Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/OOMEOXHGDZWpIHCuGc0NmOznIb0.roa
File: OOMEOXHGDZWpIHCuGc0NmOznIb0.roa (raw, json)
Hash identifier: sO/6ZReE8biLmKnP+n7xOHIvteyX3twlg0+g0PqPXsE=
Subject key identifier: 38:E3:04:39:71:C6:0D:95:A9:20:70:AE:19:CD:0D:98:EC:E7:21:BD
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 12A9
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/OOMEOXHGDZWpIHCuGc0NmOznIb0.roa
Signing time: Fri 01 Sep 2023 08:04:48 +0000
ROA not before: Fri 01 Sep 2023 08:04:48 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9311
IP address blocks: 2404:0:4000::/36 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4777 (0x12a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:04:48 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=38E3043971C60D95A92070AE19CD0D98ECE721BD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:b0:16:df:d0:c4:71:5b:a7:95:3e:a2:71:d0:
e4:8c:b2:8a:bd:ac:4c:2d:f7:c1:1c:9e:8a:07:9e:
c3:68:b3:c5:53:12:19:82:56:04:e8:73:79:fb:9b:
f5:06:80:d8:1b:82:cb:e4:b9:dd:53:22:1c:a1:e2:
3c:8d:38:e8:57:33:29:07:9c:43:d6:94:1c:3b:93:
ce:2b:39:cc:6d:1f:3a:21:2e:cc:a4:38:c1:0e:88:
4e:3f:a3:6f:c6:59:21:08:40:bc:c6:09:51:24:4c:
51:89:79:53:12:d2:99:c5:f3:73:6a:6f:34:63:2e:
60:7e:b0:0d:d6:a7:f8:ef:35:8c:cd:6d:f5:e8:f9:
65:9f:10:f4:9d:a8:85:b8:33:3c:64:f2:2c:fb:9a:
71:fc:3e:a3:0e:dd:0e:bd:d7:d3:ba:81:dd:c6:45:
12:c9:3a:ca:f0:66:f2:53:ca:9e:59:fd:c4:8a:82:
8c:7f:84:78:c6:df:18:90:b7:92:8a:0d:b3:a5:1a:
3c:d4:df:7c:a1:d5:10:19:bd:3f:d8:02:6c:99:c0:
cd:9a:dd:86:ce:2f:5c:31:b9:eb:9e:4c:47:5a:68:
f5:25:b2:89:48:3e:1f:15:64:66:91:a5:8e:c9:c8:
82:70:01:dd:52:73:a3:a0:55:db:58:10:b1:69:b8:
55:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:E3:04:39:71:C6:0D:95:A9:20:70:AE:19:CD:0D:98:EC:E7:21:BD
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/OOMEOXHGDZWpIHCuGc0NmOznIb0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:0:4000::/36
Signature Algorithm: sha256WithRSAEncryption
b4:f2:3a:2b:98:49:43:18:c8:5d:8e:00:df:c1:f6:e5:b7:72:
ea:2b:ab:99:04:bb:eb:1d:78:ca:28:9f:98:d9:29:d6:0f:ae:
b9:a9:16:61:1e:b6:57:26:43:6f:c9:2b:2c:8b:82:96:21:9e:
50:96:4a:67:70:6b:38:cc:da:ce:07:25:00:57:a5:73:0a:d4:
b7:35:e1:41:56:cd:6c:7a:dc:29:92:e0:8e:f6:64:80:be:d2:
ef:8b:07:4b:99:ed:ef:89:0b:3d:3d:ec:13:25:43:55:5d:96:
53:5d:aa:12:4f:5c:b8:57:57:48:80:20:c7:b4:47:6b:a4:62:
06:e0:2b:7d:70:93:69:b4:70:20:08:70:d0:15:5c:68:df:d4:
e3:96:99:c4:f2:15:83:d8:3b:4f:ae:16:67:70:25:10:5b:80:
92:98:49:c1:c3:e7:b4:43:b5:58:3f:e1:c7:19:9f:ba:8a:b0:
df:d5:01:f2:85:a8:ed:9f:fe:b5:f6:f4:d5:b2:b7:a4:cc:96:
c9:6c:c2:f1:59:1a:90:8c:14:26:b8:8f:1e:0d:19:30:ab:01:
ff:f4:8e:d8:1e:f6:f9:b1:a1:85:ed:9f:a4:71:34:cd:1e:8d:
f4:55:82:cb:0e:a5:c9:d6:cb:c7:98:69:ba:0b:84:47:09:93:
4d:39:09:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:00 2024 by rpki-client on console-ams.rpki-client.org