Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/AzqbZkhKBdrXjZ1ehRdWXW-7Oa0.roa
File: AzqbZkhKBdrXjZ1ehRdWXW-7Oa0.roa (raw, json)
Hash identifier: Sjn7u2DbWMI8L0U1HaMRVqaHAt3uaLRFHWGdrd4bbuY=
Subject key identifier: 03:3A:9B:66:48:4A:05:DA:D7:8D:9D:5E:85:17:56:5D:6F:BB:39:AD
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 0BB9
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/AzqbZkhKBdrXjZ1ehRdWXW-7Oa0.roa
Signing time: Fri 01 Sep 2023 09:45:01 +0000
ROA not before: Fri 01 Sep 2023 09:45:01 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18419
IP address blocks: 2402:2580::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3001 (0xbb9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Sep 1 09:45:01 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=033A9B66484A05DAD78D9D5E8517565D6FBB39AD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:c8:bf:22:d2:c1:03:aa:e9:79:7f:63:45:e7:
48:8f:4c:9c:38:4d:15:49:ea:43:d1:fd:44:30:8c:
68:22:13:7c:91:3c:ec:66:e2:8a:76:d0:f4:da:2f:
51:92:16:8c:9b:78:fb:e5:08:02:c0:2a:83:4e:34:
c7:85:df:bf:2a:af:69:f2:95:9e:79:3e:40:c5:66:
c6:65:c3:83:c6:3a:92:48:2e:1d:b6:c1:06:a1:fc:
62:50:dc:74:39:3d:f2:a5:df:61:a2:ee:d1:ec:22:
e9:00:af:9f:c1:09:bb:e2:ae:7c:a9:07:81:a8:1f:
2a:c0:33:5b:5b:c2:de:3b:37:d3:a6:5e:0a:e1:58:
8b:2a:a5:70:a7:eb:d0:c6:85:19:47:6a:07:4c:16:
45:45:0f:30:4e:69:94:f5:ee:de:2a:c2:b7:00:b8:
68:de:38:d9:3c:13:9c:49:ea:82:7c:da:e4:e5:d9:
2c:9d:e0:c4:82:52:7e:15:74:3a:c2:0f:31:85:7f:
6b:a7:7f:af:2c:7f:97:37:af:6e:2e:9d:57:05:ad:
26:54:70:81:93:f7:1b:78:57:1d:6a:70:2f:c0:da:
d7:64:0a:e6:93:63:e1:2e:4b:ec:76:74:21:e0:c3:
87:7e:1f:57:ab:83:d5:7a:c8:00:15:2c:b4:3d:07:
8e:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:3A:9B:66:48:4A:05:DA:D7:8D:9D:5E:85:17:56:5D:6F:BB:39:AD
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/AzqbZkhKBdrXjZ1ehRdWXW-7Oa0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2402:2580::/32
Signature Algorithm: sha256WithRSAEncryption
3a:c7:be:1f:65:98:e9:85:d4:c9:dc:85:7b:a9:fa:6b:2f:69:
69:4f:2d:2b:f6:97:f4:75:c0:b9:e0:7a:3f:ea:7f:b3:b0:b5:
3f:4a:42:31:a7:18:c5:5e:07:37:5e:e4:42:90:59:9d:b1:09:
6d:41:79:08:41:fb:74:a9:fb:61:c6:82:f0:64:58:6c:7d:64:
b3:d9:59:2e:e8:66:44:a9:d5:6a:fa:ee:27:0e:b8:89:05:ad:
48:08:93:25:fe:cd:2b:7b:7c:7f:a7:2b:23:aa:ef:cc:ed:3a:
9c:97:54:f3:0c:7c:72:b1:6c:e8:dd:b3:f1:b9:53:45:3f:fe:
88:ff:e9:e5:4a:05:a4:43:ea:83:b6:10:90:bf:05:00:33:33:
7b:7b:a5:35:b7:15:f5:37:c6:76:bf:c9:07:61:19:1f:b9:4b:
2f:87:ff:6f:c2:bc:22:15:da:82:32:d0:ee:a2:ea:13:d7:50:
37:d2:c9:1a:f7:60:fb:77:4b:95:c5:75:76:84:48:f6:93:0e:
52:b4:12:68:60:e5:dc:af:19:32:14:ec:08:04:dc:a6:71:b5:
c3:b7:a3:e7:60:6a:ed:36:af:74:2d:b9:31:e9:0b:60:82:9e:
10:62:5e:0c:89:0f:37:cd:c0:69:0b:ef:27:f3:80:f6:1d:ed:
e8:f4:5f:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:16 2024 by rpki-client on console-ams.rpki-client.org