Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNTT/yksQg1mICyUgYLfA38ycOaRMh38.roa
File: yksQg1mICyUgYLfA38ycOaRMh38.roa (raw, json)
Hash identifier: l7FvlHghZWVhfylUepgIp+BqVBI/0+R5nWD6zIZMEvo=
Subject key identifier: CA:4B:10:83:59:88:0B:25:20:60:B7:C0:DF:CC:9C:39:A4:4C:87:7F
Certificate issuer: /CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214
Certificate serial: 0CEF
Authority key identifier: 9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/yksQg1mICyUgYLfA38ycOaRMh38.roa
Signing time: Mon 10 Feb 2025 13:50:56 +0000
ROA not before: Mon 10 Feb 2025 13:50:56 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 2914
IP address blocks: 2001:d40::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3311 (0xcef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214
Validity
Not Before: Feb 10 13:50:56 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=CA4B108359880B252060B7C0DFCC9C39A44C877F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:71:ff:a6:b6:a8:8f:96:08:82:6b:42:76:f8:
90:39:85:90:c8:fa:af:f1:85:d2:e1:f6:f6:a4:e6:
0a:a1:44:51:fa:0c:62:4e:88:91:31:a9:06:a2:84:
42:1f:35:8e:77:42:70:cd:d7:1f:2f:6b:4e:32:78:
56:5d:aa:20:89:c0:18:88:36:bc:a8:6e:f2:e3:92:
94:13:d6:2c:d2:28:b3:56:1b:81:ed:88:68:9f:c9:
ed:f6:39:fe:ef:0c:f1:34:9b:67:0a:f8:28:0a:3c:
fe:75:21:27:05:d1:0b:30:c8:69:67:2a:bb:69:58:
9d:6e:11:35:e8:52:06:0a:c2:c1:0a:68:2d:48:21:
97:cd:50:ac:93:a5:16:2c:f0:66:28:54:29:40:f2:
cc:15:d3:06:27:79:00:21:44:4b:dd:05:e3:32:3c:
65:69:87:d0:4a:eb:bb:6d:db:90:34:60:9f:fb:77:
37:33:4c:a1:04:2f:bd:05:bb:01:38:59:ae:d9:9b:
a2:df:40:f9:98:cc:af:2f:5d:4a:f1:21:e4:2d:6f:
2c:87:95:e0:c9:6e:de:66:12:4a:71:f8:8d:d4:49:
42:e1:f0:02:33:d1:99:e1:4c:0e:6c:e8:d1:00:eb:
80:7a:13:7e:e9:39:1b:d5:13:76:ff:40:f7:be:0f:
5f:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:4B:10:83:59:88:0B:25:20:60:B7:C0:DF:CC:9C:39:A4:4C:87:7F
X509v3 Authority Key Identifier:
keyid:9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/yksQg1mICyUgYLfA38ycOaRMh38.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:d40::/32
Signature Algorithm: sha256WithRSAEncryption
61:c4:b8:c9:8a:04:06:45:15:76:bd:cd:36:ed:70:f8:ad:90:
77:65:e7:de:01:41:50:ad:bc:0e:59:6e:b8:1b:13:26:b9:3f:
b4:fd:0c:ad:ab:65:46:db:77:d6:7a:30:52:a4:b6:e7:a9:02:
6a:a8:74:72:59:da:2f:ca:8a:ef:0d:f4:51:cf:3c:3e:a5:8c:
90:2f:ad:8a:56:2a:b7:c7:79:f9:ff:a6:e4:50:98:77:27:ca:
3f:74:71:29:ea:e5:5f:28:d3:0c:81:b8:aa:14:7b:24:88:e6:
ef:1b:52:79:82:e4:be:49:d4:9c:40:87:3b:b3:83:84:35:f0:
4d:4f:f2:fe:09:9d:ac:91:c5:7a:55:89:cf:85:3c:cb:5f:f3:
8f:12:78:56:8d:d3:1c:34:f4:aa:8e:c5:9b:8c:e1:ea:9d:fe:
d7:eb:7d:23:8b:4e:39:17:54:c5:d0:62:2e:e3:c3:fe:53:c8:
28:8d:8e:69:6f:a6:b1:d1:96:a4:1a:0e:97:06:a3:37:6f:3c:
b8:91:ff:55:6f:64:4b:96:10:27:19:34:d2:bd:3e:b8:4c:79:
11:47:3c:0a:53:c6:2a:d6:92:ee:3c:4f:99:ca:1f:5c:d5:28:
82:46:76:51:81:2e:30:a7:14:6c:1d:27:e0:68:29:34:70:00:
b3:ed:be:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 17:33:22 2025 by rpki-client