8d:35:5f:4d:
b8:43:14:29:26:63:bc:da:fd:e6:02:7a:67:01:61:e3:04:a7:
d7:45:72:b8:3e:15:35:2a:77:27:7f:1d:95:20:66:77:8f:5c:
10:2a:57:5a:df:5a:d1:a9:b6:18:93:5d:43:00:a8:78:3f:59:
f9:d0:6a:db:10:94:ff:78:1c:d3:c1:a1:33:3c:00:b9:c7:39:
ee:16:24:f1:54:69:eb:74:8a:0f:43:85:1b:e9:64:66:6a:c5:
21:45:32:e1:4a:35:9d:f8:ca:6a:90:e6:bf:01:60:cd:f0:f0:
15:a8:15:77:d9:09:9f:79:de:42:2e:f0:82:47:31:52:3e:6c:
b3:39:d7:34:75:c8:12:86:84:62:e8:39:54:cc:21:29:07:9c:
35:b1:eb:af:6a:cc:2d:d6:ab:29:fd:a3:a9:41:95:c0:c4:a3:
23:88:54:89:ba:9c:dc:ab:90:fc:6f:a3:27:c4:a6:93:3f:83:
a0:49:88:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:29:48 2025 by rpki-client