Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/i1sHBzLD63tyMs77E56IrBNVNeg.roa
File: i1sHBzLD63tyMs77E56IrBNVNeg.roa (raw, json)
Hash identifier: mdJu1JlqnSzMLgxg/3dGX+UTKja1MSkqbRVxv/NeM8U=
Subject key identifier: 8B:5B:07:07:32:C3:EB:7B:72:32:CE:FB:13:9E:88:AC:13:55:35:E8
Certificate issuer: /CN=9BFCFAA2106742B2C099E3F4C2A50428E5CD62D3
Certificate serial: 01B6
Authority key identifier: 9B:FC:FA:A2:10:67:42:B2:C0:99:E3:F4:C2:A5:04:28:E5:CD:62:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/m_z6ohBnQrLAmeP0wqUEKOXNYtM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/i1sHBzLD63tyMs77E56IrBNVNeg.roa
Signing time: Mon 26 Aug 2024 05:27:47 +0000
ROA not before: Mon 26 Aug 2024 05:27:47 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 134823
IP address blocks: 2400:c9a0::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 438 (0x1b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9BFCFAA2106742B2C099E3F4C2A50428E5CD62D3
Validity
Not Before: Aug 26 05:27:47 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=8B5B070732C3EB7B7232CEFB139E88AC135535E8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:23:3b:ea:c8:c6:8b:07:87:61:b2:1b:51:b5:
ac:52:f5:1b:89:83:16:05:dd:ac:df:41:24:e8:5d:
d1:cd:9c:48:0e:97:12:1d:f1:bb:78:0d:db:bf:bd:
0a:1f:b1:fa:59:93:80:41:cf:f6:94:44:5f:bf:ff:
7b:75:9e:48:dd:f2:32:c2:ef:b0:42:7d:a5:80:1f:
4d:68:be:2d:9e:f3:d7:6d:cf:81:43:75:aa:e8:fd:
10:10:6b:1e:d3:62:81:70:c5:74:f1:a4:12:6f:a8:
ca:c8:8a:5c:c9:e6:50:45:a2:5a:ad:ad:f6:75:82:
11:dd:c5:97:08:9a:25:80:33:45:35:34:f9:95:e6:
db:fb:58:45:b7:ac:d3:2e:14:d4:50:f0:18:75:7a:
cb:fe:93:ce:70:d8:e5:d8:a4:ea:45:aa:e3:6b:67:
cc:21:03:4b:c4:d9:ba:17:a3:34:a0:cc:81:cc:e7:
0e:bc:84:8d:6d:2f:fa:85:7b:a5:aa:90:c9:32:64:
e8:d1:46:26:d5:dc:17:7c:d8:03:f2:2c:c6:f3:ae:
66:14:9e:72:d5:7f:91:ee:03:ee:6c:bc:be:3f:5e:
29:c2:5e:06:cc:3c:3d:54:d9:cf:91:96:c9:3e:26:
58:96:ab:5e:25:39:74:6c:4d:53:7a:dd:9c:4d:91:
08:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:5B:07:07:32:C3:EB:7B:72:32:CE:FB:13:9E:88:AC:13:55:35:E8
X509v3 Authority Key Identifier:
keyid:9B:FC:FA:A2:10:67:42:B2:C0:99:E3:F4:C2:A5:04:28:E5:CD:62:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/m_z6ohBnQrLAmeP0wqUEKOXNYtM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/m_z6ohBnQrLAmeP0wqUEKOXNYtM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/i1sHBzLD63tyMs77E56IrBNVNeg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:c9a0::/32
Signature Algorithm: sha256WithRSAEncryption
9e:1b:b5:6c:6d:2c:93:1b:1f:27:7e:fe:67:46:9a:a9:ca:ba:
96:d4:f6:f2:6f:7a:a6:e8:cb:fe:98:f1:25:d3:b0:7e:85:5a:
33:e3:fb:16:b1:a3:b2:39:51:39:3b:bc:dd:aa:c9:32:c0:50:
14:15:f0:1d:78:cc:3f:f3:20:46:69:f9:8b:20:69:28:85:77:
d2:07:12:c2:fc:11:8c:b8:44:6b:b0:68:b9:4b:b2:a0:04:3a:
be:af:af:f9:74:ad:f3:d1:70:87:2f:99:66:7e:d5:40:4f:2e:
fc:f9:ff:bb:ee:c8:ca:76:c4:76:56:8a:07:3b:28:71:39:05:
57:75:56:50:1c:30:3b:42:ea:bc:ec:8f:8e:b8:39:d8:fd:14:
49:23:fc:a0:4a:1d:f1:4b:2c:f2:5e:8b:1b:b5:fa:77:75:27:
00:77:b3:d3:dc:4a:ee:40:12:24:f4:35:22:26:a9:a8:ea:4a:
d1:26:94:66:ae:24:86:04:0c:32:3b:5f:8d:c5:38:d9:df:9d:
c2:cb:a5:4f:ad:a4:af:51:92:9d:63:67:b1:d4:39:0b:e8:be:
49:48:4f:68:22:7a:74:31:89:72:bf:68:37:e1:9e:c0:72:d9:
83:11:19:59:98:0f:1f:c8:32:3e:fd:a8:39:5d:7f:7b:d0:b6:
35:e5:9b:0d
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Tue Apr 15 20:15:07 2025 by rpki-client