Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/MvHruxY96kD-qCBugbdjtmmBFqg.roa
File: MvHruxY96kD-qCBugbdjtmmBFqg.roa (raw, json)
Hash identifier: NsJrMntDNYwMp0yOZF8DQBJV4OXT+V11hy9ltRoBf9c=
Subject key identifier: 32:F1:EB:BB:16:3D:EA:40:FE:A8:20:6E:81:B7:63:B6:69:81:16:A8
Certificate issuer: /CN=ABED28FFCC040E36032C42615495562BCC6EF45C
Certificate serial: 0700
Authority key identifier: AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/MvHruxY96kD-qCBugbdjtmmBFqg.roa
Signing time: Mon 10 Feb 2025 14:22:50 +0000
ROA not before: Mon 10 Feb 2025 14:22:50 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 206729
IP address blocks: 2401:95c0:f001::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1792 (0x700)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ABED28FFCC040E36032C42615495562BCC6EF45C
Validity
Not Before: Feb 10 14:22:50 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=32F1EBBB163DEA40FEA8206E81B763B6698116A8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:f9:e0:31:8e:10:f1:ba:79:7c:00:5f:b6:d4:
0b:be:68:93:ff:9c:90:06:59:dd:8d:90:43:a9:be:
ec:8c:0f:bc:37:e5:b0:59:f5:a7:05:02:b8:a0:ee:
30:c8:98:c8:ce:d7:05:d7:60:23:3e:f8:2d:e9:ab:
c1:f5:94:55:8d:fa:73:ad:ba:d4:80:44:13:9a:d7:
34:c6:86:06:ec:01:61:d4:a3:47:7c:ec:9b:c2:b2:
86:99:2e:b7:ba:93:28:35:88:bf:5c:9a:1b:a2:b4:
73:98:3e:df:ad:60:5c:67:8f:82:9b:0c:f3:f4:c8:
26:73:5e:7e:44:94:cd:d8:ce:58:fe:ea:62:5e:42:
3d:53:e7:38:20:c6:aa:32:eb:b8:3a:3c:1c:27:15:
f5:26:81:2e:42:94:56:31:2e:22:2c:91:e2:15:3f:
0c:aa:f7:07:b6:9e:25:68:99:37:3f:b7:62:f0:33:
8b:ba:15:fa:17:85:46:3d:0a:5d:2d:96:5b:d4:b8:
e8:de:27:8c:cf:86:c2:58:ec:b4:eb:29:0d:10:15:
cb:90:ab:66:11:ed:10:db:47:27:fc:9b:8a:e2:f3:
11:c7:9e:b0:94:cd:2b:c6:9a:8f:53:92:d0:5c:4f:
9b:42:a1:67:f0:0e:2a:9d:1f:66:8d:b4:6a:98:d0:
cf:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:F1:EB:BB:16:3D:EA:40:FE:A8:20:6E:81:B7:63:B6:69:81:16:A8
X509v3 Authority Key Identifier:
keyid:AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/MvHruxY96kD-qCBugbdjtmmBFqg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:95c0:f001::/48
Signature Algorithm: sha256WithRSAEncryption
24:9a:aa:70:ad:b7:5b:26:ac:40:fd:16:15:cf:09:0f:07:f6:
ab:df:82:1d:72:05:ff:ab:3e:4c:ad:b3:e7:25:e9:40:61:ea:
e6:5d:a0:0f:8e:73:37:c9:08:99:eb:50:b4:4f:77:c7:32:03:
df:fc:45:60:1f:68:79:bd:c0:51:7c:1e:68:93:8f:06:43:82:
03:a6:96:7a:67:23:44:83:45:3a:81:03:d3:39:d9:a1:d8:03:
26:55:7f:9a:1f:05:a2:35:2a:26:22:34:22:f5:ec:96:80:07:
a3:10:6a:4c:76:7f:8f:fc:9e:c2:56:c7:1a:7b:ae:b4:7b:c5:
40:3a:74:50:8e:f5:c3:b4:9c:4f:ba:35:70:22:a2:ee:ae:5e:
ee:de:8f:c7:0e:28:dc:40:09:e3:32:d5:ea:b4:37:14:08:0a:
ee:a3:e7:f8:a8:26:25:97:e5:b7:b0:17:ba:76:99:9d:ab:c0:
41:a9:62:08:b9:82:f6:7c:dd:62:aa:a3:8d:b6:73:21:67:b0:
ec:96:06:4c:75:98:6e:03:ad:5c:22:55:c4:cf:d7:11:c4:88:
8e:0b:5f:f4:74:e2:36:61:91:aa:ac:ad:9e:a2:d8:29:a5:b9:
a3:4a:d3:91:59:fb:09:a8:56:9d:82:bf:59:42:7d:ba:ac:20:
fc:09:63:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 12:59:32 2025 by rpki-client