Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNOC/OCoMOd_k8V5TSFmmA78jcmJ6gi8.roa
File: OCoMOd_k8V5TSFmmA78jcmJ6gi8.roa (raw, json)
Hash identifier: eiQNILnWJQoRgO5/RygBs69lCr5EvEbbSglTF/iQ0IQ=
Subject key identifier: 38:2A:0C:39:DF:E4:F1:5E:53:48:59:A6:03:BF:23:72:62:7A:82:2F
Certificate issuer: /CN=23D5E0B3520DAC4269AB4A425B23D225CB264A88
Certificate serial: 0F8F
Authority key identifier: 23:D5:E0:B3:52:0D:AC:42:69:AB:4A:42:5B:23:D2:25:CB:26:4A:88
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/I9Xgs1INrEJpq0pCWyPSJcsmSog.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNOC/OCoMOd_k8V5TSFmmA78jcmJ6gi8.roa
Signing time: Wed 29 Sep 2021 02:51:36 +0000
ROA not before: Wed 29 Sep 2021 02:51:36 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131149
IP address blocks: 2403:ac40::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3983 (0xf8f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23D5E0B3520DAC4269AB4A425B23D225CB264A88
Validity
Not Before: Sep 29 02:51:36 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=382A0C39DFE4F15E534859A603BF2372627A822F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:16:dc:5b:6b:f2:95:ad:5d:1a:ee:4c:dc:04:
2d:3a:6e:59:f1:c7:f1:c4:4f:32:53:84:71:c8:41:
aa:23:9d:c7:ca:3c:9e:ef:b9:ad:64:2c:04:92:c5:
b5:bc:e8:0b:3d:f7:2d:b3:9c:23:a4:e2:d7:d9:f5:
98:c6:89:0f:9b:54:8d:08:64:58:95:33:57:9d:e2:
b1:4d:da:db:25:d1:26:28:81:67:29:95:e0:8a:2f:
05:d1:62:39:1b:f1:01:de:08:68:93:7f:74:6a:39:
80:5f:86:a9:a9:4a:98:5c:9c:ca:c7:ed:32:d6:01:
45:b2:4e:2d:25:81:43:45:4c:d5:c7:27:36:d4:25:
f8:d1:80:11:2d:39:3c:41:8f:33:ec:d2:30:14:b8:
c1:c2:6d:16:34:a8:c4:a4:11:bd:8c:a2:38:fd:f9:
c7:b8:b3:ea:99:e7:2d:d9:44:f4:4d:97:08:54:70:
a1:6b:e1:15:b3:f2:e6:cd:d8:98:1d:bd:65:6b:df:
dc:66:33:ff:e7:a3:2e:7c:1b:16:a4:87:e8:da:8f:
1d:d6:db:38:d7:8d:c3:d2:84:2e:96:09:e8:e4:d7:
0a:c5:c5:4c:24:d7:47:61:a3:e0:76:72:50:84:a1:
41:be:ff:89:e1:76:41:00:c2:37:2b:dc:3e:1d:c4:
ea:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:2A:0C:39:DF:E4:F1:5E:53:48:59:A6:03:BF:23:72:62:7A:82:2F
X509v3 Authority Key Identifier:
keyid:23:D5:E0:B3:52:0D:AC:42:69:AB:4A:42:5B:23:D2:25:CB:26:4A:88
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNOC/I9Xgs1INrEJpq0pCWyPSJcsmSog.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/I9Xgs1INrEJpq0pCWyPSJcsmSog.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNOC/OCoMOd_k8V5TSFmmA78jcmJ6gi8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:ac40::/32
Signature Algorithm: sha256WithRSAEncryption
63:75:81:2f:cf:a9:39:63:11:cd:d2:5e:5b:73:63:20:67:a6:
6e:46:ca:6a:c7:fc:37:01:c1:0c:f2:2d:b9:45:6c:27:9b:59:
3b:d5:d1:93:9c:ac:3f:1b:eb:b9:92:88:1a:3a:c8:8b:17:47:
e7:ba:72:01:e1:cb:f3:b5:dd:2a:b9:f9:b0:a7:24:14:7c:da:
f4:37:4d:ca:ff:ba:29:38:5d:b3:60:e2:f3:5e:b4:50:b8:a7:
94:f5:57:82:d6:cd:73:95:e2:42:ec:ca:f2:fc:63:bd:45:a7:
13:7c:3c:01:0c:1e:87:0e:e8:3c:6a:75:08:67:36:58:ff:2c:
16:e8:6d:1a:6e:f9:2c:c5:d1:6b:2e:68:85:5d:14:ac:42:6f:
5f:90:7e:e2:4a:56:77:5a:29:82:11:cb:06:30:a5:0e:2f:f5:
5d:9a:4e:84:2e:58:67:60:24:b4:fa:99:a3:7a:d3:b3:24:39:
2f:f3:53:e4:b4:9c:0d:80:26:38:a2:81:b7:b0:b2:10:9e:3a:
78:e7:81:ad:c8:97:07:fd:2c:bc:8c:5a:bc:5a:70:91:f2:2b:
1d:7c:66:fa:d4:38:ba:44:92:df:f2:5f:25:e4:95:c3:19:45:
6f:30:2d:9e:1d:62:96:2b:eb:9b:90:aa:5a:68:29:bf:1c:67:
6e:42:93:2d
-----BEGIN CERTIFICATE-----
MIIE0TCCA7mgAwIBAgICD48wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjNE
NUUwQjM1MjBEQUM0MjY5QUI0QTQyNUIyM0QyMjVDQjI2NEE4ODAeFw0yMTA5Mjkw
MjUxMzZaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDM4MkEwQzM5REZFNEYx
NUU1MzQ4NTlBNjAzQkYyMzcyNjI3QTgyMkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDuFtxba/KVrV0a7kzcBC06blnxx/HETzJThHHIQaojncfKPJ7v
ua1kLASSxbW86As99y2znCOk4tfZ9ZjGiQ+bVI0IZFiVM1ed4rFN2tsl0SYogWcp
leCKLwXRYjkb8QHeCGiTf3RqOYBfhqmpSphcnMrH7TLWAUWyTi0lgUNFTNXHJzbU
JfjRgBEtOTxBjzPs0jAUuMHCbRY0qMSkEb2Mojj9+ce4s+qZ5y3ZRPRNlwhUcKFr
4RWz8ubN2JgdvWVr39xmM//noy58Gxakh+jajx3W2zjXjcPShC6WCejk1wrFxUwk
10dho+B2clCEoUG+/4nhdkEAwjcr3D4dxOoTAgMBAAGjggHtMIIB6TAdBgNVHQ4E
FgQUOCoMOd/k8V5TSFmmA78jcmJ6gi8wHwYDVR0jBBgwFoAUI9Xgs1INrEJpq0pC
WyPSJcsmSogwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOT0Mv
STlYZ3MxSU5yRUpwcTBwQ1d5UFNKY3NtU29nLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9JOVhnczFJTnJFSnBxMHBDV3lQU0pjc21Tb2cuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05PQy9PQ29NT2RfazhWNVRTRm1tQTc4
amNtSjZnaTgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAJAOs
QDANBgkqhkiG9w0BAQsFAAOCAQEAY3WBL8+pOWMRzdJeW3NjIGembkbKasf8NwHB
DPItuUVsJ5tZO9XRk5ysPxvruZKIGjrIixdH57pyAeHL87XdKrn5sKckFHza9DdN
yv+6KThds2Di8160ULinlPVXgtbNc5XiQuzK8vxjvUWnE3w8AQwehw7oPGp1CGc2
WP8sFuhtGm75LMXRay5ohV0UrEJvX5B+4kpWd1opghHLBjClDi/1XZpOhC5YZ2Ak
tPqZo3rTsyQ5L/NT5LScDYAmOKKBt7CyEJ46eOeBrciXB/0svIxavFpwkfIrHXxm
+tQ4ukSS3/JfJeSVwxlFbzAtnh1ilivrm5CqWmgpvxxnbkKTLQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org