Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IAMT/WTjaWmYJdv7V8sDS2BF49s3J85g.roa
File: WTjaWmYJdv7V8sDS2BF49s3J85g.roa (raw, json)
Hash identifier: X50FHLr8Vf18if055EJXtt7EsB/iVBYRuKYlDStqjX8=
Subject key identifier: 59:38:DA:5A:66:09:76:FE:D5:F2:C0:D2:D8:11:78:F6:CD:C9:F3:98
Certificate issuer: /CN=6CA5B8B7E0A281C467262246DF0C859DF5F87F1F
Certificate serial: E8
Authority key identifier: 6C:A5:B8:B7:E0:A2:81:C4:67:26:22:46:DF:0C:85:9D:F5:F8:7F:1F
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/bKW4t-CigcRnJiJG3wyFnfX4fx8.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/WTjaWmYJdv7V8sDS2BF49s3J85g.roa
Signing time: Mon 10 Feb 2025 13:45:21 +0000
ROA not before: Mon 10 Feb 2025 13:45:21 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 152609
IP address blocks: 2401:8c20:1::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 232 (0xe8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6CA5B8B7E0A281C467262246DF0C859DF5F87F1F
Validity
Not Before: Feb 10 13:45:21 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=5938DA5A660976FED5F2C0D2D81178F6CDC9F398
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:21:02:9c:cb:3e:53:a0:25:4c:b0:b9:07:45:
ae:e2:ed:86:67:38:a4:db:58:97:ca:a1:4a:a7:3f:
0f:24:4c:d8:4f:2f:a8:2d:ab:1e:02:da:e1:85:ca:
a2:c9:7c:e2:26:df:61:97:44:e0:ed:3e:dc:28:27:
82:fb:3d:c8:c5:7e:4a:b4:96:81:4e:87:be:fe:9c:
04:0f:56:c1:05:e3:06:36:98:ff:df:73:eb:75:dc:
f2:68:76:75:04:cb:05:55:80:0f:a1:63:20:e2:6f:
e7:10:ae:27:1e:20:66:6d:81:32:7e:f0:f4:08:65:
ed:bb:c7:fc:5a:2b:02:ce:a6:cb:e4:b5:ae:b3:c3:
b6:0f:3f:30:d2:79:60:ec:30:50:45:a1:69:44:b4:
ad:62:e1:c7:24:30:1c:9c:18:58:a1:8b:82:86:0d:
e3:53:4b:49:25:93:48:22:3d:dd:34:88:a4:e6:ad:
ac:0e:a7:86:12:1a:34:c6:dd:27:1d:f7:7a:e7:c9:
d6:6f:db:2c:de:a6:51:e1:1e:f0:76:1f:04:62:12:
6d:75:0f:6b:35:e5:1b:16:aa:d1:c7:09:36:af:9a:
e6:b1:7a:4d:8b:ec:b8:92:c5:29:43:3b:92:cd:b1:
8d:ea:e1:a6:ad:70:70:65:0a:5e:da:b0:81:06:d1:
94:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:38:DA:5A:66:09:76:FE:D5:F2:C0:D2:D8:11:78:F6:CD:C9:F3:98
X509v3 Authority Key Identifier:
keyid:6C:A5:B8:B7:E0:A2:81:C4:67:26:22:46:DF:0C:85:9D:F5:F8:7F:1F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/bKW4t-CigcRnJiJG3wyFnfX4fx8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/bKW4t-CigcRnJiJG3wyFnfX4fx8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/WTjaWmYJdv7V8sDS2BF49s3J85g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:8c20:1::/48
Signature Algorithm: sha256WithRSAEncryption
7d:ea:dd:97:67:6f:01:63:74:c2:0b:d8:f9:b6:46:5e:ce:bf:
29:1b:04:2e:0b:17:5b:5c:c9:2f:fe:bc:0e:c6:92:6c:a1:ea:
9f:6f:45:b0:56:42:6b:c3:03:b3:02:a1:04:ef:42:f3:ad:55:
db:8a:44:3e:0d:f0:3e:35:1a:b9:26:53:ef:0b:a6:59:49:67:
98:95:5d:76:43:25:1d:20:5c:b1:08:bb:65:55:56:1f:2d:3a:
7e:6b:87:82:4a:e3:01:cf:19:13:6a:f4:ef:16:ec:e2:cb:a3:
52:36:67:7a:5f:f1:2b:ea:94:64:7a:c8:4b:5d:c7:04:cf:34:
10:43:10:af:d7:74:70:c4:e1:03:4f:d3:62:1b:37:91:b7:bd:
7c:e5:ae:29:ed:aa:53:42:53:bf:31:db:c3:59:3f:58:fc:d9:
47:19:b1:54:27:04:6c:7d:a4:38:68:34:88:e0:8b:08:e3:6a:
a2:d8:23:ed:2c:57:d3:a4:24:76:cd:fc:b2:03:43:8a:7c:f5:
64:9e:bf:35:e6:1e:d5:70:69:2a:49:1b:67:f1:78:fb:44:92:
50:bd:e1:41:6f:e0:91:36:e7:f3:ff:73:02:49:f1:fa:2a:10:
94:4b:67:cc:18:af:80:12:da:57:78:3a:3c:7f:5a:eb:ed:f4:
31:d1:1b:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 19:14:31 2025 by rpki-client