Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/xeXSINr62nMK0-J0_q2E5S63ufM.roa
File: xeXSINr62nMK0-J0_q2E5S63ufM.roa (raw, json)
Hash identifier: OD36PBsKbwa5ekP6NOmcV6ih0v29yDuW6IcIdYVOQEY=
Subject key identifier: C5:E5:D2:20:DA:FA:DA:73:0A:D3:E2:74:FE:AD:84:E5:2E:B7:B9:F3
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 13E5
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/xeXSINr62nMK0-J0_q2E5S63ufM.roa
Signing time: Wed 05 Mar 2025 07:28:08 +0000
ROA not before: Wed 05 Mar 2025 07:28:08 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18428
IP address blocks: 2407:3d00::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5093 (0x13e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Mar 5 07:28:08 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=C5E5D220DAFADA730AD3E274FEAD84E52EB7B9F3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:7f:28:0e:c4:21:02:0c:b3:18:33:8b:f1:e8:
39:8e:46:57:ec:06:8d:7a:d1:b8:3f:ae:86:ca:09:
55:62:50:46:30:d0:5b:76:41:91:f3:2c:c2:ad:a5:
80:82:1c:92:15:91:f5:e5:ab:84:f0:81:f1:36:f7:
e1:50:c1:2c:b8:ae:eb:20:11:79:59:f7:bf:3d:ac:
72:5d:d5:e3:6b:0c:ef:a3:2a:66:a7:06:3c:07:fc:
0a:be:8b:28:e1:bf:ee:a6:41:6c:36:48:be:84:af:
8a:15:f4:4c:a5:57:49:3b:f6:22:3d:3f:02:b0:5e:
bf:89:3e:c2:7b:a6:af:01:2a:35:a8:83:43:1d:62:
60:e3:6f:0e:33:01:93:11:f7:37:7d:96:89:4d:d7:
ed:84:4e:2b:6a:11:a1:86:40:19:94:e9:b0:09:ff:
01:03:af:cd:72:73:a5:08:33:15:12:15:6b:ed:d7:
64:96:c9:17:6e:d2:1d:2a:32:c2:5d:2d:c5:a3:ce:
e1:de:e2:bc:0d:e8:d6:da:60:b2:e1:51:aa:00:b3:
27:ef:96:3e:f9:7c:e0:00:14:5f:33:9c:c8:36:91:
b7:a7:04:af:09:40:93:d3:d7:57:90:f1:41:b9:9a:
b3:0e:f4:f0:db:15:8f:61:db:bf:17:26:36:b0:dc:
e8:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:E5:D2:20:DA:FA:DA:73:0A:D3:E2:74:FE:AD:84:E5:2E:B7:B9:F3
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/xeXSINr62nMK0-J0_q2E5S63ufM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2407:3d00::/32
Signature Algorithm: sha256WithRSAEncryption
a6:57:aa:0c:b7:e3:67:c2:79:77:98:3a:6a:d4:69:85:5e:bf:
32:46:f8:06:98:dd:e6:86:a6:04:2f:c3:fe:a6:e2:6f:3f:89:
18:c7:f1:3b:1f:8c:01:db:2e:9d:a5:26:7e:a2:e7:0a:c9:ff:
3d:1d:6c:2f:14:96:a4:00:49:93:1f:0a:59:aa:d1:ac:f2:21:
87:01:e8:a7:b2:b8:b0:3a:bf:3a:6c:bc:b4:7b:63:bf:9e:cb:
29:54:da:ae:19:a9:f6:3f:63:cb:d8:be:7f:78:9d:69:fc:17:
2c:b6:4c:b9:1b:b6:1f:c6:a6:78:45:e5:59:89:2f:d8:d1:94:
91:b4:04:2b:2a:4d:c8:08:bf:ad:ed:1a:ed:94:ad:e5:52:aa:
ea:3d:3b:05:87:b3:98:f9:c3:d2:6d:39:cc:c2:1c:ec:90:2d:
07:d2:90:fe:d4:f1:2f:e0:c6:c4:b2:be:e5:49:4b:b9:b0:4b:
7c:cc:df:15:7b:3a:52:da:63:c6:54:89:e0:15:bf:50:11:8b:
48:c4:98:db:a8:e0:37:a9:2e:02:dd:03:e0:32:e8:17:26:c7:
7a:83:1a:0e:bd:4c:2c:8f:75:8c:f5:65:11:41:16:47:ab:e0:
ae:69:c9:f7:e7:27:34:b0:6f:1a:21:6d:49:a6:69:da:02:aa:
e7:31:ab:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 08:29:45 2025 by rpki-client