Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/_dQ_lOk-q1PUGyRHB05Bb94xuUA.roa
File: _dQ_lOk-q1PUGyRHB05Bb94xuUA.roa (raw, json)
Hash identifier: GntJNxICoFnxoTjwdZ5ACRw6DtbYzux2XpJBdlJjcOo=
Subject key identifier: FD:D4:3F:94:E9:3E:AB:53:D4:1B:24:47:07:4E:41:6F:DE:31:B9:40
Certificate issuer: /CN=6E398C52CC2A079DA90148210AC85328C11BBE96
Certificate serial: 0A14
Authority key identifier: 6E:39:8C:52:CC:2A:07:9D:A9:01:48:21:0A:C8:53:28:C1:1B:BE:96
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/bjmMUswqB52pAUghCshTKMEbvpY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/_dQ_lOk-q1PUGyRHB05Bb94xuUA.roa
Signing time: Mon 10 Feb 2025 14:09:49 +0000
ROA not before: Mon 10 Feb 2025 14:09:49 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131677
IP address blocks: 2405:b8c0::/32 maxlen: 64
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2580 (0xa14)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6E398C52CC2A079DA90148210AC85328C11BBE96
Validity
Not Before: Feb 10 14:09:49 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=FDD43F94E93EAB53D41B2447074E416FDE31B940
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:00:ed:fd:92:0a:fd:05:db:07:30:45:34:b3:
fc:3d:12:5f:e2:77:de:c2:07:18:6f:e3:8a:f1:5b:
42:d5:20:60:25:f8:fc:0f:6c:f9:84:6f:22:ca:4a:
be:ce:b8:f2:1e:36:f9:e6:cd:b9:cc:fc:1f:cc:86:
67:82:54:8b:46:00:78:d7:71:3d:69:39:f9:47:72:
25:01:cc:10:23:0b:06:9a:0f:ce:51:75:eb:b6:c0:
a7:d3:93:b1:71:b8:67:ae:0f:5f:cb:f4:37:dd:2f:
94:d1:7d:f7:1f:b2:87:6e:0f:de:63:da:ff:5c:58:
85:9e:d9:0c:a4:a2:ad:04:93:36:54:ea:4a:fc:e5:
83:f5:2c:65:e3:a6:0d:0b:a3:02:b6:4f:e5:a1:bf:
5f:2a:85:a5:d0:5c:09:25:a3:f2:21:3f:6e:90:e5:
1b:06:44:22:03:25:1f:28:fa:0e:98:5e:ec:87:08:
c3:44:85:9a:38:a2:04:a5:7f:f1:f1:00:d8:c4:e0:
16:4a:85:87:d4:1b:9a:76:73:c1:32:9f:fc:3c:3b:
57:a2:fb:2e:4d:6f:8c:9b:59:eb:2e:8e:1a:15:f9:
ef:df:78:10:ae:cf:78:67:53:65:f1:ca:dd:55:35:
70:b6:bb:bb:51:f1:aa:2a:3e:41:22:7f:ee:1e:8d:
06:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:D4:3F:94:E9:3E:AB:53:D4:1B:24:47:07:4E:41:6F:DE:31:B9:40
X509v3 Authority Key Identifier:
keyid:6E:39:8C:52:CC:2A:07:9D:A9:01:48:21:0A:C8:53:28:C1:1B:BE:96
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/bjmMUswqB52pAUghCshTKMEbvpY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/bjmMUswqB52pAUghCshTKMEbvpY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/_dQ_lOk-q1PUGyRHB05Bb94xuUA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2405:b8c0::/32
Signature Algorithm: sha256WithRSAEncryption
3f:75:9b:78:43:64:4f:d4:f9:51:6d:d9:4e:67:70:7b:f0:f5:
45:c0:e7:db:30:8e:50:49:b5:bc:8b:9b:51:58:be:e9:30:1b:
d0:85:90:fc:5e:8a:51:e5:57:98:ea:ed:e5:85:69:6e:76:41:
ab:48:91:fd:24:3f:3e:94:d3:1d:dc:fa:d4:4e:e8:0b:eb:35:
7a:37:c8:7b:2a:72:57:da:df:a8:22:ce:fb:67:6d:66:cc:3b:
b9:65:67:82:48:b4:6f:00:4b:ed:dd:fb:f5:f8:9f:1d:3f:b7:
1e:86:66:bf:0d:88:61:90:b0:db:12:c3:bf:e1:fe:17:7f:4e:
94:f8:2c:a6:12:3e:f6:53:49:e5:fa:e6:5b:6d:63:72:08:ca:
ac:48:6d:12:41:e7:9e:d7:c1:94:58:e9:c2:be:15:49:6c:1a:
13:02:96:35:01:32:2d:ee:0d:d5:ff:53:30:b0:1b:b1:4c:f1:
24:f8:9b:08:26:37:6b:4f:6b:5c:83:40:51:c3:11:0f:44:6d:
d3:3b:ed:e4:d7:fc:2b:66:98:48:50:3d:61:4b:ca:32:fe:27:
3b:36:b1:43:06:d7:2c:8b:d6:26:9b:01:eb:d4:aa:f0:5d:d8:
d8:98:13:ec:2a:3c:da:0b:e9:d0:07:9d:3c:16:d4:01:01:b8:
0b:37:43:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:09:49 2025 by rpki-client