Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/kO5fxE_fBnddv_EA_hJ-bnYvTmU.roa
File: kO5fxE_fBnddv_EA_hJ-bnYvTmU.roa (raw, json)
Hash identifier: /1afpBr/eAIQyzN4NSCnMi8NtS4b/VVj+vjCMKkyjsE=
Subject key identifier: 90:EE:5F:C4:4F:DF:06:77:5D:BF:F1:00:FE:12:7E:6E:76:2F:4E:65
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0D1E
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/kO5fxE_fBnddv_EA_hJ-bnYvTmU.roa
Signing time: Mon 15 Jan 2024 21:24:49 +0000
ROA not before: Mon 15 Jan 2024 21:24:49 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131142
IP address blocks: 2404:0:7000::/36 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3358 (0xd1e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Jan 15 21:24:49 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=90EE5FC44FDF06775DBFF100FE127E6E762F4E65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:ad:b7:7f:96:06:47:fc:87:8d:84:c3:ec:ec:
ed:d2:e4:0b:21:55:f9:4d:a9:d3:87:39:ea:53:79:
56:30:9a:9a:08:7a:ed:5b:cc:96:1e:8e:4e:8f:08:
25:74:89:a7:12:66:0b:53:33:76:44:0f:92:f1:e2:
d9:25:68:9c:ca:d5:2f:23:d9:55:2e:00:a4:b4:4f:
e7:cc:7f:bb:d1:60:f8:f5:32:eb:ac:82:62:6a:30:
ba:28:73:2b:9a:03:26:8a:34:0f:89:be:94:3d:43:
a7:4b:1e:3b:60:76:61:87:c9:3b:39:09:64:f9:bf:
3b:51:b4:08:d7:16:cc:9f:a7:55:07:f0:ea:d9:99:
79:25:0d:c1:75:50:e8:b9:e9:7d:d7:64:d5:e4:9c:
74:e6:ef:4a:39:71:7e:52:10:aa:60:4b:ce:da:ea:
fd:7f:d3:86:c4:7a:3f:36:8b:86:e0:7a:2a:b8:d0:
57:54:b8:1b:50:49:8f:a5:e5:c7:59:94:f7:09:0a:
55:ad:43:51:80:17:37:03:af:52:5d:33:a9:2c:eb:
e8:65:c8:86:d9:25:a1:97:36:57:ed:d2:18:a3:b9:
29:72:50:7d:5c:45:1a:86:a6:ad:c6:a6:58:ac:7b:
e7:0b:9a:1f:b6:37:ca:13:b4:4b:aa:6c:3f:da:ba:
17:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:EE:5F:C4:4F:DF:06:77:5D:BF:F1:00:FE:12:7E:6E:76:2F:4E:65
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/kO5fxE_fBnddv_EA_hJ-bnYvTmU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:0:7000::/36
Signature Algorithm: sha256WithRSAEncryption
4f:06:27:f8:d2:81:d4:fd:48:9a:fa:88:b0:0a:14:d5:a1:d8:
f9:23:bf:2c:dc:b5:d9:e1:49:4e:de:a3:df:a1:1f:68:dc:bc:
fd:22:ce:c8:b6:34:b2:1c:9b:1b:a8:50:95:98:3b:6f:85:ca:
5e:4f:a0:7a:e8:ac:8e:15:ac:a7:82:38:84:be:00:6b:c3:b7:
9e:54:75:91:9c:1f:66:b7:bb:4a:e5:26:72:59:de:f8:9f:16:
8c:47:b1:8e:f8:1d:df:22:15:a6:71:5e:b3:27:5c:ff:6a:8e:
84:9e:1c:6c:3b:e6:be:6f:b3:f7:09:57:cc:50:43:a6:f3:95:
79:72:72:60:1d:fc:92:16:51:c8:a3:65:94:8d:36:da:a5:b1:
49:10:47:fb:e0:d2:5c:ad:46:e9:56:4f:8f:5f:58:0a:a9:93:
28:77:20:0b:69:1a:cc:0c:c8:ba:f1:0f:6b:a4:af:57:33:80:
1d:83:21:57:01:c5:47:6b:34:fd:46:de:65:32:ac:c0:14:ea:
71:51:9c:44:eb:1d:14:47:48:03:4e:25:91:46:82:ef:ba:80:
c3:51:51:79:78:34:2b:ca:a1:ee:3d:78:3b:d5:72:9d:26:b0:
84:04:5f:4f:b2:d9:20:f5:ff:65:53:92:e6:c6:62:df:85:73:
82:39:65:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:19 2024 by rpki-client on console-fra.rpki-client.org