Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/oZXxChf66Wbb5YOyol2geDl6YS8.roa
File: oZXxChf66Wbb5YOyol2geDl6YS8.roa (raw, json)
Hash identifier: kwNGYkOUA47ow5NYn11aGHlyAPtQyc2f2cwP7T+T8h4=
Subject key identifier: A1:95:F1:0A:17:FA:E9:66:DB:E5:83:B2:A2:5D:A0:78:39:7A:61:2F
Certificate issuer: /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Certificate serial: 0E19
Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/oZXxChf66Wbb5YOyol2geDl6YS8.roa
Signing time: Mon 10 Feb 2025 14:22:09 +0000
ROA not before: Mon 10 Feb 2025 14:22:09 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18424
IP address blocks: 2405:8700:3000::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3609 (0xe19)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Validity
Not Before: Feb 10 14:22:09 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=A195F10A17FAE966DBE583B2A25DA078397A612F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:15:c5:79:0c:17:61:37:09:0a:6a:99:c3:b7:
5f:b9:9c:f8:d2:df:26:30:2d:7e:47:8b:2d:a2:f7:
87:98:89:fd:72:32:3c:43:8b:9f:ba:f7:3b:a8:ee:
5b:7b:af:26:1a:25:7b:96:cc:14:71:a7:d1:82:91:
c9:da:ce:44:0e:96:83:f4:a9:4b:f6:b0:1d:ff:3d:
34:be:7d:49:f6:80:87:01:80:54:d7:de:89:03:4e:
d6:13:85:e8:59:42:af:03:87:d7:c9:2f:3b:c7:ba:
53:e4:aa:b3:27:f9:33:23:c5:d6:03:e8:3a:fd:20:
8c:e7:ad:71:05:7a:ce:74:29:b8:aa:33:2f:e5:c8:
5d:63:1d:6b:2b:58:b9:8f:f7:7f:a9:1b:d3:f5:5f:
d1:ed:6b:bd:f5:47:04:60:96:0f:c4:f6:96:03:23:
b6:0e:08:37:a7:ec:ea:7b:15:da:c9:30:50:51:24:
97:cc:2b:ce:1d:5b:38:1d:5f:ec:08:92:01:89:00:
06:1e:19:f8:d6:d1:d6:04:56:0a:e0:ee:df:b8:13:
bb:e8:a6:73:01:83:dd:03:6c:ff:bd:49:95:40:d9:
c4:30:71:c6:cd:d2:46:61:0d:1b:ea:08:ae:4f:91:
cf:02:6d:90:85:61:9e:f1:8e:76:dc:67:b3:1e:b6:
70:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:95:F1:0A:17:FA:E9:66:DB:E5:83:B2:A2:5D:A0:78:39:7A:61:2F
X509v3 Authority Key Identifier:
keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/oZXxChf66Wbb5YOyol2geDl6YS8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2405:8700:3000::/48
Signature Algorithm: sha256WithRSAEncryption
10:8b:41:0c:c8:ec:7e:9e:cb:2d:bc:40:a3:34:27:8b:d1:d5:
97:7f:f5:0e:49:d9:53:1c:b9:23:3e:f8:b2:7b:76:19:e9:b1:
ed:f7:97:68:d5:18:8b:ae:d3:6d:b2:b2:f7:05:5a:04:7d:40:
1f:29:ff:cb:7a:46:8f:60:cd:f6:01:2c:b2:04:96:99:2e:9f:
a2:b7:e4:53:81:e4:21:10:35:61:66:fb:16:6f:77:95:8f:58:
19:cc:76:87:a2:e6:51:dc:39:3b:c5:20:1e:d8:37:67:23:fc:
e7:b3:e4:60:eb:da:fb:36:42:2c:6c:e3:05:28:e8:66:1f:bb:
48:e7:67:40:93:69:79:2b:c4:2c:1d:60:1c:8e:a8:23:d6:9a:
6e:b7:07:10:e0:74:7d:0b:b6:fa:24:6e:50:5d:00:52:1e:9d:
cb:28:75:09:06:86:87:7b:10:08:0b:07:93:50:f9:f8:04:e8:
f0:fd:e3:5b:a1:22:2c:b5:e5:b0:13:58:fb:a3:5d:65:6d:08:
f3:b6:66:fc:80:c4:b8:8a:f6:b9:c0:91:81:af:1e:f0:e0:fb:
3d:2c:62:ed:63:46:73:5f:10:2c:0d:55:02:ec:4b:d7:5b:e6:
2e:f5:18:39:99:6e:4a:6b:58:7d:eb:6b:70:a8:b6:46:23:a2:
ed:23:97:92
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Jun 7 05:41:03 2025 by rpki-client