Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/TBfkffPF_r9Vwvh--sIFqEFTld4.roa
File: TBfkffPF_r9Vwvh--sIFqEFTld4.roa (raw, json)
Hash identifier: dv/wGr+tuGAEyM5RS3TnT6cGO6rSV/6fKbc11HGbhuk=
Subject key identifier: 4C:17:E4:7D:F3:C5:FE:BF:55:C2:F8:7E:FA:C2:05:A8:41:53:95:DE
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0BA9
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/TBfkffPF_r9Vwvh--sIFqEFTld4.roa
Signing time: Fri 01 Sep 2023 08:50:51 +0000
ROA not before: Fri 01 Sep 2023 08:50:51 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18412
IP address blocks: 2401:e180:8960::/44 maxlen: 44
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2985 (0xba9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Sep 1 08:50:51 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=4C17E47DF3C5FEBF55C2F87EFAC205A8415395DE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:0a:ba:49:d8:19:b0:06:18:00:3f:a2:33:5b:
96:e9:af:6f:ff:87:9e:bb:0f:a8:69:da:4b:15:aa:
ae:35:6a:e8:02:45:31:3d:f5:fc:27:10:a5:a7:08:
e1:54:af:1a:19:b0:3b:73:99:c3:05:f3:0c:af:db:
4a:34:53:06:80:08:0e:97:36:51:c9:24:fc:75:4a:
01:f2:52:e7:27:99:7c:c0:04:00:97:ba:44:75:6a:
8a:50:51:81:a8:56:4f:b5:fa:df:10:2f:77:46:fd:
85:ec:b9:89:98:e0:c6:0b:a1:60:70:18:dc:fc:eb:
09:4b:5d:0b:f8:9f:3e:a1:e3:37:63:6f:df:d1:d6:
3e:f4:c2:d8:38:be:99:d0:b6:57:32:79:38:c5:f9:
00:eb:9e:90:11:f6:02:49:a1:46:ca:ff:3f:93:ae:
31:84:4e:d0:b5:cb:3d:7c:3a:6c:3f:60:da:d4:a2:
1f:40:f9:51:ef:ce:1b:e6:b4:53:7c:55:48:ed:31:
8c:ec:4b:76:5a:d2:80:91:2c:ec:48:89:16:35:63:
51:fa:9a:69:5d:9d:a7:e4:52:c3:7d:79:93:52:05:
a2:64:ff:cb:a5:dc:7f:1a:58:7b:ee:2f:12:35:dd:
fc:61:5b:47:9c:e1:0a:2a:f7:f9:f4:ea:7e:c4:49:
25:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:17:E4:7D:F3:C5:FE:BF:55:C2:F8:7E:FA:C2:05:A8:41:53:95:DE
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/TBfkffPF_r9Vwvh--sIFqEFTld4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:e180:8960::/44
Signature Algorithm: sha256WithRSAEncryption
16:40:4d:b7:d3:9c:b6:da:4e:78:f2:77:e8:ff:81:cd:38:ea:
aa:8a:df:60:ee:df:05:6b:94:31:d1:80:e8:f8:4a:d7:19:b6:
71:db:33:27:8e:40:9e:3d:5d:bb:4c:cb:52:80:b0:40:19:a1:
d0:eb:d3:6e:fc:8c:5d:1b:75:9d:7e:03:ac:52:68:a7:52:65:
5d:bf:b9:f8:59:00:88:79:67:b9:65:80:af:d7:74:d3:d5:7b:
ef:7d:74:ae:cd:fb:70:4f:cd:8d:64:fe:37:f4:2b:af:2f:2a:
16:23:94:f9:37:b2:85:90:3e:a4:8a:87:b0:47:c2:bf:85:f6:
37:b4:9f:76:d2:b1:ff:e5:93:13:2e:18:20:a0:7d:be:01:2e:
de:3b:46:8d:38:10:10:ee:63:b7:37:bb:67:8c:1e:39:ce:38:
58:6e:38:cf:f8:1b:26:70:72:42:d5:b3:64:1d:bc:1b:b3:9b:
19:43:e3:20:22:1a:fd:fe:86:40:f0:73:28:30:77:a8:e1:ab:
93:04:0b:17:53:c1:2b:23:66:89:77:56:65:ec:30:a8:ba:ac:
ea:f3:4b:3a:1d:04:30:77:51:71:fc:1c:bb:c9:35:7c:4a:c2:
77:ff:c7:af:ca:3d:cc:98:15:c6:61:e6:bc:c9:cf:e0:6f:02:
c9:ce:21:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:19 2024 by rpki-client on console-fra.rpki-client.org