Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/Q2WrZP7VycJVIZXYV9pT21VUF2Y.roa
File: Q2WrZP7VycJVIZXYV9pT21VUF2Y.roa (raw, json)
Hash identifier: FSSnydAuRozGshvZ72ErpudtWFC/KUNLDDB4ztFf0ps=
Subject key identifier: 43:65:AB:64:FE:D5:C9:C2:55:21:95:D8:57:DA:53:DB:55:54:17:66
Certificate issuer: /CN=6E398C52CC2A079DA90148210AC85328C11BBE96
Certificate serial: 08A2
Authority key identifier: 6E:39:8C:52:CC:2A:07:9D:A9:01:48:21:0A:C8:53:28:C1:1B:BE:96
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/bjmMUswqB52pAUghCshTKMEbvpY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/Q2WrZP7VycJVIZXYV9pT21VUF2Y.roa
Signing time: Fri 01 Sep 2023 09:34:30 +0000
ROA not before: Fri 01 Sep 2023 09:34:30 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131677
IP address blocks: 2405:b8c0::/32 maxlen: 64
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2210 (0x8a2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6E398C52CC2A079DA90148210AC85328C11BBE96
Validity
Not Before: Sep 1 09:34:30 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=4365AB64FED5C9C2552195D857DA53DB55541766
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:f3:dd:51:23:c3:12:f4:5f:4e:d9:d1:6a:f3:
2a:2c:e5:58:39:23:0e:fe:89:1c:26:32:0b:6b:27:
6f:6c:8b:08:e1:95:49:d4:4a:01:34:69:93:09:5a:
9f:68:d6:cd:3e:3c:aa:75:9a:a5:27:b5:11:99:79:
b6:a8:8e:57:a0:55:08:51:28:0d:f6:eb:79:b5:c1:
d3:6d:2e:9e:5b:75:c5:4c:a9:98:40:ac:46:20:4e:
9c:8c:35:e7:9e:f2:78:56:ad:a2:8c:77:72:41:eb:
cf:ae:2f:82:21:e4:5f:43:47:68:ce:08:4e:91:84:
3f:bc:4f:90:f4:56:69:f3:d2:11:ee:90:5f:68:39:
38:8f:95:b3:95:db:30:a3:2f:3d:16:02:e8:aa:ca:
ae:8d:55:7f:9b:6c:e9:07:c7:09:7b:47:84:32:25:
c7:80:0b:0e:5a:7d:80:52:4b:4a:78:4f:53:56:9f:
12:55:b5:30:3e:30:c5:06:7e:0a:14:f9:21:36:7e:
d8:d9:0b:74:28:07:34:34:79:2c:5a:cb:1f:b7:6a:
f2:81:6d:e1:5e:78:15:88:51:ee:9a:30:59:27:47:
c1:c6:cb:a9:1e:46:0f:ae:81:94:9e:f4:6e:96:8a:
8d:d7:2b:87:f1:eb:32:b1:e0:ac:52:7c:eb:bf:80:
63:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:65:AB:64:FE:D5:C9:C2:55:21:95:D8:57:DA:53:DB:55:54:17:66
X509v3 Authority Key Identifier:
keyid:6E:39:8C:52:CC:2A:07:9D:A9:01:48:21:0A:C8:53:28:C1:1B:BE:96
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/bjmMUswqB52pAUghCshTKMEbvpY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/bjmMUswqB52pAUghCshTKMEbvpY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/Q2WrZP7VycJVIZXYV9pT21VUF2Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2405:b8c0::/32
Signature Algorithm: sha256WithRSAEncryption
0c:41:b0:c6:c4:b1:dd:fa:22:90:a6:7b:b5:8a:d7:34:bb:5e:
25:0a:4d:fb:61:37:fd:e5:96:ab:b6:97:66:7e:8b:af:1e:e2:
75:83:2b:84:98:50:ab:2a:0e:11:a6:ef:41:cd:e4:1f:11:5a:
6f:e2:ad:af:db:75:2b:51:d2:00:62:c0:58:8e:f2:e2:76:d7:
78:e7:8d:a8:e1:6c:8c:a6:7c:77:57:4a:63:2d:89:15:7f:80:
ae:b5:2a:1e:4a:f1:9b:8d:31:60:54:84:04:c8:10:e3:1e:2a:
7e:dd:cf:6b:03:b7:38:4d:26:fe:71:0e:b8:0c:1e:56:3e:7c:
de:41:11:1c:34:82:8f:57:f6:80:a6:78:fd:c6:70:45:55:de:
4a:7d:d5:70:39:82:75:4f:ce:50:da:30:64:43:84:8d:80:4f:
21:2a:b0:71:08:0e:58:1c:af:2d:ef:72:25:41:67:93:34:94:
15:69:d8:8f:c4:ec:02:d4:b6:bd:c9:f2:d4:5e:d1:b8:8b:a2:
f7:f1:ad:a8:5a:75:20:40:e0:4e:db:5d:41:09:9a:a1:ca:8b:
8e:06:20:cf:54:41:c3:bb:22:e7:a3:4f:d1:8e:09:82:67:d6:
15:ba:90:00:51:f4:f3:66:c2:c0:00:37:8b:1b:ac:b0:1c:a1:
9e:43:ac:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:15 2024 by rpki-client on console-ams.rpki-client.org