Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/OybouJrX1E-_3jPg6JcsuACgErY.roa
File: OybouJrX1E-_3jPg6JcsuACgErY.roa (raw, json)
Hash identifier: MESThPbu6qxOhV4449e3lDDtnsOj0PiZTaloZL1K0XM=
Subject key identifier: 3B:26:E8:B8:9A:D7:D4:4F:BF:DE:33:E0:E8:97:2C:B8:00:A0:12:B6
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 10E2
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/OybouJrX1E-_3jPg6JcsuACgErY.roa
Signing time: Tue 16 May 2023 08:36:46 +0000
ROA not before: Tue 16 May 2023 08:36:46 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9311
IP address blocks: 210.201.136.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4322 (0x10e2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:46 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=3B26E8B89AD7D44FBFDE33E0E8972CB800A012B6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:24:25:7a:9f:a2:64:5a:0e:06:64:89:6d:3b:
a6:71:8a:23:e4:d5:98:e6:cd:d1:f9:33:99:73:44:
a0:d0:60:60:4c:d4:3b:07:82:70:24:53:dc:d1:84:
e7:e4:6b:39:82:b6:3f:62:39:bc:20:29:8f:28:9e:
de:91:14:c0:75:b0:18:18:50:91:7a:94:8b:10:57:
42:75:d2:57:82:5e:63:41:ec:a2:03:35:60:ba:da:
fd:ef:4a:a5:4b:47:c7:a4:3f:07:1f:50:cc:32:01:
c2:0c:1c:3c:5b:f7:51:3a:fe:11:14:de:1a:c8:27:
00:93:ca:56:fa:93:13:cd:08:f7:de:b4:49:49:c4:
21:20:bb:cc:9e:04:d0:55:4b:b9:0c:9c:fd:f3:f5:
53:54:5f:1a:c7:52:3d:3d:b5:77:ee:9d:84:2d:3d:
7e:34:88:0d:ed:8a:95:27:88:d0:ee:fc:b4:20:b9:
46:f9:6e:e1:23:b2:4c:40:a6:af:0c:6e:ae:12:73:
a8:63:ac:60:1d:6b:6f:7a:50:7b:97:44:e4:3c:05:
be:5c:68:dc:22:16:ed:4f:c6:74:72:09:3f:40:1e:
20:ad:fa:e0:52:cd:77:f2:a8:6d:4f:9f:6d:76:a1:
1a:b4:4b:b9:ad:c8:3b:00:17:64:31:70:e1:26:e1:
e2:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:26:E8:B8:9A:D7:D4:4F:BF:DE:33:E0:E8:97:2C:B8:00:A0:12:B6
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/OybouJrX1E-_3jPg6JcsuACgErY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.201.136.0/22
Signature Algorithm: sha256WithRSAEncryption
ad:86:04:e6:a4:c8:38:24:46:c2:b7:a8:98:be:26:a9:6d:38:
f0:b9:ff:1a:0f:5a:84:f4:4f:ef:1b:37:3e:a3:42:3a:27:ca:
3f:96:aa:98:49:c1:64:ef:6a:31:00:24:a6:cb:4c:ba:46:29:
06:d4:7d:b6:75:70:12:6a:a0:e5:e9:56:88:ad:b2:48:5b:ed:
fb:67:48:8b:ac:37:96:13:b6:88:2d:0d:9e:66:20:0f:ed:2a:
88:73:35:75:3e:46:d8:25:d9:02:2e:3d:68:dc:3f:fa:0f:fa:
23:da:fd:e4:13:5e:f2:8b:0d:a3:da:24:6b:84:bd:6d:25:5e:
a3:77:06:cf:d8:04:68:e3:81:71:f7:db:de:c7:44:bd:cd:5a:
7c:bf:d4:9c:0c:5f:44:73:ca:5a:5c:48:a9:02:25:4b:c3:b9:
22:3b:17:58:64:66:5d:5d:42:3e:fd:6b:6c:95:0d:07:e8:55:
1f:46:9f:fc:72:e0:39:a5:67:5e:89:9f:29:44:ec:37:72:bc:
37:08:4f:e8:db:1e:f3:be:5a:17:de:c5:44:15:e9:0c:4a:31:
53:a7:a7:12:0e:26:82:80:31:1b:db:fd:35:36:b6:81:c4:91:
0f:a3:f5:03:ea:10:a8:84:f5:1b:e8:b7:6e:ac:2b:ab:60:93:
8e:ca:7f:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:00 2024 by rpki-client on console-ams.rpki-client.org