Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SCNET/sXYO4nZnBWDaFKQV23X-SVTZB08.roa
File: sXYO4nZnBWDaFKQV23X-SVTZB08.roa (raw, json)
Hash identifier: W4xc6oGXD0YfUS04wgxAzyfGHQfVxbMsyqnr9dSM9BM=
Subject key identifier: B1:76:0E:E2:76:67:05:60:DA:14:A4:15:DB:75:FE:49:54:D9:07:4F
Certificate issuer: /CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948
Certificate serial: 12E5
Authority key identifier: 34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/sXYO4nZnBWDaFKQV23X-SVTZB08.roa
Signing time: Tue 30 Apr 2024 12:49:28 +0000
ROA not before: Tue 30 Apr 2024 12:49:28 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 215913
IP address blocks: 2403:aac0::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4837 (0x12e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948
Validity
Not Before: Apr 30 12:49:28 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=B1760EE276670560DA14A415DB75FE4954D9074F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:87:8e:99:64:e5:4b:98:de:d9:90:b5:fa:8e:
bc:15:8c:77:e9:4b:4c:08:62:56:1f:6b:08:4d:71:
77:67:5a:ab:d7:cb:04:0f:74:c3:b3:e6:b9:0f:67:
42:30:26:c0:09:13:59:2d:80:2e:6c:f0:e0:19:ba:
70:2e:c3:af:48:df:78:e5:26:15:f1:35:27:21:64:
16:a1:05:24:11:00:ea:e0:24:26:e2:1e:dc:0f:cd:
b2:85:63:ac:04:56:9e:11:a5:6d:87:39:ad:0c:56:
48:e8:05:e3:65:1c:fe:e3:e0:3d:b4:ee:20:18:41:
d0:17:a2:19:eb:e8:48:d5:d9:80:b9:c9:76:2b:5f:
1b:05:b5:2a:66:26:56:bc:3c:a7:8d:c4:44:cf:5b:
5f:a4:15:11:13:e6:0a:2b:3e:92:2b:bb:7a:8b:ef:
24:96:0c:14:e5:91:2a:d4:28:29:f6:41:b2:41:75:
34:bd:e7:1b:78:1a:6b:2c:a4:10:2f:53:01:47:c1:
1c:33:94:49:5e:4c:50:e1:7c:cd:c2:6a:e1:ff:ba:
bf:fc:19:23:97:d9:26:d3:e9:94:82:23:87:33:09:
25:9a:3e:44:f8:c6:41:73:4a:b4:65:be:bd:ed:37:
58:49:53:bb:19:42:63:63:03:53:c1:d2:c5:bb:ca:
a2:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:76:0E:E2:76:67:05:60:DA:14:A4:15:DB:75:FE:49:54:D9:07:4F
X509v3 Authority Key Identifier:
keyid:34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/sXYO4nZnBWDaFKQV23X-SVTZB08.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:aac0::/32
Signature Algorithm: sha256WithRSAEncryption
dd:f2:97:9b:7f:75:8d:b1:8d:ee:c8:25:03:ff:d3:f4:60:85:
30:95:94:98:80:95:12:15:ed:08:d7:2e:5c:5f:68:e4:f8:24:
8c:5d:d8:44:d1:30:e6:a8:c7:08:7b:d8:fa:d8:0c:d6:c5:4e:
a9:99:c3:32:d1:ed:75:a2:3e:61:91:bb:97:62:c4:e7:06:70:
ee:0b:78:c4:18:8a:b1:0a:90:0f:a0:5a:73:cc:cc:78:19:fb:
34:1f:fb:78:c1:c9:5b:10:4f:af:0e:50:c9:d9:95:3f:2f:da:
a1:18:7d:cd:d2:c2:d0:79:c4:80:11:96:2d:81:ee:ce:f4:ad:
59:41:2e:5d:06:19:8c:4f:4e:c0:86:2a:be:c6:3c:6d:cd:68:
4f:8b:5c:cd:69:a4:78:c4:9d:a9:3c:39:3c:a8:77:da:38:f6:
a7:60:ba:10:86:af:82:99:14:e2:ba:2f:65:f1:48:dc:5e:86:
10:b6:ac:1b:16:72:44:ad:2d:2f:49:bc:ec:49:4f:e3:f5:38:
6e:94:8c:08:75:f8:94:1e:91:63:d9:80:30:12:04:75:b3:cf:
b7:13:a5:a4:e6:85:e7:c3:9e:14:28:13:39:54:47:bd:bc:95:
e6:f4:f0:58:2b:61:43:d0:bf:86:a4:67:3e:4a:f8:5a:e9:b2:
ab:b5:1c:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:23 2024 by rpki-client on console-fra.rpki-client.org