Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SYSNET/v0vkiIGYey4SBnnzto4mUGdB11g.roa
File: v0vkiIGYey4SBnnzto4mUGdB11g.roa (raw, json)
Hash identifier: iVLjvOX+YU4FhnNVfJNGI2LoaGOOmHgSE8DLKWxBKWs=
Subject key identifier: BF:4B:E4:88:81:98:7B:2E:12:06:79:F3:B6:8E:26:50:67:41:D7:58
Certificate issuer: /CN=96BB94B457F9D82A29B5B2FD9F3A4418899E71EC
Certificate serial: 0B5D
Authority key identifier: 96:BB:94:B4:57:F9:D8:2A:29:B5:B2:FD:9F:3A:44:18:89:9E:71:EC
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/lruUtFf52CoptbL9nzpEGImecew.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/v0vkiIGYey4SBnnzto4mUGdB11g.roa
Signing time: Fri 01 Sep 2023 09:48:57 +0000
ROA not before: Fri 01 Sep 2023 09:48:57 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 4783
IP address blocks: 2405:a00::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2909 (0xb5d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96BB94B457F9D82A29B5B2FD9F3A4418899E71EC
Validity
Not Before: Sep 1 09:48:57 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=BF4BE48881987B2E120679F3B68E26506741D758
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:f4:e2:61:cc:8b:d4:08:aa:2c:2b:40:c6:f4:
53:73:ea:4a:18:b1:65:75:eb:d3:52:f1:da:d9:cf:
4a:ef:89:7c:b6:8b:0d:92:ea:fa:8a:23:06:bc:a1:
24:a2:b1:f1:e5:28:32:58:16:c1:f1:e3:8a:25:8c:
39:9e:5d:7d:34:ed:cf:15:d2:c6:68:29:58:37:e6:
df:b3:89:85:2f:7b:8c:0b:84:32:27:ed:da:f2:60:
83:7c:c1:c9:65:62:29:e6:75:af:aa:e1:c8:ee:c7:
ce:6a:28:f6:b1:66:f7:3c:95:52:a9:db:bb:8c:a2:
21:30:97:86:ac:67:3e:6f:37:06:ca:d8:cb:a2:34:
ad:92:f2:57:b4:b9:bc:ba:04:bf:65:04:bf:74:95:
84:61:ef:49:5d:df:8e:d0:4a:0f:0e:d4:c3:cc:a0:
df:e2:b2:75:69:b7:4e:d5:b0:61:b5:71:a6:bf:d5:
79:a0:05:37:b0:d8:16:02:db:66:57:81:ff:6c:d4:
3a:5a:c6:0a:84:0c:75:c6:fa:d0:d3:91:40:12:34:
82:fb:63:f8:65:a6:50:83:b2:64:72:54:d5:3b:57:
09:77:b9:d2:b6:17:82:a8:59:d8:3b:0f:98:8f:78:
74:e5:c1:37:42:72:81:45:fb:7a:c0:d1:ec:80:40:
a3:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:4B:E4:88:81:98:7B:2E:12:06:79:F3:B6:8E:26:50:67:41:D7:58
X509v3 Authority Key Identifier:
keyid:96:BB:94:B4:57:F9:D8:2A:29:B5:B2:FD:9F:3A:44:18:89:9E:71:EC
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/lruUtFf52CoptbL9nzpEGImecew.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/lruUtFf52CoptbL9nzpEGImecew.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/v0vkiIGYey4SBnnzto4mUGdB11g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2405:a00::/32
Signature Algorithm: sha256WithRSAEncryption
10:f4:ee:e7:85:d8:72:98:58:1d:d2:01:6a:11:92:c7:23:9f:
16:e2:b1:34:45:c6:6a:ba:68:26:c1:8d:48:84:70:47:00:35:
36:32:4b:99:2c:8f:2f:62:c7:2b:e4:c9:d1:38:72:8b:dc:4e:
f8:2d:2b:22:38:b2:0f:74:40:f3:52:b4:a0:63:a9:c1:f8:17:
00:c8:82:82:9b:d9:62:cf:c7:10:d6:f2:42:cc:ca:91:e2:92:
47:1d:78:1d:05:0a:df:00:62:f6:2b:5f:18:d3:91:fd:cb:74:
9e:2c:e6:81:cf:72:69:90:78:93:e8:80:7c:1f:7a:85:32:5b:
89:a8:3d:ba:3d:24:1a:25:41:d9:a9:75:b1:44:de:01:db:5c:
2a:ea:2c:83:bf:e0:87:7a:dc:e0:ef:ea:44:de:57:63:d4:61:
ed:b0:e0:5a:87:66:b4:3b:9d:a7:e2:2b:41:ac:bc:e7:dd:ec:
3c:72:8c:d0:6a:98:df:88:5c:0d:eb:33:4b:eb:c8:14:ee:71:
1d:31:e8:f0:fc:06:31:8f:b9:a6:d9:58:f1:f7:57:56:9c:ae:
dd:44:64:23:a2:c9:a6:64:6b:82:08:c4:05:5e:40:c1:0c:bb:
bf:f3:1c:15:dd:d1:34:51:e0:52:84:b4:f7:97:df:18:35:cd:
5f:e5:ff:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:23 2024 by rpki-client on console-fra.rpki-client.org