Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NSSIT/R93doUMQUGt4EQzhi77NJasayHY.roa
File: R93doUMQUGt4EQzhi77NJasayHY.roa (raw, json)
Hash identifier: 2zp9xSzdeQ23BSH6Oo17D26SrJOjiq4df5q4MecL+n4=
Subject key identifier: 47:DD:DD:A1:43:10:50:6B:78:11:0C:E1:8B:BE:CD:25:AB:1A:C8:76
Certificate issuer: /CN=AA11250A67BB9825B6EA1FA9A124A1FEC96701DA
Certificate serial: 0939
Authority key identifier: AA:11:25:0A:67:BB:98:25:B6:EA:1F:A9:A1:24:A1:FE:C9:67:01:DA
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/qhElCme7mCW26h-poSSh_slnAdo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NSSIT/R93doUMQUGt4EQzhi77NJasayHY.roa
Signing time: Fri 24 May 2024 08:12:41 +0000
ROA not before: Fri 24 May 2024 08:12:41 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131626
IP address blocks: 2405:63c0::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2361 (0x939)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AA11250A67BB9825B6EA1FA9A124A1FEC96701DA
Validity
Not Before: May 24 08:12:41 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=47DDDDA14310506B78110CE18BBECD25AB1AC876
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:cf:b3:4c:9f:97:8f:8f:30:8a:0e:bb:fe:91:
62:aa:05:4a:b6:c2:fb:29:36:92:f9:aa:9c:3b:88:
82:ec:47:33:ea:21:9b:db:a3:eb:72:35:17:4f:28:
d3:9a:db:2f:fc:96:97:aa:dd:a8:e8:ff:a6:19:74:
22:e7:6a:f2:08:f6:76:54:45:3e:cd:ca:5d:2c:ff:
31:cb:36:a4:a6:db:4b:25:7e:32:8c:9c:8e:f6:57:
bb:5c:f7:f4:e3:1a:ad:ec:08:73:6c:45:e1:7c:6e:
0c:80:43:bc:9b:ef:a4:0a:60:2b:b2:ce:b1:dd:85:
69:bb:6c:e0:97:52:f9:6c:5d:42:ae:3d:fe:32:7b:
c3:b5:e5:a5:dc:54:fa:27:81:97:76:50:9d:2b:60:
54:f3:8b:8d:64:a2:11:dc:fe:a9:37:fc:c9:55:4d:
89:8b:ee:98:48:3b:a7:1a:f1:04:82:c9:3e:31:cf:
68:26:43:d0:46:83:4f:55:af:e2:1c:d6:2c:3a:28:
74:34:27:e5:81:75:b9:be:21:60:f7:97:b7:56:16:
b3:b6:c3:3f:0f:e6:1c:0c:e1:56:32:68:03:f2:11:
ba:8f:74:26:f5:02:48:f2:01:31:eb:73:93:06:f7:
01:bd:1c:0c:50:cd:f9:45:1a:ce:f0:5a:46:4a:62:
02:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:DD:DD:A1:43:10:50:6B:78:11:0C:E1:8B:BE:CD:25:AB:1A:C8:76
X509v3 Authority Key Identifier:
keyid:AA:11:25:0A:67:BB:98:25:B6:EA:1F:A9:A1:24:A1:FE:C9:67:01:DA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NSSIT/qhElCme7mCW26h-poSSh_slnAdo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/qhElCme7mCW26h-poSSh_slnAdo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NSSIT/R93doUMQUGt4EQzhi77NJasayHY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2405:63c0::/32
Signature Algorithm: sha256WithRSAEncryption
31:ba:bb:66:39:41:52:e4:88:f8:86:6f:1e:af:6a:c8:17:68:
12:36:43:6b:16:56:ad:5e:d4:0c:03:6b:d8:53:7b:28:4f:22:
2a:65:3c:78:3e:64:5b:56:bd:7c:e9:e9:ce:4f:6a:05:21:57:
ce:82:3a:44:9c:76:87:58:96:4f:fd:58:4c:4e:2f:2b:c4:67:
ed:e6:d3:b4:61:9a:b6:03:20:18:55:59:f9:a3:0d:d1:6e:28:
cc:da:0f:b1:7d:09:99:04:96:64:48:55:85:4d:f2:30:25:23:
96:ea:5d:53:4b:31:0e:64:d7:ca:fd:b8:01:8d:48:9d:28:20:
ad:60:54:db:13:f1:40:88:9d:e7:2a:e4:ef:f0:29:ce:ff:79:
c0:77:48:de:22:52:9f:3a:45:26:a9:83:93:9f:ae:13:79:41:
ec:58:75:d7:78:f3:f3:25:ef:2d:52:52:6a:ad:7c:a7:03:90:
21:67:7b:b0:a4:98:e5:ee:50:b2:af:01:90:53:2c:d1:b0:ee:
3f:fe:2f:27:4a:13:6b:7e:6e:28:08:8e:4f:2b:de:bf:fa:36:
6b:2a:00:da:8d:19:9d:14:55:f6:88:90:d5:9d:36:c8:7d:ea:
28:92:2a:25:35:f2:26:2c:32:71:d1:5e:87:05:eb:c6:34:a5:
8e:94:78:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:22 2024 by rpki-client on console-fra.rpki-client.org