Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SCNET/tazuvLuI2RIEyUhlSYWnJBKN6ZY.roa
File: tazuvLuI2RIEyUhlSYWnJBKN6ZY.roa (raw, json)
Hash identifier: kiFcspsQlutDrdHCv2bczuHbPdb9T/yoy96B1fZndbk=
Subject key identifier: B5:AC:EE:BC:BB:88:D9:12:04:C9:48:65:49:85:A7:24:12:8D:E9:96
Certificate issuer: /CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948
Certificate serial: 1218
Authority key identifier: 34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/tazuvLuI2RIEyUhlSYWnJBKN6ZY.roa
Signing time: Fri 01 Sep 2023 09:41:07 +0000
ROA not before: Fri 01 Sep 2023 09:41:07 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131631
IP address blocks: 2403:aac0::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4632 (0x1218)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948
Validity
Not Before: Sep 1 09:41:07 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=B5ACEEBCBB88D91204C948654985A724128DE996
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:70:fc:70:57:91:bd:ef:28:2e:11:ab:ee:22:
ae:88:60:7b:86:82:02:7d:00:64:7a:07:ae:21:7a:
1b:67:b2:b9:54:7f:9e:40:c2:75:a8:60:76:11:3e:
a6:7d:e0:c1:5f:14:68:f7:d4:6a:5c:03:c1:be:f2:
14:92:c0:22:2f:f8:4e:44:12:c7:7d:c4:87:25:49:
9b:9c:15:9c:0e:a4:4d:4b:91:5a:bc:b3:4b:08:1d:
5d:67:22:53:fe:23:9a:cc:26:74:18:8b:9b:b7:09:
97:9c:c3:34:1b:bc:27:f9:cb:d9:66:3a:36:66:15:
0a:03:90:30:8f:66:15:aa:b6:c1:0d:ce:f3:8e:5e:
77:71:36:98:83:48:ee:7c:5c:b8:d9:da:4a:2a:d2:
c2:c6:e2:0b:9a:e4:b9:f4:ce:b3:9e:c4:bb:e5:04:
c0:68:0f:8e:5e:38:1f:22:f5:73:21:ff:12:ff:a1:
0f:d0:e5:6f:bb:c6:d1:50:c7:38:bc:4e:81:78:2a:
36:24:51:41:48:34:75:1d:3d:88:02:03:0c:a4:2a:
8d:47:cb:a3:42:37:1a:fe:5e:fa:c3:2d:8e:32:d5:
26:61:4b:e8:83:67:5e:d9:6d:65:16:03:f3:32:19:
b3:a5:12:c2:49:09:f7:62:c8:40:b7:2c:7c:d8:35:
42:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:AC:EE:BC:BB:88:D9:12:04:C9:48:65:49:85:A7:24:12:8D:E9:96
X509v3 Authority Key Identifier:
keyid:34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/tazuvLuI2RIEyUhlSYWnJBKN6ZY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:aac0::/32
Signature Algorithm: sha256WithRSAEncryption
90:7c:0c:e7:58:3d:b7:e3:87:ae:66:45:4f:76:b8:57:ca:e4:
fa:9f:6e:47:7f:37:43:c9:92:76:87:46:cf:2d:b8:42:12:aa:
b5:30:24:a7:4d:9c:cf:c3:ed:68:22:d6:2e:a5:e5:fb:fc:bc:
85:59:5a:77:03:f5:17:53:32:94:b1:71:63:c5:74:11:34:74:
07:68:6a:b3:25:9c:fc:d4:04:3d:9b:0f:ba:34:ac:b9:6b:b1:
52:c4:ba:54:37:c2:dc:cc:09:b8:39:85:e2:ee:e8:44:74:8f:
36:c8:3e:30:65:d3:8f:23:ed:26:e3:bf:1d:3b:7b:12:a1:35:
77:be:bf:0b:07:d5:7e:e2:2c:72:51:4b:3a:0d:b1:20:79:80:
de:7a:f4:65:0a:2c:e0:d9:9c:b4:38:82:d2:ac:79:60:5d:3b:
fa:c8:78:f9:ad:0f:9f:aa:0d:f1:69:80:07:d8:9d:38:95:99:
e0:1d:c6:e3:49:0f:56:f5:54:22:24:ee:ec:e4:73:af:72:ec:
bc:42:e1:a9:55:14:6d:a8:f3:55:f8:34:6b:0a:36:46:62:de:
31:94:bc:b9:7c:58:8c:6c:d9:18:22:f7:b5:6b:1f:c4:52:18:
bc:a0:83:b2:09:42:9f:8d:65:9c:6d:6c:3c:4b:d3:c5:fe:7d:
42:ce:06:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:16 2024 by rpki-client on console-ams.rpki-client.org