Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LANDBANK/iyJHbzmqK-nW-G9MpyrCpv2aa8Y.roa
File: iyJHbzmqK-nW-G9MpyrCpv2aa8Y.roa (raw, json)
Hash identifier: c5gWWi5HdE0OrLUqTUJ+XjGw215z5u7IkTJGFVcXAcU=
Subject key identifier: 8B:22:47:6F:39:AA:2B:E9:D6:F8:6F:4C:A7:2A:C2:A6:FD:9A:6B:C6
Certificate issuer: /CN=9ECBF170F7F7D2290E6AED39CA8D238F66072B7A
Certificate serial: 0C95
Authority key identifier: 9E:CB:F1:70:F7:F7:D2:29:0E:6A:ED:39:CA:8D:23:8F:66:07:2B:7A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/nsvxcPf30ikOau05yo0jj2YHK3o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LANDBANK/iyJHbzmqK-nW-G9MpyrCpv2aa8Y.roa
Signing time: Mon 10 Feb 2025 14:21:59 +0000
ROA not before: Mon 10 Feb 2025 14:21:59 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 2407:4700::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3221 (0xc95)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9ECBF170F7F7D2290E6AED39CA8D238F66072B7A
Validity
Not Before: Feb 10 14:21:59 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=8B22476F39AA2BE9D6F86F4CA72AC2A6FD9A6BC6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:43:4a:f2:39:72:36:bd:13:36:b9:49:e8:07:
d2:02:d6:b2:3e:a2:4b:38:bb:19:91:3b:0d:2d:97:
1f:b5:99:11:4b:3e:a8:68:bf:39:6f:70:4d:7c:24:
95:81:7b:ee:b2:f7:f2:4e:5b:d0:3d:3e:88:ff:3f:
e1:8e:00:47:68:39:9d:a6:e2:50:a6:48:b4:fd:98:
11:e6:e7:6f:cf:51:77:7a:6f:f0:1c:1e:3a:e4:17:
d1:f9:5d:47:28:6f:87:2e:ee:3d:dc:5e:52:5c:61:
e3:80:e1:a6:a5:14:c9:5d:39:1b:ee:e5:71:81:6c:
13:16:30:d9:3a:3a:97:a2:c2:e0:c8:25:6c:b8:ee:
07:16:a4:3a:1e:55:ed:61:ed:33:24:ae:9c:5b:cc:
4f:59:97:34:d0:b7:74:70:61:0a:72:22:14:04:94:
9d:d5:1a:d7:af:0c:aa:4a:43:cf:23:04:6b:af:a3:
b0:79:c9:9d:d7:00:40:89:7e:7f:cb:b6:e7:28:ba:
08:d0:ee:c0:8b:3c:91:33:e8:ab:92:e3:09:c5:9c:
47:54:79:21:d0:1d:6b:75:b0:47:5f:c7:fa:33:84:
b5:4d:5b:1c:3b:17:d7:46:01:e7:29:79:28:e8:61:
3d:53:16:6b:1e:ba:52:3d:9e:d0:82:6d:49:ec:06:
cc:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:22:47:6F:39:AA:2B:E9:D6:F8:6F:4C:A7:2A:C2:A6:FD:9A:6B:C6
X509v3 Authority Key Identifier:
keyid:9E:CB:F1:70:F7:F7:D2:29:0E:6A:ED:39:CA:8D:23:8F:66:07:2B:7A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LANDBANK/nsvxcPf30ikOau05yo0jj2YHK3o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/nsvxcPf30ikOau05yo0jj2YHK3o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LANDBANK/iyJHbzmqK-nW-G9MpyrCpv2aa8Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2407:4700::/32
Signature Algorithm: sha256WithRSAEncryption
90:fd:72:6d:de:dd:4f:6f:05:04:d7:48:f9:78:00:c4:3c:05:
a1:78:8c:80:68:0c:b5:fe:51:35:34:37:d6:ec:97:a1:3c:29:
1a:8f:84:1b:fa:a8:d9:a5:8d:9f:92:f7:60:29:ba:14:a1:e3:
43:16:55:fb:a3:b6:5d:85:5a:53:79:8a:a5:27:aa:0c:43:9b:
a6:79:4f:2c:d2:9a:73:85:c4:5d:12:96:fc:cd:ae:e4:5e:01:
83:b2:bc:33:ef:4a:9b:51:66:53:51:ab:f9:27:80:f5:a1:1c:
e2:a5:60:e6:6d:6a:8b:41:40:1e:ab:64:5e:41:da:0d:0d:29:
0e:62:3d:2b:3d:ce:88:2b:96:78:42:18:0b:1c:ed:c4:2d:00:
27:47:bb:7f:8e:c3:ce:14:4b:4c:79:c7:cc:d9:0d:cd:c5:37:
bb:13:46:eb:08:60:2b:f0:53:9c:ed:fa:29:fa:30:23:0f:a3:
66:b5:40:a9:3c:72:93:f9:01:7c:be:0c:11:81:82:2d:4e:0c:
83:39:45:51:a6:63:e1:97:8e:96:bb:32:df:3b:26:5b:b8:f6:
67:7a:79:4d:1e:1e:7b:a3:13:86:a6:4b:98:73:18:6b:4e:6a:
01:6d:d1:6d:40:99:93:19:7e:51:10:f7:68:b5:db:e6:c4:62:
c7:d0:a9:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 21:59:45 2025 by rpki-client