Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SCNET/WTBhkMPSaO9zdLUrDjxIv9ZOdWA.roa
File: WTBhkMPSaO9zdLUrDjxIv9ZOdWA.roa (raw, json)
Hash identifier: vXwEFHJroeCreANHZstnb3LIJwOzH6cOIS/TQnLUCeA=
Subject key identifier: 59:30:61:90:C3:D2:68:EF:73:74:B5:2B:0E:3C:48:BF:D6:4E:75:60
Certificate issuer: /CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948
Certificate serial: 1224
Authority key identifier: 34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/WTBhkMPSaO9zdLUrDjxIv9ZOdWA.roa
Signing time: Tue 05 Sep 2023 16:39:55 +0000
ROA not before: Tue 05 Sep 2023 16:39:55 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 202525
IP address blocks: 2403:aac0::/64 maxlen: 64
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4644 (0x1224)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948
Validity
Not Before: Sep 5 16:39:55 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=59306190C3D268EF7374B52B0E3C48BFD64E7560
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:88:77:77:ac:66:8c:6a:a4:64:4a:8b:c3:f3:
19:b9:df:01:6b:0c:77:49:b1:c9:00:1f:8d:1e:6d:
e2:7d:c6:2c:44:07:e5:08:a9:9e:7c:eb:94:fc:e3:
a9:55:10:4d:42:42:52:64:45:bd:5f:83:65:3b:0e:
56:b7:e7:5e:5d:65:e6:43:cf:43:1a:44:9c:d7:d4:
0e:0d:00:b0:a4:2e:7c:08:32:6a:00:30:49:0c:8c:
24:3b:f2:c5:0c:8d:f0:ac:65:d7:05:0b:5f:e1:51:
76:fc:5a:0f:e2:9e:b9:88:e4:ab:5a:04:38:2e:00:
ee:f1:64:56:74:3f:b0:06:a5:3e:e3:ca:51:3d:92:
45:e7:12:e7:47:2d:4d:66:ac:76:20:19:cc:0a:a5:
76:48:11:52:86:51:2d:80:fe:b6:42:2c:77:da:90:
4a:12:c8:2f:3e:0f:c0:cb:ee:76:0a:12:4b:46:de:
d4:de:c9:da:70:a1:49:74:d9:50:c5:fe:71:c1:0d:
e9:6e:26:21:ec:37:5b:fb:e4:e1:90:9a:99:ab:81:
4e:60:b1:d7:ad:bf:05:b8:78:2c:ad:62:02:e2:51:
49:46:6b:de:d4:9a:92:d7:6b:ba:52:20:6b:c3:3b:
57:25:92:7b:7c:c7:c5:ab:38:9f:7a:e0:11:c1:d0:
31:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:30:61:90:C3:D2:68:EF:73:74:B5:2B:0E:3C:48:BF:D6:4E:75:60
X509v3 Authority Key Identifier:
keyid:34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/WTBhkMPSaO9zdLUrDjxIv9ZOdWA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:aac0::/64
Signature Algorithm: sha256WithRSAEncryption
43:31:c2:a1:87:ec:64:08:65:bc:48:f9:69:cf:49:cf:88:df:
53:87:4b:ca:e3:9d:31:9e:08:82:68:0e:20:df:e0:52:7e:8f:
77:29:16:27:7f:38:91:d3:dd:c2:4d:ea:7b:3d:bc:0e:e1:fa:
76:94:26:f5:49:e6:cc:41:2a:b2:2f:ac:fb:f5:81:5a:9b:42:
d6:09:8d:da:fc:de:0d:f8:a1:a6:35:f7:97:2d:80:d0:69:26:
46:92:e1:96:f1:ec:79:d5:5f:22:2b:b9:17:8e:5e:3d:13:9a:
de:9a:f0:25:67:f4:9b:51:eb:56:4f:7b:7d:dd:f7:a8:66:ee:
63:b2:d7:e9:b1:08:c4:82:0c:5c:8d:cc:44:1c:e6:d5:4a:5b:
4e:6e:2d:98:1d:6d:35:11:3d:ed:c0:80:2a:b5:d9:75:35:d6:
0e:46:81:f3:77:a8:29:8a:cf:16:01:f7:20:6e:c7:14:d8:e1:
e9:65:5f:71:db:07:07:4b:1f:44:e2:cc:07:d8:ad:16:18:bb:
8d:e8:d5:dd:5c:6c:af:09:8a:12:da:e3:0e:ad:85:ec:8d:2d:
b6:46:5f:99:0b:35:ad:5d:7c:eb:89:c3:8b:d4:56:27:9a:76:
3a:1d:c9:47:ed:84:dc:3c:ef:43:9e:0c:88:e5:93:08:38:5d:
2e:fe:2e:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:16 2024 by rpki-client on console-ams.rpki-client.org