Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/XINYUN/KXAWAGT_bYJ_Y7Bh5271BKcqUjs.roa
File: KXAWAGT_bYJ_Y7Bh5271BKcqUjs.roa (raw, json)
Hash identifier: OvPXkeN1gnHV7amHva6b0AOGtWNRpZ5amCtYl9g43Eg=
Subject key identifier: 29:70:16:00:64:FF:6D:82:7F:63:B0:61:E7:6E:F5:04:A7:2A:52:3B
Certificate issuer: /CN=84F850C0651B699E190DC9D97CD1DE326C164EC5
Certificate serial: 0CB4
Authority key identifier: 84:F8:50:C0:65:1B:69:9E:19:0D:C9:D9:7C:D1:DE:32:6C:16:4E:C5
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/hPhQwGUbaZ4ZDcnZfNHeMmwWTsU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XINYUN/KXAWAGT_bYJ_Y7Bh5271BKcqUjs.roa
Signing time: Wed 29 Sep 2021 02:42:04 +0000
ROA not before: Wed 29 Sep 2021 02:42:04 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38047
IP address blocks: 2404:4fc0:a011::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3252 (0xcb4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84F850C0651B699E190DC9D97CD1DE326C164EC5
Validity
Not Before: Sep 29 02:42:04 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=2970160064FF6D827F63B061E76EF504A72A523B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:a8:be:20:ab:82:09:43:b8:aa:b1:1c:64:e6:
74:46:15:b9:c0:4c:3e:d5:f3:73:67:9e:4d:f0:df:
63:d7:59:0d:98:4c:c7:03:f5:22:70:bb:62:55:41:
74:08:88:f5:08:46:f0:38:d9:69:3d:f8:04:12:1e:
bc:78:ab:01:fe:6b:ae:e0:93:38:54:10:d9:ba:4f:
90:a1:7f:10:3b:b6:e8:f4:71:9b:e7:40:57:27:27:
94:41:35:b7:7a:c5:ea:2c:3f:37:f6:93:47:83:72:
d2:0e:93:f9:e2:1d:a6:90:41:28:4f:41:63:f1:3e:
98:69:ef:0a:d4:2a:81:5f:38:64:12:d4:36:fe:39:
85:a5:e7:a9:45:d0:c4:f9:3b:96:2d:6f:f7:72:ab:
42:ba:26:94:8c:78:59:e0:7c:bc:c9:9b:85:5f:60:
b0:16:a8:75:16:9b:84:dc:ad:a8:83:7f:c8:a5:5a:
1e:43:5e:69:d4:e8:f7:45:92:3e:be:6f:b4:00:6c:
77:94:c1:c1:c6:95:5d:6e:9a:93:08:80:a6:1b:08:
1b:6e:fd:fb:50:93:ca:fe:91:a6:1b:16:f5:a4:17:
01:62:b1:df:d6:4f:6e:97:13:73:97:7e:01:d4:ef:
d4:1f:16:e1:e8:ae:d8:e5:12:dc:a9:19:c5:01:fe:
07:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:70:16:00:64:FF:6D:82:7F:63:B0:61:E7:6E:F5:04:A7:2A:52:3B
X509v3 Authority Key Identifier:
keyid:84:F8:50:C0:65:1B:69:9E:19:0D:C9:D9:7C:D1:DE:32:6C:16:4E:C5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XINYUN/hPhQwGUbaZ4ZDcnZfNHeMmwWTsU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/hPhQwGUbaZ4ZDcnZfNHeMmwWTsU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XINYUN/KXAWAGT_bYJ_Y7Bh5271BKcqUjs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:4fc0:a011::/48
Signature Algorithm: sha256WithRSAEncryption
3a:cc:22:f4:ac:f1:24:8f:df:54:47:d8:71:8a:c4:3d:c4:52:
d3:61:80:9a:17:e9:e3:e1:75:05:5e:ca:89:6b:f7:dc:b2:fb:
47:e5:64:51:c5:f6:99:e8:8e:db:44:d3:37:ba:57:46:0d:93:
aa:56:6e:27:99:52:f2:cc:13:86:4f:b1:8b:35:57:e4:ff:db:
77:fd:56:85:02:2e:39:19:f5:c0:af:5b:b7:84:9a:b8:8a:31:
ca:7a:48:02:13:11:2f:3d:6f:60:97:44:d7:6f:09:58:6f:fe:
49:9a:52:09:55:09:e5:19:fe:7d:0d:e6:b5:31:d0:a8:57:0b:
9f:58:c3:f0:f6:1f:05:32:81:9e:88:aa:03:36:bd:33:c2:28:
a1:8c:73:4b:3c:d3:39:af:87:c5:40:5c:63:78:28:69:94:98:
0c:f6:fc:da:d0:a4:5c:b6:42:3f:13:8c:37:0e:4a:fa:85:fb:
88:25:66:51:bb:4a:90:ed:7c:dc:00:00:76:76:15:1a:ad:ff:
e4:d3:ed:04:88:79:27:35:47:9d:47:0d:f9:c4:0c:32:7d:03:
22:c9:f6:cb:2a:de:22:ba:7f:55:ba:67:2c:dc:75:8f:90:a4:
65:82:ba:d4:84:83:bd:c7:f1:45:72:91:28:88:b7:21:46:bf:
57:56:f5:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:51 2024 by rpki-client on console-ams.rpki-client.org