Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/nFtJRlKALSh2OfaNmt8Q_Hzohw4.roa
File: nFtJRlKALSh2OfaNmt8Q_Hzohw4.roa (raw, json)
Hash identifier: DxckC06zBFfiQRswv5X2IHSPVbRzs97iK+Ybzbmy0EI=
Subject key identifier: 9C:5B:49:46:52:80:2D:28:76:39:F6:8D:9A:DF:10:FC:7C:E8:87:0E
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0E53
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/nFtJRlKALSh2OfaNmt8Q_Hzohw4.roa
Signing time: Mon 26 Aug 2024 05:27:15 +0000
ROA not before: Mon 26 Aug 2024 05:27:15 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 1659
IP address blocks: 2001:288::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3667 (0xe53)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Aug 26 05:27:15 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=9C5B494652802D287639F68D9ADF10FC7CE8870E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:3a:a1:f5:0f:70:d3:61:71:03:76:46:42:c0:
79:a3:4b:16:25:ce:4f:07:86:da:ea:c8:b7:1f:fe:
99:39:48:b9:bc:0f:cd:0a:52:48:1a:aa:73:a3:7b:
d9:e6:05:05:40:b2:8f:43:92:ab:b4:50:c8:f4:4a:
83:4c:3f:f6:66:e6:24:c1:e0:0f:a7:ee:b8:b8:aa:
32:28:79:6f:8c:c3:0f:a7:35:08:29:70:8d:58:20:
37:c5:ae:96:aa:ab:43:aa:b3:49:f7:9b:74:62:24:
a0:76:82:11:67:88:61:dd:66:d7:88:86:fc:2a:29:
d9:c4:71:54:4f:3c:74:07:8d:76:5a:4d:f0:a4:23:
a6:e2:75:0a:f5:bb:0d:00:4b:59:95:7c:c2:3c:91:
2d:24:15:fe:b2:d2:9f:d5:62:aa:74:1e:dc:e3:02:
e7:1f:fb:50:38:51:f3:ea:40:18:4f:c0:5d:14:1e:
c5:ca:8c:d0:dd:74:aa:87:01:07:39:e4:7b:d4:ce:
47:82:e2:80:cd:0e:6a:10:42:2a:69:cf:4c:1b:53:
e1:36:80:a0:b7:4b:f8:99:b0:a5:71:f0:9d:94:e0:
15:a6:25:fb:b3:24:2e:d9:db:fd:27:5a:ac:0c:d1:
4f:36:05:8f:b7:fa:08:89:64:29:9a:d1:c1:26:cb:
40:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:5B:49:46:52:80:2D:28:76:39:F6:8D:9A:DF:10:FC:7C:E8:87:0E
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/nFtJRlKALSh2OfaNmt8Q_Hzohw4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:288::/32
Signature Algorithm: sha256WithRSAEncryption
55:a7:70:1b:64:fa:4a:2f:dd:af:7b:0a:a8:30:7b:bc:c6:df:
cd:e3:79:e4:8d:51:80:44:cc:12:fd:d4:bc:3e:4b:c7:f4:b4:
ad:5d:35:dc:f1:9d:74:4a:5b:4a:3a:a1:2c:92:6f:a1:17:08:
ab:c4:d3:23:8f:20:f3:ef:ea:06:1c:0e:38:65:94:e3:ac:c5:
d8:7e:a6:fc:72:34:40:22:89:71:5f:96:06:74:4a:cd:ab:05:
a1:bd:11:bb:fd:53:e0:70:f3:19:f7:36:47:e4:68:11:29:0b:
fa:05:af:2b:3c:cf:62:50:c2:0d:ea:06:4d:75:b7:91:16:25:
35:92:bd:46:cc:b6:bf:7d:48:4b:30:b9:73:2a:54:34:99:75:
e6:37:a2:06:65:11:d4:b1:bf:1b:44:ab:af:83:56:d7:ab:7f:
c4:a1:80:20:d3:fd:cf:24:5d:e4:c9:12:2f:ca:a4:08:f1:1d:
af:91:24:36:35:e6:4c:84:91:55:0d:91:6c:75:19:86:c5:c4:
89:96:47:e8:49:b5:82:38:63:8a:72:12:41:27:f2:6d:46:ff:
9a:b6:fd:b9:9c:38:10:42:a6:52:5f:60:a1:a4:58:3f:d4:80:
f1:87:ce:c5:ed:d6:7c:01:c8:2c:43:6f:4c:c6:f3:35:ee:22:
e6:ff:cf:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:16:43 2025 by rpki-client