Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/lT9ey3XRf6E8WPdjf2UMHs8sroc.roa
File: lT9ey3XRf6E8WPdjf2UMHs8sroc.roa (raw, json)
Hash identifier: Sm8r834Lu24C9wWeD1+r4ZIZkJb6e8v0CjdZNOtHE5E=
Subject key identifier: 95:3F:5E:CB:75:D1:7F:A1:3C:58:F7:63:7F:65:0C:1E:CF:2C:AE:87
Certificate issuer: /CN=ABED28FFCC040E36032C42615495562BCC6EF45C
Certificate serial: 056E
Authority key identifier: AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/lT9ey3XRf6E8WPdjf2UMHs8sroc.roa
Signing time: Fri 01 Sep 2023 09:00:33 +0000
ROA not before: Fri 01 Sep 2023 09:00:33 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9678
IP address blocks: 2401:95c0:2000::/36 maxlen: 36
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1390 (0x56e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ABED28FFCC040E36032C42615495562BCC6EF45C
Validity
Not Before: Sep 1 09:00:33 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=953F5ECB75D17FA13C58F7637F650C1ECF2CAE87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:42:e7:35:8b:9a:a6:78:df:62:36:7b:0a:af:
09:b9:0a:1d:cb:6b:37:92:73:f8:eb:26:bb:52:58:
9d:04:31:11:3c:ba:10:c0:49:c3:e0:55:29:69:4c:
47:77:ff:8a:77:69:99:bc:7a:22:0e:ac:01:16:96:
53:6d:35:c5:e0:86:7a:eb:f5:96:6f:e0:70:d5:68:
8e:82:e0:da:d5:a6:97:9c:64:fb:cb:d3:70:79:86:
56:5c:86:67:d2:e1:75:02:40:0e:9d:ba:62:33:22:
e5:2a:21:6e:4b:8a:21:d9:ec:cb:7c:24:75:45:51:
0e:a9:e4:1a:05:5a:b9:43:c0:4c:a5:ae:5d:19:a6:
68:f6:67:07:0f:31:d9:63:8a:99:2a:e3:79:6e:f6:
57:1b:5d:9e:03:50:03:12:68:50:3f:1b:9b:0c:69:
a4:6e:73:d4:ce:22:bb:61:77:f0:80:6b:97:15:4f:
52:17:40:0a:8f:9e:ca:fe:10:e1:bd:d6:ea:7b:96:
4f:10:a0:04:f6:eb:7a:9a:be:67:77:2e:3c:c8:54:
28:98:f7:14:cf:04:e5:30:18:d6:b6:70:32:c3:61:
7d:0c:d1:e0:07:bb:16:b2:9e:f0:29:ea:7b:05:72:
cf:18:9f:19:2f:a9:fb:4b:a0:9b:09:4c:af:6f:bb:
43:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:3F:5E:CB:75:D1:7F:A1:3C:58:F7:63:7F:65:0C:1E:CF:2C:AE:87
X509v3 Authority Key Identifier:
keyid:AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/lT9ey3XRf6E8WPdjf2UMHs8sroc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:95c0:2000::/36
Signature Algorithm: sha256WithRSAEncryption
00:2f:f1:42:85:fa:e0:4c:fc:43:f2:a1:d8:69:5e:77:c9:df:
f6:38:e4:46:bd:37:28:76:57:90:07:56:5e:22:3f:99:19:fb:
2b:f7:db:ec:71:da:6e:f8:be:84:16:09:d8:a8:df:9a:e0:21:
bd:21:79:60:6a:72:2c:df:62:b9:52:e1:91:6b:3b:1b:33:22:
fe:9e:68:80:62:cc:a0:fe:00:7a:a0:e9:86:97:f5:bf:7e:08:
75:5e:94:cf:18:80:62:67:6f:f6:b1:0b:57:74:ae:30:e7:ef:
65:53:a1:a7:0e:09:27:18:38:4c:ec:7d:0c:5a:7d:dc:9f:5f:
bc:e5:a1:f8:c9:f6:a2:38:28:c5:93:1f:26:89:8e:c3:31:f2:
72:ed:40:57:1d:c6:1b:31:3c:d1:80:05:8b:a7:c9:c2:f1:51:
8a:6b:1a:df:80:2b:38:3f:fd:80:e0:2b:9d:ea:20:2e:8d:ec:
9e:33:39:61:db:c0:76:7f:f8:be:ed:ab:f8:47:9a:29:f3:e9:
dd:61:47:f8:d2:65:ee:aa:23:80:dd:74:67:61:9e:5e:b2:02:
8a:26:67:a6:81:26:5d:af:4b:76:e0:4e:1c:f2:b4:46:5f:df:
3b:44:09:62:50:7f:39:ff:b3:00:63:46:e6:fc:65:3f:c3:2d:
10:5c:17:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:13 2024 by rpki-client on console-ams.rpki-client.org