Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/NytVNh-7oZbTfdhlYaYzYd2qYhc.roa
File: NytVNh-7oZbTfdhlYaYzYd2qYhc.roa (raw, json)
Hash identifier: DT43VH/PM1F1fl0iJRTcfyK6ZnlDdmVbOa39Th86ANk=
Subject key identifier: 37:2B:55:36:1F:BB:A1:96:D3:7D:D8:65:61:A6:33:61:DD:AA:62:17
Certificate issuer: /CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Certificate serial: 0B95
Authority key identifier: DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/NytVNh-7oZbTfdhlYaYzYd2qYhc.roa
Signing time: Fri 01 Sep 2023 09:49:25 +0000
ROA not before: Fri 01 Sep 2023 09:49:25 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131584
IP address blocks: 2400:4e80::/32 maxlen: 124
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2965 (0xb95)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Validity
Not Before: Sep 1 09:49:25 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=372B55361FBBA196D37DD86561A63361DDAA6217
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:3c:9d:eb:93:4e:fa:73:2d:83:92:6b:15:2a:
e1:ac:0c:b4:ed:70:ba:d7:d7:fa:e3:c0:b8:90:a5:
64:54:c8:f9:a4:3e:89:d7:a9:4b:85:19:11:3d:10:
f0:3a:1b:58:e7:52:4e:02:c7:bb:22:0b:b4:1c:f0:
b9:a6:d3:71:15:91:7f:a6:11:a0:c0:85:9c:a8:2c:
94:14:b3:4b:1a:e3:18:02:c5:e1:39:81:d1:8c:57:
01:71:07:68:f3:58:45:40:e6:bb:76:22:12:b0:8e:
fe:4c:e2:0f:30:41:95:32:9d:2c:ba:20:0d:1a:c8:
e2:ee:7a:85:44:20:95:7c:d3:24:d8:79:e5:42:2e:
90:3f:15:13:63:f2:d1:13:b7:f8:92:48:63:08:b8:
b4:e4:50:64:bd:54:fc:76:57:44:a8:d3:9f:3d:42:
b9:5c:92:6f:5c:6d:d1:f6:3f:32:2f:79:f2:bf:46:
d5:82:ea:0c:7c:db:b7:1f:c7:6b:6e:c4:10:0e:1b:
01:1a:0b:dc:01:0f:4f:4a:55:e4:14:a2:cf:30:dd:
dd:fa:6d:9e:d9:68:48:d9:e3:67:3b:5f:c8:bc:d4:
c1:36:b5:f4:80:a8:c7:73:9c:97:9f:0b:27:65:69:
4b:42:61:35:76:13:a6:5d:51:37:89:ef:99:1a:88:
e7:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:2B:55:36:1F:BB:A1:96:D3:7D:D8:65:61:A6:33:61:DD:AA:62:17
X509v3 Authority Key Identifier:
keyid:DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/NytVNh-7oZbTfdhlYaYzYd2qYhc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:4e80::/32
Signature Algorithm: sha256WithRSAEncryption
20:90:d9:45:06:52:23:f5:a6:b1:07:e5:70:1c:2f:36:3a:6c:
a4:bb:a2:57:4c:6d:8f:88:ca:9c:14:8b:ac:bb:0c:8c:b3:c2:
3c:33:6f:ec:b5:fa:c3:4c:74:ce:5d:6e:51:9c:0d:b3:0e:fe:
24:8a:d6:c8:84:2a:84:5d:bb:83:9c:ea:08:28:fb:81:04:94:
10:dd:a7:be:8f:54:64:37:c2:5d:b8:86:c7:94:00:8f:86:c2:
e5:fc:90:a9:cf:f1:a2:9e:2f:2e:73:f9:60:d6:fe:0d:02:ad:
0b:58:a5:5e:3e:87:ab:0b:43:24:49:e7:7f:c3:95:64:01:33:
f8:75:23:8f:b9:5b:d6:cc:67:f5:94:d6:f9:7f:a9:38:29:a1:
ed:c3:81:58:13:07:57:e6:92:18:b8:e2:1e:31:f9:ee:16:ca:
15:40:8c:74:75:e2:ad:bb:a2:38:f2:81:11:41:8b:4a:26:8a:
47:45:ed:64:f7:f6:9e:0b:b6:b2:ab:b3:cc:78:d3:47:f5:74:
41:c9:37:88:ee:44:11:d3:b3:4d:df:aa:4b:f5:b1:99:c0:50:
b1:2c:a5:9a:ed:34:01:29:c9:7a:bd:34:75:79:d3:8b:ad:5f:
db:5f:fe:4c:75:37:ff:9f:48:42:71:4c:24:00:73:6d:ab:77:
18:9c:a6:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:23 2024 by rpki-client on console-fra.rpki-client.org