Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WNCL/L1IpWUhVfDKAKUSBP9odvzlMRU8.roa
File: L1IpWUhVfDKAKUSBP9odvzlMRU8.roa (raw, json)
Hash identifier: CmDDjiCQqgnYxS4Ia/iQEmI5N1PT0nNJZhSlsK0PVh8=
Subject key identifier: 2F:52:29:59:48:55:7C:32:80:29:44:81:3F:DA:1D:BF:39:4C:45:4F
Certificate issuer: /CN=9D441AADD239AD926010AFC4DB20454EF2C4B0C1
Certificate serial: 0B2E
Authority key identifier: 9D:44:1A:AD:D2:39:AD:92:60:10:AF:C4:DB:20:45:4E:F2:C4:B0:C1
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/nUQardI5rZJgEK_E2yBFTvLEsME.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WNCL/L1IpWUhVfDKAKUSBP9odvzlMRU8.roa
Signing time: Fri 01 Sep 2023 10:20:54 +0000
ROA not before: Fri 01 Sep 2023 10:20:54 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 134823
IP address blocks: 2403:a340::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2862 (0xb2e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9D441AADD239AD926010AFC4DB20454EF2C4B0C1
Validity
Not Before: Sep 1 10:20:54 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=2F52295948557C32802944813FDA1DBF394C454F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:cd:3d:18:9a:d4:54:c4:1b:5b:57:22:9e:d7:
4c:ce:e5:c6:8a:49:37:85:d6:d5:de:d4:5d:4d:5f:
7a:97:75:18:f1:43:16:11:68:a5:39:b2:5e:4f:86:
e6:82:35:c0:56:49:9f:f3:3a:bd:c1:3f:3a:8b:37:
ef:a1:72:d2:06:84:e7:ba:be:d7:2f:9a:f4:01:99:
89:86:74:0e:79:30:5f:bb:9f:1c:a6:f2:f0:d4:c6:
df:1a:b0:93:b5:1e:82:4d:85:87:55:57:76:6c:13:
43:d6:07:f7:1b:f6:09:f9:c5:b8:bd:3a:81:87:a0:
52:0d:ed:ea:95:4f:09:9a:b3:03:ab:2c:08:a7:1e:
c4:f9:7e:10:89:ba:fb:3a:06:87:2c:30:99:94:5d:
a6:10:66:b6:e9:df:60:dc:af:18:c9:80:50:1d:52:
57:0b:16:e0:39:fd:3d:c0:8e:49:80:0b:8b:89:5d:
d0:28:b6:03:fb:84:a6:b1:0f:7a:ab:3d:fa:b3:5b:
c5:bb:34:7d:4f:be:72:50:c7:ac:50:54:93:28:36:
78:38:18:b6:d5:4f:49:1b:78:c5:a2:56:c2:0a:e3:
d6:ef:06:a8:71:b2:eb:b1:2b:f3:d2:c5:ee:0a:0c:
92:9d:8d:97:37:2a:ac:a2:ea:27:1a:fb:6e:7a:ba:
f5:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:52:29:59:48:55:7C:32:80:29:44:81:3F:DA:1D:BF:39:4C:45:4F
X509v3 Authority Key Identifier:
keyid:9D:44:1A:AD:D2:39:AD:92:60:10:AF:C4:DB:20:45:4E:F2:C4:B0:C1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WNCL/nUQardI5rZJgEK_E2yBFTvLEsME.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/nUQardI5rZJgEK_E2yBFTvLEsME.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WNCL/L1IpWUhVfDKAKUSBP9odvzlMRU8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:a340::/32
Signature Algorithm: sha256WithRSAEncryption
67:7b:88:52:a8:b0:1f:07:6c:81:83:a8:31:c4:ed:02:e7:73:
b2:4e:50:64:9d:bf:f3:48:17:fc:0f:a8:d3:2e:80:b6:b1:5d:
da:e1:f8:9b:8a:23:02:64:91:62:e8:21:31:27:46:81:dd:ed:
78:c7:1a:88:7b:61:60:60:f1:ab:db:91:52:a0:0a:36:b6:77:
b2:ea:ba:3c:32:92:12:ed:43:6a:ba:0e:86:03:83:13:35:ba:
f7:ae:dc:5f:2a:12:e6:3e:15:87:c2:2e:af:2d:98:7d:19:5b:
03:1d:77:2a:a1:ce:c1:ee:db:80:9f:10:63:17:6e:76:48:b8:
a2:44:54:8a:a7:cc:ec:c8:e8:c2:4c:7d:e3:12:0f:32:25:6e:
bf:7a:1c:66:23:90:99:19:d2:49:d0:0c:2a:8d:c8:53:27:fc:
c6:e1:19:bc:a9:fb:f6:12:1d:3f:89:db:37:54:3a:30:d1:42:
1c:48:a3:fb:05:76:8b:2a:f5:7c:59:77:4e:14:8b:c5:e9:41:
ae:00:f0:79:fe:4d:7f:b4:85:8f:19:7f:ab:a9:19:85:18:72:
73:f1:59:b1:45:dd:29:ef:f8:0a:70:d4:f8:02:44:91:4d:a3:
19:87:9d:bc:da:6d:13:5b:90:ca:73:9f:f3:6d:bd:05:31:32:
52:98:6f:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:23:56 2025 by rpki-client