Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWT/dS2Se_jQg02ts2VIhygfNqiwUhY.roa
File: dS2Se_jQg02ts2VIhygfNqiwUhY.roa (raw, json)
Hash identifier: W1PDZneljxYP8+Nawg06SRIfFp0zz8E+mhwqq5B5hTU=
Subject key identifier: 75:2D:92:7B:F8:D0:83:4D:AD:B3:65:48:87:28:1F:36:A8:B0:52:16
Certificate issuer: /CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Certificate serial: 0E0B
Authority key identifier: D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/dS2Se_jQg02ts2VIhygfNqiwUhY.roa
Signing time: Fri 01 Sep 2023 08:36:25 +0000
ROA not before: Fri 01 Sep 2023 08:36:25 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24168
IP address blocks: 2404:8cc0::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3595 (0xe0b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Validity
Not Before: Sep 1 08:36:25 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=752D927BF8D0834DADB3654887281F36A8B05216
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:4e:42:06:5e:70:52:3f:fb:74:0b:5b:f0:bc:
2d:c1:bd:b1:7e:1e:4e:fe:cf:1f:69:db:d8:d5:26:
81:21:b4:e0:ec:ab:3a:3f:97:9b:60:e0:5d:9d:a8:
31:20:43:cf:5c:52:fb:a3:54:54:62:18:9d:b4:9d:
10:a6:74:2d:41:2c:a9:b5:de:29:c6:88:fb:8a:72:
85:62:a1:12:d0:3a:9b:58:5e:94:34:79:32:3b:27:
cf:98:e2:f0:97:e8:ad:7c:56:10:fa:1d:da:ce:fd:
6e:18:41:f3:77:e7:31:17:e4:85:f9:f7:28:f0:9f:
df:ab:d0:27:aa:d6:b4:d8:1c:c6:3a:b4:f9:0d:7f:
71:58:2d:16:50:f9:a8:44:f2:18:85:a7:3b:7a:d8:
89:3a:79:fc:4f:54:c9:29:5c:77:61:d9:94:80:d1:
ed:73:f4:76:95:c4:76:2e:50:82:41:d5:b9:8e:70:
70:ee:76:27:c8:35:45:67:22:ce:c3:61:ab:e3:37:
1a:07:f8:0d:9e:59:26:2a:b9:ab:37:18:4e:63:b6:
25:62:26:3c:5b:da:9c:7b:74:bf:92:98:9a:02:38:
6f:8e:1a:0a:96:38:2b:a4:aa:fa:2e:5d:65:8c:b5:
4d:96:ba:04:23:7a:13:fa:39:b7:c9:ff:cd:2c:98:
e9:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:2D:92:7B:F8:D0:83:4D:AD:B3:65:48:87:28:1F:36:A8:B0:52:16
X509v3 Authority Key Identifier:
keyid:D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/dS2Se_jQg02ts2VIhygfNqiwUhY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:8cc0::/32
Signature Algorithm: sha256WithRSAEncryption
4e:72:ac:11:e5:88:f9:c8:9f:ac:4d:8b:2d:cc:4a:f8:f0:aa:
0c:9e:09:15:f3:15:b6:ab:ef:88:71:1f:2b:61:b3:a3:0a:c4:
be:e2:0b:f8:ae:8e:5f:3e:3c:f3:e1:23:6f:a0:91:3e:27:69:
36:f3:78:3a:44:a5:da:61:5c:5a:6e:46:1d:40:55:a4:d2:fa:
51:c4:f9:45:e7:af:f0:d1:40:6d:67:76:73:7e:0c:7d:82:01:
ef:da:e9:26:30:b1:90:da:2f:4e:ec:23:37:9b:26:50:ff:38:
43:e5:a8:fb:d9:3d:b0:f8:4b:ee:c6:1a:29:02:8d:b8:13:78:
42:ce:bc:ad:6f:12:bd:63:68:f7:85:a7:83:42:de:8f:3a:3c:
6a:da:29:d9:24:97:e3:b7:8f:81:c0:b0:86:71:29:b1:07:50:
f6:17:28:59:40:04:63:1d:ca:81:80:2f:b3:25:d1:cc:24:35:
d5:2e:0b:07:86:1f:ca:d1:3c:3a:ca:5e:6d:d8:eb:fe:ac:05:
dd:50:31:cf:29:b3:82:74:8d:c7:10:90:d1:d0:54:08:e7:fc:
20:d7:27:74:5b:90:83:09:a1:ce:b2:24:b6:02:26:1d:4d:ba:
0c:ec:f7:28:eb:0c:c2:2b:40:0a:97:3e:95:64:4e:ee:20:bc:
4a:2e:d9:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:12 2024 by rpki-client on console-ams.rpki-client.org