Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ZHIYIN/7P7LOaJhW4XlDBNUFDr7IhAZamo.roa
File: 7P7LOaJhW4XlDBNUFDr7IhAZamo.roa (raw, json)
Hash identifier: VC5S/17KmA1P79OwvWvQN+iTEnsQW/eltFLlXUEwQfg=
Subject key identifier: EC:FE:CB:39:A2:61:5B:85:E5:0C:13:54:14:3A:FB:22:10:19:6A:6A
Certificate issuer: /CN=B56C9B2E3A040879CFD00FE74D697FB0465CF27A
Certificate serial: 0EB0
Authority key identifier: B5:6C:9B:2E:3A:04:08:79:CF:D0:0F:E7:4D:69:7F:B0:46:5C:F2:7A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tWybLjoECHnP0A_nTWl_sEZc8no.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ZHIYIN/7P7LOaJhW4XlDBNUFDr7IhAZamo.roa
Signing time: Fri 01 Sep 2023 10:24:22 +0000
ROA not before: Fri 01 Sep 2023 10:24:22 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131662
IP address blocks: 2404:7340::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3760 (0xeb0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B56C9B2E3A040879CFD00FE74D697FB0465CF27A
Validity
Not Before: Sep 1 10:24:22 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=ECFECB39A2615B85E50C1354143AFB2210196A6A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:03:20:18:a8:65:1a:2d:fc:75:a7:06:d7:6e:
cb:25:fa:1d:a3:d2:7d:83:3c:c6:f9:95:8f:a3:d4:
ea:fe:a0:90:20:9e:1f:2b:2f:d1:ad:c1:ac:88:fd:
7d:db:56:1c:a4:b4:b8:07:a5:c0:14:9c:f9:42:77:
27:36:ae:af:35:4b:c3:1d:f9:15:62:e4:4a:09:5f:
9a:ed:cf:3d:41:60:b7:cd:3b:bf:f6:e6:5e:aa:8c:
83:0b:84:47:80:8d:01:e3:be:6a:32:14:97:e4:36:
64:fe:40:12:09:54:2a:08:2d:9e:45:e6:47:d5:ff:
a3:90:22:16:3e:c9:8e:4f:e4:9d:74:1d:40:e9:56:
a9:d1:a4:a3:35:02:5a:c3:89:40:31:5b:24:42:d9:
a1:64:68:c3:15:80:c0:a6:df:c0:10:38:91:be:98:
0e:de:42:18:be:0f:4a:ae:aa:e0:3f:f3:82:cb:cb:
73:b8:f1:10:b3:87:d5:41:cc:78:1b:3d:0b:26:a3:
fc:75:39:45:d0:41:6d:b9:ae:4a:93:36:67:53:70:
d0:47:e2:62:e4:26:f4:b0:d5:27:b6:47:6f:b6:5b:
c6:ed:a8:ac:28:60:b5:d6:f4:59:18:64:a1:88:2c:
a2:6e:6b:e3:63:3f:3c:f3:f6:3f:f6:0c:79:f2:54:
ad:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:FE:CB:39:A2:61:5B:85:E5:0C:13:54:14:3A:FB:22:10:19:6A:6A
X509v3 Authority Key Identifier:
keyid:B5:6C:9B:2E:3A:04:08:79:CF:D0:0F:E7:4D:69:7F:B0:46:5C:F2:7A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZHIYIN/tWybLjoECHnP0A_nTWl_sEZc8no.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tWybLjoECHnP0A_nTWl_sEZc8no.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZHIYIN/7P7LOaJhW4XlDBNUFDr7IhAZamo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:7340::/32
Signature Algorithm: sha256WithRSAEncryption
4e:e5:16:35:d4:1b:ea:85:c7:87:83:bd:bf:fd:1a:7f:d4:96:
ec:2a:68:20:3c:9a:5f:2d:ef:a3:96:57:95:42:b5:68:5c:f3:
1f:75:54:8c:21:08:0a:3c:fb:96:e3:e6:94:1c:21:6b:14:44:
6b:57:0a:ba:40:5d:4a:92:bb:17:70:1a:db:7c:be:c5:7c:a5:
17:25:04:54:ba:fc:d8:3e:9d:2e:d2:df:29:76:2e:58:35:41:
c6:8c:74:8c:84:ae:01:c6:0c:4a:d6:a1:c8:cb:2c:65:83:28:
6d:47:f3:26:6d:fb:78:99:dc:f6:40:62:cd:1e:f1:49:0a:76:
e2:b6:ad:1f:39:45:96:ad:a6:2a:eb:20:b6:c0:03:6c:86:ed:
97:ae:d9:78:fa:88:5d:ee:17:4f:de:cf:5a:ac:bf:e7:2a:7a:
31:1a:a2:f0:8f:cb:a4:c0:f8:28:81:12:1d:bc:7a:22:d8:58:
7d:de:fd:7c:c3:68:0d:ea:b3:53:2c:be:6c:34:80:1f:5c:20:
8f:c4:d6:61:c6:83:61:2d:da:35:10:f0:7c:9a:54:e5:15:57:
d1:5a:03:28:da:3f:c6:0f:b9:19:bf:04:b1:01:32:0f:f7:a1:
b6:4c:b6:32:0f:48:15:22:80:ce:2b:e5:fa:07:2a:06:3f:28:
11:8d:bf:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 11 11:56:00 2024 by rpki-client on console-fra.rpki-client.org