Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FUYU/96xyMUHDbXpXHecW5-WVB0HEqlA.roa
File: 96xyMUHDbXpXHecW5-WVB0HEqlA.roa (raw, json)
Hash identifier: 6gx94tTcnNbh6JffegTbK99E9FXgoQgkMSFRS/GyI4k=
Subject key identifier: F7:AC:72:31:41:C3:6D:7A:57:1D:E7:16:E7:E5:95:07:41:C4:AA:50
Certificate issuer: /CN=6B3C09A6D48E6F4E1760EDD8942C436D0A196387
Certificate serial: 0E
Authority key identifier: 6B:3C:09:A6:D4:8E:6F:4E:17:60:ED:D8:94:2C:43:6D:0A:19:63:87
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/azwJptSOb04XYO3YlCxDbQoZY4c.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FUYU/96xyMUHDbXpXHecW5-WVB0HEqlA.roa
Signing time: Sun 24 Mar 2024 13:20:59 +0000
ROA not before: Sun 24 Mar 2024 13:20:59 +0000
ROA not after: Fri 21 Feb 2025 15:30:22 +0000
asID: 150771
IP address blocks: 2401:81a0::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14 (0xe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6B3C09A6D48E6F4E1760EDD8942C436D0A196387
Validity
Not Before: Mar 24 13:20:59 2024 GMT
Not After : Feb 21 15:30:22 2025 GMT
Subject: CN=F7AC723141C36D7A571DE716E7E5950741C4AA50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:f6:a3:ac:27:0d:a6:d7:8e:c5:f2:c9:63:f9:
a0:3e:63:54:3e:aa:1e:dd:c9:65:74:f9:30:43:ff:
32:d1:9e:3c:11:2a:a9:ce:cc:d5:31:17:30:f4:31:
41:9d:24:4b:06:13:db:6a:28:15:af:eb:64:41:ea:
d3:1b:92:a5:ad:ca:cd:46:26:08:06:fc:99:6d:16:
49:38:5d:72:88:77:db:07:c2:62:83:e1:90:21:a0:
cc:d0:be:d1:b2:6c:cc:1a:f8:bd:3e:9e:05:0e:d9:
3e:f2:b7:a9:5a:89:1f:11:45:bf:6e:b6:35:85:b6:
1b:54:cf:c3:ab:0e:f2:b8:1a:c3:64:0a:68:f4:9e:
f5:0e:72:36:d1:eb:f7:f4:4b:b9:92:24:91:10:16:
92:1a:84:61:b9:d8:ca:1f:03:50:91:fc:01:a9:46:
55:95:ee:6a:87:41:5c:61:e7:37:8f:f8:f9:fc:07:
80:69:9b:21:e3:db:7f:9a:bb:43:51:6c:e7:24:17:
3f:23:57:8a:1c:51:6b:31:c6:8b:79:c4:45:1d:30:
f5:77:ef:2a:8c:c4:8c:ca:df:a0:c1:46:56:88:5b:
de:03:8f:8f:5d:14:33:6c:86:54:59:c5:d5:72:4c:
5d:75:cc:d7:29:b2:d0:c5:ad:69:3b:22:e4:05:7a:
e9:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:AC:72:31:41:C3:6D:7A:57:1D:E7:16:E7:E5:95:07:41:C4:AA:50
X509v3 Authority Key Identifier:
keyid:6B:3C:09:A6:D4:8E:6F:4E:17:60:ED:D8:94:2C:43:6D:0A:19:63:87
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FUYU/azwJptSOb04XYO3YlCxDbQoZY4c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/azwJptSOb04XYO3YlCxDbQoZY4c.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FUYU/96xyMUHDbXpXHecW5-WVB0HEqlA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:81a0::/32
Signature Algorithm: sha256WithRSAEncryption
3e:2c:a5:83:97:52:32:87:1a:7b:a6:bb:cf:ff:44:0d:8f:14:
8c:b2:c1:3e:16:a2:48:f1:27:87:c3:4a:49:3e:c1:1a:de:5b:
b5:b4:12:40:70:f4:4e:80:ca:66:03:57:6d:29:aa:66:0e:fc:
3f:61:d9:5c:05:23:c7:31:51:cc:85:52:4f:9c:c2:66:80:e0:
c5:53:7d:19:10:95:0d:ac:9d:39:9f:bf:be:ee:d1:eb:d9:94:
04:72:96:74:99:fc:7a:c2:09:2c:08:9a:62:61:0b:e5:40:b7:
77:14:9a:d5:10:03:d1:b8:b4:96:66:aa:e4:a8:87:c1:b9:8d:
4b:eb:16:7c:6d:a4:d9:2d:6e:d6:64:54:51:41:df:4e:cd:b2:
b7:44:0d:a9:0e:5e:85:1f:f4:60:58:2e:27:6b:aa:a6:84:3d:
40:18:96:1c:43:8e:18:3b:d6:8c:b5:3a:ca:13:98:50:6b:c3:
56:46:f2:e9:b5:4d:e6:0f:83:db:fa:96:d6:ed:72:f5:63:da:
90:ea:63:60:fe:84:92:cb:00:5f:0d:eb:b1:40:23:86:7c:5c:
49:b6:03:b7:49:c2:21:72:13:75:1b:f9:9f:aa:d6:74:1e:ea:
b2:be:73:6b:77:c3:74:61:9c:8a:f7:8e:39:ae:c4:fe:d7:b9:
c9:73:bd:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:14:33 2025 by rpki-client