Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWT/PhlE3e5xCgkmsLk8nVKhvc7xN9M.roa
File: PhlE3e5xCgkmsLk8nVKhvc7xN9M.roa (raw, json)
Hash identifier: HKLsporc2jllNgpzy4+uuOzdDbmzNvvQlIPTMrEas2M=
Subject key identifier: 3E:19:44:DD:EE:71:0A:09:26:B0:B9:3C:9D:52:A1:BD:CE:F1:37:D3
Certificate issuer: /CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Certificate serial: 0F93
Authority key identifier: D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/PhlE3e5xCgkmsLk8nVKhvc7xN9M.roa
Signing time: Mon 10 Feb 2025 14:30:52 +0000
ROA not before: Mon 10 Feb 2025 14:30:52 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18424
IP address blocks: 2404:8cc0::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3987 (0xf93)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Validity
Not Before: Feb 10 14:30:52 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=3E1944DDEE710A0926B0B93C9D52A1BDCEF137D3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:d7:a7:c2:4e:71:32:de:05:ca:84:d7:8d:3f:
95:68:90:8a:7b:4f:f9:c0:fa:b0:80:53:cf:14:c1:
97:c1:30:6d:7c:a0:fb:fb:9e:e6:86:6e:ae:90:4e:
db:bf:e7:eb:16:7b:90:f9:e0:d1:ee:de:4b:31:6c:
c8:3f:c6:b3:d9:57:7a:6b:d6:3a:bf:bc:db:a3:60:
98:71:49:f4:d1:9f:a4:17:24:8e:a0:1d:1c:8d:5b:
0b:9a:7a:6c:39:a6:a2:a9:74:43:49:e9:ae:ed:91:
ec:4a:ae:82:5f:a8:5e:24:d0:4c:8a:e2:d2:1c:a3:
c6:4c:2b:4a:22:62:25:41:20:40:63:80:d6:25:3e:
23:97:bf:b8:72:2e:10:ed:8f:b1:40:15:15:53:db:
1f:05:54:5c:bc:ce:e6:f1:94:e0:2c:5a:2b:1b:de:
c6:4c:72:8a:a6:e6:50:c0:c3:13:2f:cc:8a:a1:bd:
90:88:45:04:79:37:96:bb:ae:8c:6e:91:14:f0:01:
0e:71:fa:21:16:81:47:01:ac:13:95:8a:96:b1:f3:
34:76:1f:ba:55:db:8f:59:d4:f8:40:0d:0b:82:1f:
ff:d0:32:55:2d:9b:03:5c:0c:66:ac:8e:69:c7:42:
45:28:89:88:13:9c:b4:c3:02:b4:a9:c1:9f:09:8f:
e3:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:19:44:DD:EE:71:0A:09:26:B0:B9:3C:9D:52:A1:BD:CE:F1:37:D3
X509v3 Authority Key Identifier:
keyid:D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/PhlE3e5xCgkmsLk8nVKhvc7xN9M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:8cc0::/32
Signature Algorithm: sha256WithRSAEncryption
5e:51:68:63:f6:9a:de:bc:9f:90:c9:f2:06:ad:78:b6:a1:a4:
cc:db:e2:2f:7b:25:ec:d6:79:96:d5:a3:75:17:3c:bb:92:c8:
7a:70:99:f3:94:f0:a7:df:2e:30:11:10:ee:cd:2d:ea:c2:00:
0d:33:57:d5:49:f5:ff:d7:77:24:28:da:5c:6a:85:a1:70:84:
9f:2f:b9:69:48:f2:01:4e:a6:c4:9e:35:1e:ad:5a:34:f2:43:
ba:d0:15:db:cb:d1:a4:36:90:4a:ca:77:ae:1b:ae:9f:4c:c1:
71:10:76:71:52:61:1a:19:07:c0:d1:9d:4b:76:fa:ed:9f:54:
81:55:c4:e5:b4:51:48:a3:af:7a:91:b8:96:10:b5:56:a0:d4:
4e:69:74:b9:52:f3:4f:ad:ae:5d:bc:af:5b:26:09:a7:27:3f:
94:e1:77:48:17:5c:7d:59:56:0a:ea:1a:06:01:d5:44:f7:36:
09:98:de:2a:6b:54:f6:01:fb:db:70:2b:dd:a8:f9:f1:ff:fe:
12:c2:c7:c9:bc:aa:0a:29:9c:e6:a2:63:55:52:81:e7:9b:7b:
e9:15:67:bd:79:46:8c:c0:1a:9b:0a:78:4d:15:be:f3:c8:83:
4c:2a:c0:b1:56:ed:16:2b:1c:e0:ea:2b:59:2e:12:23:7c:7f:
cc:11:23:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 21:59:36 2025 by rpki-client