Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIMPLE/AyJ3rzKFwyER_zV0j59x9vXzmHM.roa
File: AyJ3rzKFwyER_zV0j59x9vXzmHM.roa (raw, json)
Hash identifier: LOWl2cISkkRtE51GdoAXc02qhhJYrgqwQ7cdKWNUyb8=
Subject key identifier: 03:22:77:AF:32:85:C3:21:11:FF:35:74:8F:9F:71:F6:F5:F3:98:73
Certificate issuer: /CN=6A0A165337DCFB9127C60840C45CBCEB8D6DBF75
Certificate serial: 76
Authority key identifier: 6A:0A:16:53:37:DC:FB:91:27:C6:08:40:C4:5C:BC:EB:8D:6D:BF:75
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/agoWUzfc-5EnxghAxFy8641tv3U.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIMPLE/AyJ3rzKFwyER_zV0j59x9vXzmHM.roa
Signing time: Mon 20 Jan 2025 08:39:03 +0000
ROA not before: Mon 20 Jan 2025 08:39:03 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9923
IP address blocks: 2401:ba60::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118 (0x76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6A0A165337DCFB9127C60840C45CBCEB8D6DBF75
Validity
Not Before: Jan 20 08:39:03 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=032277AF3285C32111FF35748F9F71F6F5F39873
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:54:32:d1:f4:35:8f:b8:e6:ef:e5:5d:8d:94:
a8:c8:92:30:3c:6e:0e:ef:aa:69:e2:67:15:74:92:
16:09:fb:92:d4:af:a4:f3:ab:0d:2b:44:17:17:56:
e8:7f:d9:14:c8:36:ee:86:1e:b9:ae:4a:a3:6b:5e:
d3:49:54:bc:0f:ae:7c:0f:8c:74:1b:b9:76:6e:3d:
8e:5d:9c:5d:f5:63:a0:cf:8a:18:71:cb:e8:f2:e7:
52:e1:a9:8b:f7:7d:6a:85:08:c4:bf:f2:2f:f3:42:
e3:20:46:28:10:fb:2f:ed:7b:15:80:ce:36:69:0a:
25:35:4b:e4:47:e5:1b:e4:f6:11:fc:fe:4e:89:7f:
06:d4:f6:5c:b6:09:0c:5c:aa:1f:42:ba:b0:e2:5c:
60:db:92:bd:90:09:af:18:ca:f1:67:66:15:5e:18:
1e:72:8c:cf:69:5c:2c:7a:be:e1:e0:16:57:d2:0d:
d2:b0:c8:5a:3c:12:45:98:09:40:e8:38:74:5a:65:
c5:d4:90:99:6e:ac:e1:80:d3:ca:5a:aa:a3:33:04:
16:65:fa:e7:b1:b3:de:7b:ec:dc:95:c5:8f:d3:d2:
c1:bd:0e:69:45:30:4b:e0:ad:09:88:9c:dd:7a:70:
b9:97:e7:04:2a:61:6d:8b:aa:dc:0c:80:66:c0:85:
64:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:22:77:AF:32:85:C3:21:11:FF:35:74:8F:9F:71:F6:F5:F3:98:73
X509v3 Authority Key Identifier:
keyid:6A:0A:16:53:37:DC:FB:91:27:C6:08:40:C4:5C:BC:EB:8D:6D:BF:75
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIMPLE/agoWUzfc-5EnxghAxFy8641tv3U.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/agoWUzfc-5EnxghAxFy8641tv3U.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIMPLE/AyJ3rzKFwyER_zV0j59x9vXzmHM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:ba60::/32
Signature Algorithm: sha256WithRSAEncryption
82:29:53:93:91:cf:25:17:b7:e8:4a:75:9f:b0:95:d1:90:dd:
b5:f9:2e:a2:af:a7:65:1c:49:40:6a:82:e5:0f:2a:18:b8:66:
93:cc:75:6c:c1:14:36:24:c2:d2:1e:7a:f1:86:e4:2e:a2:ab:
24:31:2e:22:e4:c0:ca:16:4d:55:01:69:5b:e9:ce:aa:41:59:
90:0a:30:94:ee:fa:51:e2:8b:b6:d2:a1:af:68:98:1f:db:27:
99:e4:26:16:12:b5:5f:78:80:e0:20:4f:cb:a9:b6:2b:65:a2:
e8:28:a6:0e:d0:f6:cd:82:3f:08:56:76:42:81:7f:74:19:c9:
d8:f7:ed:39:e2:5c:57:a4:c9:8c:c6:2e:9e:32:02:89:aa:5c:
6d:3d:73:75:f5:a9:16:96:18:66:d4:cd:66:ee:e1:99:50:2e:
05:c8:4b:39:26:d1:37:f6:cf:48:18:c9:95:ec:82:1f:7e:9d:
5d:2c:a1:e7:13:f0:d1:14:95:ef:15:f8:60:55:36:31:27:90:
85:45:b7:0e:6d:92:a9:91:a3:eb:35:4d:ec:f5:d6:a3:11:71:
a8:87:b9:4a:56:03:b6:05:78:6d:81:ea:7e:0d:3b:01:d9:6f:
10:ed:1b:e8:91:9b:25:bb:c5:2e:1e:67:bc:49:ba:f4:fd:5c:
b2:ed:c2:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 23:18:33 2025 by rpki-client