Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LEYUN/3hpMAOsvuLm3bUfXD8ooeOm_TRA.roa
File: 3hpMAOsvuLm3bUfXD8ooeOm_TRA.roa (raw, json)
Hash identifier: ZtDBLdmUpoco8Lnj8JjN2ewsO0G8yC3M3iY9TK4zrLc=
Subject key identifier: DE:1A:4C:00:EB:2F:B8:B9:B7:6D:47:D7:0F:CA:28:78:E9:BF:4D:10
Certificate issuer: /CN=AE0A7B3E88A24A81BE91A09695691D5D1845194D
Certificate serial: 0102
Authority key identifier: AE:0A:7B:3E:88:A2:4A:81:BE:91:A0:96:95:69:1D:5D:18:45:19:4D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/rgp7PoiiSoG-kaCWlWkdXRhFGU0.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LEYUN/3hpMAOsvuLm3bUfXD8ooeOm_TRA.roa
Signing time: Sat 07 Dec 2024 13:59:36 +0000
ROA not before: Sat 07 Dec 2024 13:59:36 +0000
ROA not after: Tue 14 Oct 2025 15:30:32 +0000
asID: 18040
IP address blocks: 2401:cd20::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 258 (0x102)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AE0A7B3E88A24A81BE91A09695691D5D1845194D
Validity
Not Before: Dec 7 13:59:36 2024 GMT
Not After : Oct 14 15:30:32 2025 GMT
Subject: CN=DE1A4C00EB2FB8B9B76D47D70FCA2878E9BF4D10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:98:6a:ab:bb:91:3e:38:e1:c0:75:8f:bf:ea:
68:4f:cc:a2:bf:a1:77:00:04:fb:28:e5:9e:8d:c3:
b0:81:e4:8b:85:a4:b7:25:6f:96:3e:c4:0b:5e:18:
70:12:c0:ba:98:c7:ad:07:48:84:4e:bf:e0:57:aa:
07:4b:66:ca:84:22:27:a8:3c:e7:b3:5e:34:d9:a6:
71:df:46:04:c4:87:a8:2f:f0:33:f6:62:c1:2e:db:
cd:02:60:3e:e6:62:77:59:f5:f6:73:65:09:e3:18:
4d:f9:d9:35:2c:38:91:ef:78:08:c9:88:78:8e:e7:
ba:d9:62:70:36:be:fd:8d:26:ea:9c:95:40:ac:36:
fe:3b:c6:a1:88:70:89:5b:43:98:4c:9e:d5:70:6b:
59:76:82:9d:f8:a0:cb:4f:59:64:2d:ac:99:8d:17:
82:35:b1:b6:54:74:72:a2:76:be:56:d1:7a:b5:58:
7f:cc:7c:a2:d6:d1:61:2f:f8:85:c2:a4:48:68:8a:
95:40:8e:77:a2:92:2c:e4:22:73:34:e1:ef:1b:f6:
d3:50:bb:c0:71:68:77:11:9a:5d:f0:17:c6:ec:3a:
03:cb:95:9e:16:21:f1:f6:c5:e4:b7:32:28:86:05:
76:9f:99:a1:56:b1:79:56:94:5b:f1:36:3f:1b:55:
b8:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:1A:4C:00:EB:2F:B8:B9:B7:6D:47:D7:0F:CA:28:78:E9:BF:4D:10
X509v3 Authority Key Identifier:
keyid:AE:0A:7B:3E:88:A2:4A:81:BE:91:A0:96:95:69:1D:5D:18:45:19:4D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LEYUN/rgp7PoiiSoG-kaCWlWkdXRhFGU0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/rgp7PoiiSoG-kaCWlWkdXRhFGU0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LEYUN/3hpMAOsvuLm3bUfXD8ooeOm_TRA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:cd20::/32
Signature Algorithm: sha256WithRSAEncryption
99:3d:13:d3:a8:d2:25:fe:ab:10:aa:da:cf:30:45:dc:8f:9d:
eb:6f:b1:47:73:c2:cf:5a:76:26:8a:c4:20:9c:36:cd:57:d2:
04:54:31:71:ec:96:ad:8d:b3:7a:80:3c:ad:3e:97:90:76:42:
5c:0b:b1:ec:ab:c1:93:1e:e2:a9:e2:d5:b8:97:0d:c4:d4:e9:
4f:3c:8a:ee:81:5d:18:39:73:b6:ac:15:f9:80:61:24:7b:b8:
d4:3c:c9:6e:2b:01:9e:f6:fd:1f:fe:54:09:a4:8a:62:77:98:
67:bd:ff:f0:02:2a:72:fd:f0:00:e7:0b:3b:b7:b7:69:34:c8:
44:70:ad:dc:d1:ab:99:e7:05:19:23:bc:15:80:3f:93:76:a6:
19:67:44:50:c3:76:96:e2:29:af:7e:e3:9a:fe:97:40:b1:59:
d3:58:65:64:b1:82:72:38:9f:0d:d7:39:8d:58:41:29:d1:52:
78:82:67:37:92:01:15:c3:f0:b9:9f:d5:a1:2a:37:00:96:30:
c4:c6:20:84:7c:66:9c:3e:5b:bd:69:8a:c3:45:14:ae:fc:5a:
4e:1f:41:2e:bd:a5:87:ec:de:78:a5:d2:fc:dd:2e:ba:01:36:
1e:ac:60:10:15:22:00:d7:3f:e5:cd:3e:96:70:71:ff:7b:86:
03:31:aa:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 12:52:21 2025 by rpki-client