Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IMCLOUD/-V7vMoLvZf7FJXNOz1t6NP1DbvQ.roa
File: -V7vMoLvZf7FJXNOz1t6NP1DbvQ.roa (raw, json)
Hash identifier: N0AeDI0JWOcTsJTPyenGupMDhXcPx/n8tcKK6RkvdF4=
Subject key identifier: F9:5E:EF:32:82:EF:65:FE:C5:25:73:4E:CF:5B:7A:34:FD:43:6E:F4
Certificate issuer: /CN=61E0EE79428B85EDABB5F6EB9578EFB19E63C98F
Certificate serial: 0D97
Authority key identifier: 61:E0:EE:79:42:8B:85:ED:AB:B5:F6:EB:95:78:EF:B1:9E:63:C9:8F
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YeDueUKLhe2rtfbrlXjvsZ5jyY8.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCLOUD/-V7vMoLvZf7FJXNOz1t6NP1DbvQ.roa
Signing time: Fri 01 Sep 2023 09:02:33 +0000
ROA not before: Fri 01 Sep 2023 09:02:33 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 134823
IP address blocks: 2404:a3c0::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3479 (0xd97)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61E0EE79428B85EDABB5F6EB9578EFB19E63C98F
Validity
Not Before: Sep 1 09:02:33 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=F95EEF3282EF65FEC525734ECF5B7A34FD436EF4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:a5:cc:3b:3c:e5:cc:6f:fc:75:f3:6a:70:79:
87:43:dc:d0:5b:ce:78:b6:0b:c2:e8:00:70:40:37:
b0:53:2e:33:51:89:a3:89:a7:e3:de:9d:f0:b7:bf:
fc:e8:30:18:2e:58:f1:3d:6f:13:b9:d6:1d:f7:44:
44:13:44:4c:4a:3d:71:42:45:62:71:4b:19:03:c1:
8f:f1:39:f6:6a:26:e8:a7:e6:5a:4d:f4:69:00:47:
69:8a:35:cd:e4:ba:1a:27:0a:d0:dd:aa:3d:44:56:
dc:2f:e6:71:06:bc:b9:33:0c:06:7c:64:3c:bf:52:
98:5b:3c:98:cb:64:37:ad:00:00:27:af:8b:3c:ce:
8c:4b:89:1b:85:9c:7e:56:e6:5c:fd:96:2e:56:f2:
94:44:68:b7:9e:96:70:b7:82:13:bd:fd:79:e9:24:
8f:00:22:7f:48:09:c9:3b:58:32:de:c2:ed:39:f8:
3b:22:57:c9:af:7a:21:49:fe:9f:92:76:74:d1:b0:
9f:13:50:23:0b:7a:6a:76:f7:22:3a:50:5b:81:33:
93:a1:77:24:0d:ae:b9:31:30:ec:32:8d:2b:24:e8:
97:64:61:96:6d:77:e6:e6:58:85:fd:9a:75:8b:46:
e5:49:6c:d3:25:05:62:ae:a6:14:13:9b:2a:b2:a2:
f7:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:5E:EF:32:82:EF:65:FE:C5:25:73:4E:CF:5B:7A:34:FD:43:6E:F4
X509v3 Authority Key Identifier:
keyid:61:E0:EE:79:42:8B:85:ED:AB:B5:F6:EB:95:78:EF:B1:9E:63:C9:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCLOUD/YeDueUKLhe2rtfbrlXjvsZ5jyY8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YeDueUKLhe2rtfbrlXjvsZ5jyY8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCLOUD/-V7vMoLvZf7FJXNOz1t6NP1DbvQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:a3c0::/32
Signature Algorithm: sha256WithRSAEncryption
21:c5:8a:f3:58:2c:7c:48:e4:04:32:f3:58:3b:36:50:ea:2e:
3a:bf:e1:68:e0:a3:89:00:9e:97:85:c0:55:75:92:61:83:b4:
4d:db:cb:36:4f:3e:c9:d2:37:f0:09:03:e0:d0:6a:95:e8:88:
fa:71:b9:25:cb:d9:e2:89:08:ab:7e:cf:35:f5:0d:83:e3:15:
61:0c:a1:da:f0:75:fd:ae:01:88:0b:aa:c2:42:02:ee:58:f1:
d2:63:56:5d:2e:30:5f:7b:c5:47:af:31:43:de:36:78:31:c6:
c7:8f:09:ba:90:2b:b4:cd:6f:d8:86:1a:ca:49:26:70:03:86:
d3:38:c5:5d:b8:86:4a:45:0e:91:54:99:86:af:1e:ff:99:1c:
de:9a:13:e5:97:b5:33:3a:c4:77:1d:10:c9:3b:ee:df:19:7c:
c2:c6:09:2d:ad:99:70:2f:62:89:33:23:fd:6a:0f:1d:7f:0d:
34:6c:11:bd:03:8e:39:85:2a:3b:9e:fd:08:d0:e1:af:fa:20:
c1:6a:fe:98:8a:03:33:31:56:fc:f8:d8:0a:9d:22:f8:1f:e7:
57:00:36:ac:ab:7d:6d:8a:d1:77:04:ca:d5:6a:6e:59:f4:67:
66:ac:8d:ef:b1:2f:16:c0:07:1b:31:d9:5d:46:2f:33:3c:cd:
58:c2:44:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:28:52 2025 by rpki-client