Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APPIER/ZUKA__poFqqlpQOLAqSuSngA6DQ.roa
File: ZUKA__poFqqlpQOLAqSuSngA6DQ.roa (raw, json)
Hash identifier: fgQc+SFH+P7RM1Ae8X+uYrCj5inPdoYUYMbJrCPpwNM=
Subject key identifier: 65:42:80:FF:FA:68:16:AA:A5:A5:03:8B:02:A4:AE:4A:78:00:E8:34
Certificate issuer: /CN=4640D988EC8146BA430596012122D1A1CFC1C36B
Certificate serial: 0C68
Authority key identifier: 46:40:D9:88:EC:81:46:BA:43:05:96:01:21:22:D1:A1:CF:C1:C3:6B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RkDZiOyBRrpDBZYBISLRoc_Bw2s.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APPIER/ZUKA__poFqqlpQOLAqSuSngA6DQ.roa
Signing time: Mon 09 Dec 2024 03:21:11 +0000
ROA not before: Mon 09 Dec 2024 03:21:11 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 396982
IP address blocks: 2403:8640::/32 maxlen: 64
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3176 (0xc68)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4640D988EC8146BA430596012122D1A1CFC1C36B
Validity
Not Before: Dec 9 03:21:11 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=654280FFFA6816AAA5A5038B02A4AE4A7800E834
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:c2:42:aa:fe:80:c8:90:a3:fe:c9:b0:3b:0a:
6a:22:db:ec:4c:a3:10:f6:f5:10:cf:10:2b:92:d6:
dc:dc:d2:83:be:b9:32:19:ba:e9:ae:84:9e:0b:57:
d5:cd:7b:fd:db:15:25:96:39:3e:67:2b:d7:99:4b:
14:e5:64:3b:8b:f4:2f:3a:fc:89:be:5d:86:06:3e:
3a:3d:5a:b1:1b:36:69:8d:f1:f4:65:23:0f:f1:02:
4a:96:7f:5c:1f:ca:aa:4c:63:f6:76:dd:2b:97:fb:
13:37:68:8c:74:9e:0d:33:57:01:62:85:56:f5:04:
18:e4:9a:14:35:33:43:a8:a6:83:50:54:b0:36:4f:
2c:46:ce:4d:96:e4:e2:b4:55:23:67:cd:5a:c5:65:
d6:61:05:ec:b9:3f:91:33:97:f5:8b:59:40:af:e2:
56:87:eb:e8:12:e3:09:b4:d9:6e:20:f5:5b:70:49:
38:a7:51:e6:b7:f6:f0:58:32:ea:03:02:d5:0b:70:
d7:1a:62:38:2c:01:8d:db:f5:6d:2f:a0:12:32:3b:
e2:11:eb:79:cb:7d:c0:91:73:05:8e:e3:04:e9:49:
16:51:40:96:65:15:06:34:90:15:57:c2:a9:e9:ba:
53:e9:1c:6e:17:b0:1f:7f:da:da:37:b9:2d:06:d7:
0b:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:42:80:FF:FA:68:16:AA:A5:A5:03:8B:02:A4:AE:4A:78:00:E8:34
X509v3 Authority Key Identifier:
keyid:46:40:D9:88:EC:81:46:BA:43:05:96:01:21:22:D1:A1:CF:C1:C3:6B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APPIER/RkDZiOyBRrpDBZYBISLRoc_Bw2s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RkDZiOyBRrpDBZYBISLRoc_Bw2s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APPIER/ZUKA__poFqqlpQOLAqSuSngA6DQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:8640::/32
Signature Algorithm: sha256WithRSAEncryption
aa:84:6e:26:1a:1e:75:66:3f:2b:8f:03:70:fd:c9:08:e0:79:
d2:e6:d5:07:14:b0:69:9c:df:53:14:c7:c9:3b:66:1c:ec:f6:
46:5c:59:b8:2a:dc:d5:cb:b3:41:df:23:e5:38:d7:aa:29:d3:
5d:e5:c8:de:14:63:74:b5:6c:5b:de:5e:49:f8:4e:a9:e1:86:
5b:41:a4:79:f2:54:ec:40:94:b7:ba:f6:bf:70:88:b9:71:b8:
6c:5f:56:c0:3e:39:28:8e:b5:00:aa:10:6a:5d:da:2b:55:18:
1d:b6:cc:06:39:eb:c4:58:03:e0:49:b7:68:6e:7a:a1:f7:c4:
f8:38:69:ad:ab:7c:27:62:0c:91:3c:ee:3b:bf:a7:04:d8:e7:
62:a4:e2:33:96:af:2b:3b:87:0c:21:f3:62:c0:dd:ef:ab:59:
1c:0e:1b:b1:c4:40:3f:64:fb:7b:ef:9d:66:18:28:f2:cd:ab:
c0:37:5b:fd:ab:14:2c:ee:5f:61:eb:4e:36:0b:6a:34:10:d9:
ff:60:71:63:4b:4e:ed:54:39:d3:68:78:1f:99:ee:b2:e1:49:
0c:60:09:42:9f:c5:ff:58:be:e3:6c:ce:49:8c:62:af:7b:6d:
4c:97:87:d7:ef:51:37:19:87:77:a9:71:58:32:7d:b6:e8:a8:
a4:35:43:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 09:37:02 2025 by rpki-client