Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/Q1M4CGV53Tpz_IjU0MZxP6Gy84w.roa
File: Q1M4CGV53Tpz_IjU0MZxP6Gy84w.roa (raw, json)
Hash identifier: tLHbm8ZU3gUId8yCMcSBMtF2C83A2nrl6AVlUqBKBUE=
Subject key identifier: 43:53:38:08:65:79:DD:3A:73:FC:88:D4:D0:C6:71:3F:A1:B2:F3:8C
Certificate issuer: /CN=ABED28FFCC040E36032C42615495562BCC6EF45C
Certificate serial: 0570
Authority key identifier: AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/Q1M4CGV53Tpz_IjU0MZxP6Gy84w.roa
Signing time: Fri 01 Sep 2023 09:00:34 +0000
ROA not before: Fri 01 Sep 2023 09:00:34 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9678
IP address blocks: 2401:95c0:2d03::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1392 (0x570)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ABED28FFCC040E36032C42615495562BCC6EF45C
Validity
Not Before: Sep 1 09:00:34 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=435338086579DD3A73FC88D4D0C6713FA1B2F38C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:44:06:17:62:5b:47:5c:93:6b:6b:de:90:c8:
a0:ba:52:ab:42:2c:e8:d0:7a:00:a0:ee:2b:ec:48:
a1:12:00:86:8f:c7:b8:a4:8d:38:e9:59:0c:7e:e3:
2f:f0:e2:a2:8a:bd:c4:3f:6d:78:aa:89:65:b8:22:
d3:a9:af:fc:32:1b:38:61:0a:cf:68:b2:de:12:3d:
5a:8f:20:1e:14:d8:9e:3f:04:b9:9b:61:c4:06:4c:
0d:78:b5:96:c3:fe:29:b5:ea:35:f1:a9:96:73:60:
06:98:90:3f:df:fa:13:5a:24:06:74:aa:89:45:e7:
e9:9e:fb:4b:60:5a:e5:2c:02:83:73:08:23:a5:28:
12:ed:fb:03:c8:8a:b8:12:9c:c8:6b:e9:cc:3c:fe:
e6:d2:18:f5:27:e3:78:10:f3:89:2f:4f:60:3b:3b:
89:30:3b:90:2b:86:11:80:1c:e5:55:7f:91:9d:39:
e0:eb:f2:44:ce:5c:01:46:9e:6c:29:26:29:aa:da:
7a:fc:55:79:83:18:ee:5f:89:b9:64:dd:f0:38:b8:
91:5b:fa:9d:44:25:9c:38:4f:bd:32:2a:c0:4d:e5:
b9:d7:c6:17:6d:c5:44:0f:8a:65:18:ad:25:f8:c1:
08:a0:4e:62:f3:e7:41:82:9c:bf:00:7e:e0:03:6a:
8a:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:53:38:08:65:79:DD:3A:73:FC:88:D4:D0:C6:71:3F:A1:B2:F3:8C
X509v3 Authority Key Identifier:
keyid:AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/Q1M4CGV53Tpz_IjU0MZxP6Gy84w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:95c0:2d03::/48
Signature Algorithm: sha256WithRSAEncryption
c3:a8:82:01:bd:51:5b:56:16:df:ae:12:bf:23:b5:3d:13:92:
93:a6:cd:43:4c:53:5b:2b:64:c7:90:5e:e4:62:3f:5f:09:13:
11:eb:73:95:14:8a:54:0a:e3:e3:a3:d2:30:bb:fb:50:d3:db:
96:37:80:fc:c7:c3:cb:c6:ff:6d:7d:d1:68:45:3f:89:7d:00:
c1:4f:41:9f:3a:e5:95:8c:1c:5a:c6:99:b2:1a:3c:34:db:c4:
6b:c1:72:62:e9:bd:ff:2b:7e:af:94:c6:3e:27:19:27:27:1b:
07:67:ba:df:ab:71:a0:ad:53:b1:26:60:25:0d:0d:b5:02:2c:
bf:c6:f8:a0:ad:4c:70:61:14:b9:44:f0:a9:87:42:14:41:f8:
c4:65:09:d4:ac:88:17:53:ee:ad:de:ac:7d:f7:08:85:82:f1:
bf:35:f8:05:84:11:37:90:84:2e:07:6d:f5:e5:3b:32:5a:91:
38:2b:e1:ba:4e:59:4f:0e:56:d6:c1:6e:02:19:d5:53:43:03:
ef:20:52:81:01:7b:1a:71:16:d3:f2:2b:54:f9:04:83:cc:77:
02:a6:f9:eb:3f:eb:88:72:ff:c9:65:00:d4:0a:65:47:e7:0d:
9d:a4:c6:cd:19:0d:cb:80:03:32:01:5e:ac:f6:7a:17:24:9d:
4e:c5:71:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:20 2024 by rpki-client on console-fra.rpki-client.org