Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/OeES18FTEoJaSNdym7KMnZYfKtU.roa
File: OeES18FTEoJaSNdym7KMnZYfKtU.roa (raw, json)
Hash identifier: TKhCXw7gdm0DHa23Pvydl8ydOGGoDd+TVnU3HRtp2Ws=
Subject key identifier: 39:E1:12:D7:C1:53:12:82:5A:48:D7:72:9B:B2:8C:9D:96:1F:2A:D5
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1294
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/OeES18FTEoJaSNdym7KMnZYfKtU.roa
Signing time: Fri 01 Sep 2023 08:04:39 +0000
ROA not before: Fri 01 Sep 2023 08:04:39 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9415
IP address blocks: 2404:0:3000::/36 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4756 (0x1294)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:04:39 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=39E112D7C15312825A48D7729BB28C9D961F2AD5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:b4:8a:c0:4b:be:69:78:ec:2a:d4:c0:a1:89:
32:f4:ea:9b:4b:e7:7c:5f:e7:67:06:b8:42:9a:c6:
0f:76:78:95:73:1e:b1:4c:48:86:18:8f:06:ec:a1:
0e:13:36:de:30:73:75:6c:c1:ad:2a:43:b9:93:45:
4e:2e:b0:3b:20:ef:4b:43:e7:62:a0:36:5e:8d:1c:
1e:b1:4b:a0:bd:e4:a1:cb:5c:59:a9:dc:f0:9b:0c:
f5:27:b8:9e:86:c5:74:88:46:1a:0f:55:52:ae:26:
2d:b2:e6:b1:4b:55:52:33:a5:43:71:87:31:3e:3f:
7a:9b:74:45:41:06:13:c1:75:d7:f9:da:51:ca:2c:
3f:e3:d0:d9:12:8d:3d:7c:20:20:a6:f6:cb:6f:8e:
88:21:18:09:3f:9d:88:03:cc:b0:12:e8:a8:2e:cb:
13:77:7d:24:0e:15:0c:ea:4c:e0:21:73:3c:07:74:
7a:f4:b5:cc:b4:33:63:96:37:11:79:37:cf:85:75:
19:07:2b:bc:2a:31:48:5e:38:f1:83:c9:44:c7:82:
df:53:ce:43:72:90:70:54:dc:73:33:01:9b:d7:2d:
d4:f3:05:a8:e1:a1:92:72:77:55:12:b9:70:d7:bb:
e4:6f:84:67:64:77:40:d6:23:6e:67:7b:a0:c3:36:
ed:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:E1:12:D7:C1:53:12:82:5A:48:D7:72:9B:B2:8C:9D:96:1F:2A:D5
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/OeES18FTEoJaSNdym7KMnZYfKtU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:0:3000::/36
Signature Algorithm: sha256WithRSAEncryption
6b:44:c6:84:34:f3:42:41:e0:89:6f:cf:04:aa:67:2c:19:f6:
27:db:cb:c6:e6:0a:e8:01:2b:ea:92:0a:59:e3:af:5e:0b:60:
53:15:27:78:5d:d6:2a:32:49:26:69:b3:7b:2a:75:91:b3:84:
bf:e2:4b:77:89:0d:a8:e4:d4:34:09:62:08:91:ac:ed:41:b3:
31:01:7f:75:f0:6f:c8:c4:e8:7a:b9:0c:f5:ec:ff:44:36:fa:
5b:d9:cd:7e:ca:ba:38:70:93:35:40:6f:6a:4c:4b:99:75:5c:
4e:69:ee:0c:21:53:6a:7f:36:59:dc:c8:a4:79:6c:64:f3:69:
04:ca:f8:f7:ef:8f:a4:31:2b:9e:f1:41:4b:4b:8f:98:a5:8b:
75:7c:83:27:fd:05:6c:f3:f7:5d:89:cd:9c:54:ff:ea:5c:7e:
63:af:60:06:89:08:a5:e8:f0:03:c9:ec:7c:6a:e2:4a:6d:ca:
6f:6c:cd:92:65:13:14:46:ea:12:0e:c1:bf:d6:5f:f5:d5:0e:
92:ec:c6:a5:e7:43:4a:dd:01:27:2a:4b:db:b8:75:67:97:8b:
76:d9:c0:03:4b:e8:29:62:3d:43:92:2e:fa:80:16:65:02:1f:
59:80:11:23:30:8a:23:4d:15:6c:2c:49:b6:95:03:9d:0b:e3:
b7:0c:3e:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 15 22:54:32 2024 by rpki-client on console-ams.rpki-client.org