Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIMPLE/DB-O3n79QQj9pIYjdqOAaLLCN1I.roa
File: DB-O3n79QQj9pIYjdqOAaLLCN1I.roa (raw, json)
Hash identifier: F8eL7hPbWjBcpbFvkkdCvqvNQzvEQnbMaw/uuBlv+KM=
Subject key identifier: 0C:1F:8E:DE:7E:FD:41:08:FD:A4:86:23:76:A3:80:68:B2:C2:37:52
Certificate issuer: /CN=6A0A165337DCFB9127C60840C45CBCEB8D6DBF75
Certificate serial: 88
Authority key identifier: 6A:0A:16:53:37:DC:FB:91:27:C6:08:40:C4:5C:BC:EB:8D:6D:BF:75
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/agoWUzfc-5EnxghAxFy8641tv3U.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIMPLE/DB-O3n79QQj9pIYjdqOAaLLCN1I.roa
Signing time: Mon 10 Feb 2025 14:13:56 +0000
ROA not before: Mon 10 Feb 2025 14:13:56 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9923
IP address blocks: 2401:ba60::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136 (0x88)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6A0A165337DCFB9127C60840C45CBCEB8D6DBF75
Validity
Not Before: Feb 10 14:13:56 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=0C1F8EDE7EFD4108FDA4862376A38068B2C23752
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:05:b6:98:d0:3c:6c:ab:fd:3e:79:32:b9:08:
ce:f5:48:af:31:f5:b3:2f:09:99:6a:e0:c1:75:7a:
f0:57:62:b8:2a:74:2d:ff:b8:19:bb:07:9d:bd:91:
75:0c:5a:e7:6c:d9:cf:be:48:eb:fd:4f:97:57:4a:
90:ac:8a:62:17:de:38:22:5d:75:15:d7:40:81:6e:
b8:bb:19:5e:ea:1c:ee:b5:d3:89:94:91:55:d7:ea:
9f:ad:b3:67:b3:15:b0:fe:a9:95:b4:36:fd:c4:e5:
e1:1b:fa:1a:64:b3:24:1f:87:8d:4b:d3:eb:a3:5c:
ed:bb:b6:b3:8e:45:e6:6f:7a:d1:d5:c6:ff:41:04:
d8:d8:b8:8b:6a:25:de:da:87:e2:20:c0:7c:76:b2:
24:a6:b5:67:c8:b0:1e:d3:ce:b6:89:96:b9:9d:75:
6a:37:4a:c9:a2:d0:41:f5:08:9c:d4:11:91:9d:fd:
47:a3:d4:bf:0b:a8:94:f0:36:f5:6b:9b:cf:9c:e8:
3b:bf:03:d3:73:d2:5e:17:c7:42:5b:a7:c1:ef:2a:
8e:59:e7:cf:ed:bd:d9:33:8e:41:46:0b:05:ae:7b:
27:15:10:1c:2c:f5:af:08:f4:cb:f7:ea:30:dc:52:
d5:55:2f:b4:5e:49:d9:fe:da:d8:01:82:b3:8d:a4:
21:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:1F:8E:DE:7E:FD:41:08:FD:A4:86:23:76:A3:80:68:B2:C2:37:52
X509v3 Authority Key Identifier:
keyid:6A:0A:16:53:37:DC:FB:91:27:C6:08:40:C4:5C:BC:EB:8D:6D:BF:75
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIMPLE/agoWUzfc-5EnxghAxFy8641tv3U.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/agoWUzfc-5EnxghAxFy8641tv3U.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIMPLE/DB-O3n79QQj9pIYjdqOAaLLCN1I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:ba60::/32
Signature Algorithm: sha256WithRSAEncryption
5c:d7:d0:86:28:77:65:dc:60:62:88:56:5c:26:43:d3:2e:a8:
24:5d:aa:98:da:00:55:70:f8:ad:62:e8:5f:81:2d:16:61:fc:
11:dc:f3:75:94:da:b9:8b:73:1c:10:98:19:ce:39:2d:7d:2c:
97:04:66:13:29:b9:a2:18:06:2c:64:7a:ea:48:e0:b8:4e:e6:
bb:0d:20:2c:42:6e:63:0c:ff:dd:b5:a1:af:b9:18:c5:82:99:
71:4d:86:43:83:29:ac:f1:ea:12:0c:1a:05:07:a8:12:90:25:
a6:57:b5:10:e3:0d:82:ab:23:b1:d0:81:2f:a9:1d:6c:c3:03:
29:dd:0e:6b:1d:63:8b:75:a2:14:01:08:eb:31:1d:28:6c:9f:
bf:87:25:33:e3:4d:2e:5f:84:4b:93:e5:7b:53:c2:19:d0:07:
29:66:89:c3:77:04:ae:70:3a:13:f7:6e:f6:29:b6:1e:16:4b:
ad:b6:bc:7b:7e:80:f0:e1:d2:36:1c:9f:c0:e6:58:88:0c:16:
a7:63:90:f3:c0:0b:7c:c2:36:53:cb:8e:cb:e5:34:a0:03:09:
a0:ad:8b:30:25:aa:a5:2e:b8:5b:f3:30:70:96:85:fc:80:06:
c1:58:a5:fe:43:07:48:00:23:b3:f5:46:15:cf:71:b5:20:9d:
0b:ab:10:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 05:16:43 2025 by rpki-client