Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/zP1w6T5rzbFJwiLJhRVcacg9I5Q.roa
File: zP1w6T5rzbFJwiLJhRVcacg9I5Q.roa (raw, json)
Hash identifier: aO5ytkyvArvMAn8OCNbYH0aLHcwj2jw3szLWTc7tNh4=
Subject key identifier: CC:FD:70:E9:3E:6B:CD:B1:49:C2:22:C9:85:15:5C:69:C8:3D:23:94
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 36A0
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/zP1w6T5rzbFJwiLJhRVcacg9I5Q.roa
Signing time: Mon 10 Feb 2025 13:54:31 +0000
ROA not before: Mon 10 Feb 2025 13:54:31 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38841
IP address blocks: 2407:4d00:ff09::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13984 (0x36a0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 10 13:54:31 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=CCFD70E93E6BCDB149C222C985155C69C83D2394
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:9d:65:d8:b6:54:10:84:4a:c4:ed:20:ec:29:
74:05:ee:0b:ee:bd:f4:e2:42:b0:a9:09:df:6b:5b:
74:e8:72:6a:58:e6:d1:cf:bd:0c:c0:1a:c8:41:04:
d6:1a:61:76:45:c9:23:ae:d7:91:2d:d6:e4:90:1d:
85:08:76:4a:b4:a1:21:5f:da:18:94:d8:97:26:f4:
8a:60:e2:38:47:5d:a1:ae:ab:ae:55:ac:16:48:ff:
93:3f:a9:c2:71:c6:fb:eb:1f:f7:08:8a:dd:1f:77:
7e:16:b3:0e:cb:68:39:c7:fb:15:fd:56:a0:a2:f7:
d0:6e:81:e9:18:29:40:cc:47:47:96:16:a7:21:ae:
08:6c:2f:89:ec:3f:83:65:14:89:c4:c0:86:ef:96:
4d:f4:f3:d9:8e:b1:4a:18:90:54:90:25:99:e0:b8:
8b:61:80:7b:44:be:5e:fa:74:82:e5:9e:5e:89:d5:
ea:09:78:46:ba:33:d8:a6:1e:33:90:58:fb:d5:ae:
e3:d2:08:67:80:88:86:06:cb:b0:e1:d8:e2:cf:d7:
37:bd:60:90:96:05:36:42:7e:65:ba:66:c9:23:88:
37:2a:a2:a4:ad:a3:4c:83:37:54:ad:55:75:cf:fc:
63:e8:91:cc:6e:b4:60:ea:6e:93:fd:cf:99:bf:a4:
b5:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:FD:70:E9:3E:6B:CD:B1:49:C2:22:C9:85:15:5C:69:C8:3D:23:94
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/zP1w6T5rzbFJwiLJhRVcacg9I5Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2407:4d00:ff09::/48
Signature Algorithm: sha256WithRSAEncryption
a5:3b:88:93:0f:e0:0c:63:f5:e4:2a:a2:ea:e2:1b:cc:af:48:
5b:2f:ee:22:bc:a0:85:eb:44:e8:ff:c3:e2:81:5f:f2:5e:3f:
77:cd:7b:3a:e9:b0:67:5b:bc:6f:16:63:7d:93:a8:d4:49:cd:
dc:36:86:5b:d5:b6:5e:4a:ff:b8:9d:96:af:35:87:cf:f5:a8:
a5:5f:1e:b4:06:8f:ef:7f:2e:5f:9e:0a:e4:a6:f2:54:2e:98:
1b:d2:3c:4e:87:0f:e3:5e:f1:cf:8c:b3:19:59:c3:9a:45:94:
45:67:bc:4b:e7:9a:20:42:13:27:4f:a9:bc:c8:3e:06:1d:4c:
53:b1:3c:0c:d5:70:1e:6a:28:e1:2b:10:05:c9:0f:66:18:6a:
5c:95:fa:35:2f:35:e5:43:2e:40:4d:83:2f:03:b4:e4:5f:fe:
a6:a9:b1:9b:4e:10:11:97:29:1a:6d:f8:1a:e5:ca:b0:c6:7a:
5e:34:20:31:a1:a1:e9:94:eb:52:b6:f6:bf:7b:5a:22:f1:d3:
70:41:45:37:9b:ba:bc:e9:f3:cc:3b:70:23:51:63:bd:5c:fa:
07:74:79:78:2f:b6:d5:8a:03:3e:58:a8:23:46:5f:36:61:77:
b3:68:07:b7:db:13:e3:af:c4:76:7a:d5:29:b5:3a:79:e7:8c:
a2:f1:a0:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:11:23 2025 by rpki-client