Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/XF8R1tSl9QJhoJwgyHzvG04Ze50.roa
File: XF8R1tSl9QJhoJwgyHzvG04Ze50.roa (raw, json)
Hash identifier: tTnfJEBIqEO4u3F6YGPMc2yAyaYwJMeBiAW2mWGU4QA=
Subject key identifier: 5C:5F:11:D6:D4:A5:F5:02:61:A0:9C:20:C8:7C:EF:1B:4E:19:7B:9D
Certificate issuer: /CN=ABED28FFCC040E36032C42615495562BCC6EF45C
Certificate serial: 056C
Authority key identifier: AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/XF8R1tSl9QJhoJwgyHzvG04Ze50.roa
Signing time: Fri 01 Sep 2023 09:00:33 +0000
ROA not before: Fri 01 Sep 2023 09:00:33 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9678
IP address blocks: 2401:95c0::/36 maxlen: 36
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1388 (0x56c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ABED28FFCC040E36032C42615495562BCC6EF45C
Validity
Not Before: Sep 1 09:00:33 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=5C5F11D6D4A5F50261A09C20C87CEF1B4E197B9D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:f9:8f:87:4d:4b:35:c8:e3:5f:ef:fc:c7:b2:
80:de:00:4c:d0:02:b3:0b:12:b8:4e:09:bf:79:5b:
f3:24:c8:d8:3d:e1:5f:c2:42:93:f2:2a:4e:b9:c1:
71:1f:c9:1a:00:5d:51:5c:1a:9e:bd:fc:de:1c:14:
2d:35:a7:91:b2:9c:43:29:fd:f1:f5:98:e2:97:67:
af:1b:da:30:d3:99:67:b6:2b:ee:49:e0:b6:50:10:
55:d7:6b:17:6d:b6:d3:91:61:36:4a:74:2a:fe:71:
3b:1a:55:cc:34:f5:a8:6d:35:7c:d6:ae:e1:a2:17:
29:67:72:fb:ee:03:ff:58:6f:9c:3b:f5:4d:ad:09:
b8:6e:7e:da:7d:5e:bb:95:06:be:05:6b:2e:7c:9f:
d4:39:60:b7:8b:5f:7c:61:a4:a5:5f:47:59:d4:00:
2c:4a:16:54:45:ad:61:02:a7:e2:29:34:3f:4a:3c:
a7:25:04:76:92:61:29:d1:63:45:84:78:37:be:a6:
2a:6a:31:5b:b1:f1:7f:09:df:04:69:e5:82:49:76:
3b:4a:e1:02:c3:14:ae:22:be:f4:a5:25:8f:d1:12:
35:1d:b7:3a:db:6b:4b:04:df:6b:b1:32:97:1f:8a:
3d:ea:47:6c:e9:5c:d2:34:b4:65:ea:9c:2b:7c:13:
bf:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:5F:11:D6:D4:A5:F5:02:61:A0:9C:20:C8:7C:EF:1B:4E:19:7B:9D
X509v3 Authority Key Identifier:
keyid:AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/XF8R1tSl9QJhoJwgyHzvG04Ze50.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:95c0::/36
Signature Algorithm: sha256WithRSAEncryption
90:05:1b:c8:63:7a:a3:17:fc:94:39:2f:9a:6f:a1:05:15:1e:
01:7a:95:98:82:32:fa:02:dc:18:12:83:68:bc:16:30:8e:d3:
a7:af:7f:c2:2f:38:31:f1:74:33:b3:73:1a:fe:a6:82:79:e3:
87:53:ca:96:3a:39:33:0c:87:6b:dd:0b:bf:48:a4:8b:54:9f:
9e:22:d1:7c:69:d5:1b:dd:e2:40:df:cd:a7:5c:6a:21:5b:50:
51:1a:65:b9:f6:e9:75:67:bf:8c:fe:17:06:3a:bd:10:ce:fc:
fa:2a:f4:df:6f:1d:c7:0b:50:d1:e3:a2:36:31:e9:f2:cc:74:
05:39:73:e0:6b:87:60:e7:4e:be:81:63:30:04:05:72:71:2a:
d4:47:86:fd:e6:8f:f5:79:4a:ac:6f:04:78:6a:c0:3a:6c:c7:
21:26:20:ee:6e:fa:f0:d3:8d:8c:74:a5:e9:5c:d3:73:ab:16:
2f:dd:f1:7d:87:29:3d:af:c8:a5:04:b3:4d:77:67:95:d5:f5:
1f:14:2d:fe:c4:3a:90:9b:8c:3c:39:f6:78:2b:c2:9c:e0:3a:
fc:9d:65:cb:a7:0c:9f:48:17:3c:65:a0:53:5a:60:8f:ba:bb:
50:9f:98:18:68:dd:5b:6c:91:8c:6e:8d:43:d1:4f:5e:a7:3a:
dd:3e:e8:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:20 2024 by rpki-client on console-fra.rpki-client.org