Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/K97zXKB3AeIbJS30mJaXGSnUJ_o.roa
File: K97zXKB3AeIbJS30mJaXGSnUJ_o.roa (raw, json)
Hash identifier: 1zGJ4+Acsa/Lh/LhHFmqsnxugl+IP4jQockaXYMZyEA=
Subject key identifier: 2B:DE:F3:5C:A0:77:01:E2:1B:25:2D:F4:98:96:97:19:29:D4:27:FA
Certificate issuer: /CN=9BFCFAA2106742B2C099E3F4C2A50428E5CD62D3
Certificate serial: F3
Authority key identifier: 9B:FC:FA:A2:10:67:42:B2:C0:99:E3:F4:C2:A5:04:28:E5:CD:62:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/m_z6ohBnQrLAmeP0wqUEKOXNYtM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/K97zXKB3AeIbJS30mJaXGSnUJ_o.roa
Signing time: Tue 21 Nov 2023 15:31:03 +0000
ROA not before: Tue 21 Nov 2023 15:31:03 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131657
IP address blocks: 2400:c9a0::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 243 (0xf3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9BFCFAA2106742B2C099E3F4C2A50428E5CD62D3
Validity
Not Before: Nov 21 15:31:03 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=2BDEF35CA07701E21B252DF49896971929D427FA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:b3:94:e4:40:0a:1e:a8:2e:c3:e7:70:a6:c9:
4e:5c:d9:30:66:2e:73:81:cb:ce:9b:9f:0c:c9:f8:
bd:43:d2:5b:c4:f3:4c:44:fc:16:d0:bb:b6:f3:bf:
71:47:89:bf:9a:8d:3e:e2:7c:4e:40:3e:cc:b1:19:
a5:d1:f0:75:29:6e:7c:36:70:67:6a:ae:7d:ef:a4:
08:60:b9:dd:e2:4c:3d:60:fe:60:43:da:18:9e:bc:
27:81:b3:aa:21:f4:24:c7:fb:01:c1:06:10:76:f8:
9a:20:03:84:25:29:c4:3c:f9:e0:16:2a:ee:4e:81:
30:b6:d8:bd:1d:2a:a1:ea:71:00:96:53:bd:73:1e:
f8:91:a7:da:c3:69:ad:e0:8a:41:82:18:6b:c5:70:
01:58:7c:4d:c3:08:5f:f0:48:80:66:84:5c:9d:7b:
f8:a8:12:33:7d:e1:2a:3a:c8:7b:ca:cc:14:14:fd:
18:c9:66:5a:d2:ee:33:ce:8e:46:35:72:91:32:62:
dc:aa:1d:cb:27:29:07:78:0f:96:2a:ab:27:85:e3:
33:37:85:6e:66:0c:a3:c0:f7:84:59:c6:05:63:2b:
fb:90:5e:04:97:d8:a3:72:40:21:8e:3e:28:b1:b0:
f8:cb:8f:ea:a1:3f:d1:5b:e9:e6:c3:52:97:26:c4:
33:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:DE:F3:5C:A0:77:01:E2:1B:25:2D:F4:98:96:97:19:29:D4:27:FA
X509v3 Authority Key Identifier:
keyid:9B:FC:FA:A2:10:67:42:B2:C0:99:E3:F4:C2:A5:04:28:E5:CD:62:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/m_z6ohBnQrLAmeP0wqUEKOXNYtM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/m_z6ohBnQrLAmeP0wqUEKOXNYtM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/K97zXKB3AeIbJS30mJaXGSnUJ_o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:c9a0::/32
Signature Algorithm: sha256WithRSAEncryption
a2:f6:b8:28:2b:1e:a8:33:3a:a8:5f:05:38:e7:61:bd:ef:bd:
53:df:44:29:b7:39:ff:25:6b:d6:5c:f9:27:80:c8:56:5c:c8:
3d:91:74:1f:37:f3:da:98:37:ce:56:90:8e:97:06:fd:0b:65:
ee:65:8b:e8:d5:2b:66:75:33:47:fc:9a:4b:44:ce:6a:d9:33:
b1:f5:5b:dd:ce:02:05:b6:de:4e:7d:f7:e5:3b:4d:83:83:14:
b9:8f:e7:e3:4d:29:8d:7f:f0:41:25:96:c2:60:e4:0e:af:77:
ae:f2:30:4b:d4:15:71:3d:ba:ba:3d:66:e6:f8:2d:ce:f8:65:
ca:d2:b2:83:eb:90:af:37:5e:49:6c:c2:fc:28:42:8d:61:f0:
f0:f9:e2:c1:d0:b7:75:df:cb:aa:46:14:6e:ba:06:df:ee:62:
b2:f7:5e:3b:ec:91:cc:cb:09:ef:0d:a5:83:f9:38:4c:20:be:
c3:be:3f:87:75:4f:00:6a:94:67:9a:3e:69:88:28:9e:a6:83:
f1:9d:ab:fb:a3:0d:34:e0:4f:dc:27:4f:b4:c1:d7:de:a9:53:
b8:bc:b2:0b:1e:6b:53:a1:3b:bc:98:33:65:7f:e1:6d:59:c3:
1e:7c:19:28:14:78:a4:fd:e6:f5:8b:ab:52:2f:9a:af:54:75:
ad:89:d3:4b
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:23 2024 by rpki-client on console-fra.rpki-client.org