Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NSS/i0rDQamkrRfuj1EeF8ZbbTiw4Xw.roa
File: i0rDQamkrRfuj1EeF8ZbbTiw4Xw.roa (raw, json)
Hash identifier: gdE12CKkUSmD8DaimXMscq2USQQIx46d2KLUDKFF2e4=
Subject key identifier: 8B:4A:C3:41:A9:A4:AD:17:EE:8F:51:1E:17:C6:5B:6D:38:B0:E1:7C
Certificate issuer: /CN=7957076E29BFC1648EFF71A398BAAC4A9E886820
Certificate serial: 0BC9
Authority key identifier: 79:57:07:6E:29:BF:C1:64:8E:FF:71:A3:98:BA:AC:4A:9E:88:68:20
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/eVcHbim_wWSO_3GjmLqsSp6IaCA.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NSS/i0rDQamkrRfuj1EeF8ZbbTiw4Xw.roa
Signing time: Fri 24 May 2024 08:12:16 +0000
ROA not before: Fri 24 May 2024 08:12:16 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131626
IP address blocks: 2403:f3c0::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3017 (0xbc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7957076E29BFC1648EFF71A398BAAC4A9E886820
Validity
Not Before: May 24 08:12:16 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=8B4AC341A9A4AD17EE8F511E17C65B6D38B0E17C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:6a:67:ea:eb:09:33:fb:e5:12:3c:96:88:18:
ef:77:c7:22:63:ff:b7:d3:56:a8:94:c2:90:18:0e:
64:f2:9f:15:a7:91:84:88:03:b2:54:cd:bb:69:4a:
83:8a:af:ff:b1:89:87:54:8c:a9:21:09:1a:1b:ba:
40:22:67:80:6e:6e:02:9b:62:dc:65:c8:83:ac:13:
0d:19:a1:9c:45:04:54:17:c5:0f:35:c7:99:9c:8d:
e0:e2:a6:49:98:a0:89:45:e8:51:5f:f9:6f:4c:d1:
c1:66:69:12:2f:19:82:46:85:e0:63:c1:00:88:55:
ed:8e:9b:07:f3:e7:e8:9a:16:b6:c5:68:63:9a:3d:
ef:77:4e:21:3d:22:9c:51:72:e4:1c:06:46:02:a1:
d6:db:ff:8b:2a:e8:f2:f3:d2:4c:5c:bd:73:2d:91:
0e:81:cc:63:1a:56:bc:48:30:43:c0:42:80:1a:40:
04:2f:d9:2f:0e:cb:9b:eb:e5:1a:3c:5d:d1:5c:b6:
3d:dc:9f:3b:e0:4f:4f:bc:05:99:5d:25:c5:23:da:
08:1a:e1:4e:d7:da:12:70:18:09:d5:99:b1:7e:78:
ec:33:fc:91:65:62:43:0d:67:37:a6:f3:2d:0e:b4:
46:08:f6:21:b0:6b:72:76:15:4a:6c:c6:0a:01:22:
ea:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:4A:C3:41:A9:A4:AD:17:EE:8F:51:1E:17:C6:5B:6D:38:B0:E1:7C
X509v3 Authority Key Identifier:
keyid:79:57:07:6E:29:BF:C1:64:8E:FF:71:A3:98:BA:AC:4A:9E:88:68:20
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NSS/eVcHbim_wWSO_3GjmLqsSp6IaCA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/eVcHbim_wWSO_3GjmLqsSp6IaCA.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NSS/i0rDQamkrRfuj1EeF8ZbbTiw4Xw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:f3c0::/32
Signature Algorithm: sha256WithRSAEncryption
63:ef:19:bb:01:90:67:f1:b5:b5:34:72:dd:39:ec:bf:31:0b:
e1:d7:f2:5a:c5:41:8c:60:12:c8:97:d2:8d:5b:77:eb:99:9e:
65:3c:2c:a2:f1:75:17:14:43:db:86:80:b0:53:e2:90:42:c0:
18:3c:14:3a:8b:f2:ba:69:49:3a:9f:59:09:87:85:45:4f:8b:
f8:3b:a9:85:2e:79:fb:36:27:84:34:0d:c4:dc:82:41:d6:12:
ca:0b:68:35:e7:64:d1:b6:3d:16:28:fe:07:dc:75:19:31:58:
83:b8:f3:ed:9d:e6:cf:78:fc:a0:ab:79:01:ca:46:10:51:8e:
2f:b7:41:37:ab:e1:a9:7d:e3:f1:a0:6a:4a:44:6b:f9:20:c8:
b9:24:e1:98:f1:d9:94:d1:44:30:7c:d8:22:97:c4:ee:b0:ee:
85:d8:95:e1:da:f8:5f:33:69:8a:f5:e3:3a:27:2a:c5:d9:02:
6f:5a:f3:ac:07:79:d4:1a:a2:6d:f6:eb:9d:60:67:c8:1f:e1:
43:66:fb:bb:8d:a8:05:60:9d:4a:18:9b:b7:64:80:1b:75:35:
5e:a5:49:d8:f8:41:8e:a1:e2:fd:d9:59:f5:ee:19:32:6e:0c:
eb:35:59:45:74:3d:c5:c0:00:a2:98:38:6b:66:a0:a9:a3:4a:
4e:90:aa:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:15 2024 by rpki-client on console-ams.rpki-client.org