Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/FxB3Q32a3BnWyiP5b_uCAq3tb2w.roa
File: FxB3Q32a3BnWyiP5b_uCAq3tb2w.roa (raw, json)
Hash identifier: 2gMzBjObqaOLZrEHE3cbEyU226D2BIbrTa4GZkt1LLU=
Subject key identifier: 17:10:77:43:7D:9A:DC:19:D6:CA:23:F9:6F:FB:82:02:AD:ED:6F:6C
Certificate issuer: /CN=ABED28FFCC040E36032C42615495562BCC6EF45C
Certificate serial: 06CE
Authority key identifier: AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/FxB3Q32a3BnWyiP5b_uCAq3tb2w.roa
Signing time: Wed 11 Dec 2024 13:04:55 +0000
ROA not before: Wed 11 Dec 2024 13:04:55 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9678
IP address blocks: 2401:95c0:101::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1742 (0x6ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ABED28FFCC040E36032C42615495562BCC6EF45C
Validity
Not Before: Dec 11 13:04:55 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=171077437D9ADC19D6CA23F96FFB8202ADED6F6C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:02:e5:82:25:ba:67:27:d8:63:a7:a2:b8:44:
6e:d9:5a:7e:25:66:6b:fa:ac:b1:30:9a:06:91:c9:
bc:b8:88:71:8c:bc:92:3b:c0:ec:76:90:ce:15:5a:
c0:71:9f:70:b5:78:71:b1:44:d5:b9:3e:60:f6:10:
30:78:42:61:bc:d0:2f:64:c3:78:3f:ab:35:82:83:
77:3e:d4:1a:f9:a9:56:0f:f8:e6:53:e1:05:7b:ff:
5e:04:37:e3:6a:55:86:ca:a3:0a:c9:07:51:8c:db:
84:45:29:f8:73:33:ef:b3:a2:95:1d:42:f1:e2:83:
37:e3:dd:10:1d:0d:de:b1:b1:50:66:ed:e8:cc:58:
22:80:fa:ea:17:d0:38:64:b8:7e:93:78:34:64:fe:
9b:1b:b7:ca:7e:2c:d5:ee:8a:65:f9:7d:b3:9f:98:
b7:1c:50:7f:c2:d4:06:69:88:46:2f:cb:16:45:54:
64:de:c6:a2:ab:f4:3d:0c:f6:c1:1d:92:91:d2:b4:
0a:12:62:b3:30:6e:8a:bb:a8:39:ea:7b:d9:5e:4f:
a8:0a:bb:35:9f:52:39:ea:64:e7:55:d2:b5:35:cf:
20:56:17:3e:df:95:da:0b:86:ab:1e:54:24:ee:84:
bb:b6:fa:fa:e5:b4:32:12:40:04:76:3b:dc:a9:36:
48:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:10:77:43:7D:9A:DC:19:D6:CA:23:F9:6F:FB:82:02:AD:ED:6F:6C
X509v3 Authority Key Identifier:
keyid:AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/FxB3Q32a3BnWyiP5b_uCAq3tb2w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:95c0:101::/48
Signature Algorithm: sha256WithRSAEncryption
11:0f:b2:ef:20:17:8a:ba:b7:69:e2:ef:39:c1:b0:11:b4:b2:
e0:55:1a:9b:09:c1:b0:30:92:c4:10:3c:1b:51:2b:59:f5:6f:
70:61:55:ed:4c:25:b6:e3:bd:66:f9:9e:6c:d7:f8:b1:67:f5:
aa:9d:57:b7:25:1d:28:9e:b0:03:c3:ef:61:cb:cb:e7:2d:76:
4c:69:07:b8:49:94:23:05:75:9a:b6:db:5c:5b:8b:f0:62:e9:
02:35:b2:29:0b:a2:df:5c:a4:ec:cb:46:cb:51:e4:6e:34:d0:
73:e9:43:ee:75:95:67:a7:60:89:93:52:38:58:e3:4d:d3:01:
5f:96:19:21:8f:38:5d:9c:0b:e8:e7:eb:17:14:7e:e6:87:d5:
ba:70:d7:9c:93:0c:08:87:eb:fd:ad:2e:4f:62:a6:45:cc:9b:
75:fe:fb:26:5a:48:02:ec:91:6d:6e:31:6d:96:d7:ec:8e:18:
a0:76:d6:33:79:99:28:57:f0:ea:2f:b2:80:8d:a1:4a:5d:08:
d1:11:be:01:e0:39:e5:d0:10:b4:2a:3d:b5:85:68:fc:5e:86:
6c:41:5a:37:0e:0c:96:ec:9b:ce:ca:f5:26:70:1a:1e:df:18:
cf:3b:7c:74:6f:f8:5f:40:e4:2c:3a:68:65:38:84:b0:5a:7b:
f6:a5:39:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 12:56:54 2025 by rpki-client