Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TIH/mXytzumE6LJO4KZ7BiceLuIrJdo.roa
File: mXytzumE6LJO4KZ7BiceLuIrJdo.roa (raw, json)
Hash identifier: 2Li19RmfDFHs/RR3MfiTB40medJyb2opBm/Vff5f8QI=
Subject key identifier: 99:7C:AD:CE:E9:84:E8:B2:4E:E0:A6:7B:06:27:1E:2E:E2:2B:25:DA
Certificate issuer: /CN=2D7204617354D70523B6F65A270712B6B19D815E
Certificate serial: 0C47
Authority key identifier: 2D:72:04:61:73:54:D7:05:23:B6:F6:5A:27:07:12:B6:B1:9D:81:5E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LXIEYXNU1wUjtvZaJwcStrGdgV4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TIH/mXytzumE6LJO4KZ7BiceLuIrJdo.roa
Signing time: Thu 15 Aug 2024 16:38:40 +0000
ROA not before: Thu 15 Aug 2024 16:38:40 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38254
IP address blocks: 2403:7f40:e000::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3143 (0xc47)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2D7204617354D70523B6F65A270712B6B19D815E
Validity
Not Before: Aug 15 16:38:40 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=997CADCEE984E8B24EE0A67B06271E2EE22B25DA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:9e:04:a0:dd:0c:27:fd:f4:7d:30:8f:1d:73:
29:b6:bb:e9:f7:05:9c:43:39:c8:cc:46:f6:4f:09:
55:03:f8:75:ae:61:1a:cd:25:7e:a5:fa:d9:cd:2e:
0a:13:a8:fe:43:05:fd:6c:9e:f3:30:91:5c:38:cd:
62:c7:ac:7e:0b:82:fd:24:63:87:ab:53:8a:25:db:
1b:95:00:39:29:86:3a:b9:3e:da:41:67:e1:29:a8:
ab:9c:41:e2:c5:4a:5b:2a:2a:96:4c:a3:ca:fc:e2:
84:15:3f:15:f1:b5:98:66:fb:6e:f1:41:93:76:a9:
78:02:b5:2e:bd:a7:12:43:75:e5:24:4d:3a:d5:67:
a5:e6:df:3b:e5:db:f5:56:4c:53:df:cd:5b:d1:db:
5d:2e:90:29:cd:ce:f7:dd:57:60:ea:71:98:04:c1:
f7:e7:12:08:57:e2:8a:18:14:66:17:4d:42:70:fe:
be:d5:01:16:db:e4:86:33:7b:7d:88:46:ad:e0:1d:
46:48:68:d5:6d:5b:e4:08:64:66:10:4a:79:48:34:
14:73:ac:83:91:e6:87:9a:b7:e8:f6:a9:3a:2a:50:
cc:9c:28:75:57:6f:db:93:9a:47:5d:10:48:f0:97:
7a:dd:6f:f5:08:63:cd:1f:e8:f5:7c:df:d3:b7:30:
f6:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:7C:AD:CE:E9:84:E8:B2:4E:E0:A6:7B:06:27:1E:2E:E2:2B:25:DA
X509v3 Authority Key Identifier:
keyid:2D:72:04:61:73:54:D7:05:23:B6:F6:5A:27:07:12:B6:B1:9D:81:5E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TIH/LXIEYXNU1wUjtvZaJwcStrGdgV4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LXIEYXNU1wUjtvZaJwcStrGdgV4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TIH/mXytzumE6LJO4KZ7BiceLuIrJdo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:7f40:e000::/48
Signature Algorithm: sha256WithRSAEncryption
7c:dc:20:c5:03:dd:ad:5f:af:d1:ce:0f:98:61:a6:03:a1:75:
ad:ba:30:14:9e:3c:7a:0d:7c:97:de:75:01:21:b4:91:87:90:
09:30:c7:d4:bc:80:0f:3d:9d:e5:80:94:22:07:f0:bf:f1:e9:
fa:65:e9:4e:b0:d3:49:7f:07:7a:61:57:3c:d3:61:71:03:d9:
f1:98:c7:3d:23:d2:d4:25:94:d1:31:ef:f7:87:78:e0:15:85:
ef:fb:a4:18:76:9c:23:b2:3f:d3:c5:1e:7a:42:d4:38:0e:3b:
1c:a2:e7:ba:af:70:a5:8d:e4:b8:1d:3f:d8:57:f6:d3:03:1e:
19:66:03:26:b7:63:1f:8d:a7:a9:01:42:ea:c7:af:26:2d:86:
64:c3:3f:8d:26:4b:9b:83:c6:05:7e:f2:29:8e:06:b1:16:9b:
d1:04:ca:67:ff:c6:d8:31:1e:9c:eb:26:02:2d:3f:76:53:fa:
ba:9f:e8:4d:d9:b3:fc:89:71:4f:03:23:6f:4a:d3:bc:49:aa:
45:a7:5f:c0:e4:bf:59:27:94:de:72:9a:2f:bf:ad:81:85:17:
63:ba:c5:63:e3:22:df:0e:1f:f3:c7:27:28:dc:9a:26:1b:4a:
a5:77:17:69:6c:a4:6f:dc:e3:a2:6d:0e:c3:db:02:87:f5:46:
f7:3a:36:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:23 2024 by rpki-client on console-fra.rpki-client.org