Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/97O7QPaarzh2zQnOPMJFWqiLuu8.roa
File: 97O7QPaarzh2zQnOPMJFWqiLuu8.roa (raw, json)
Hash identifier: oSdpuDwaggXs714czq6g39KF/GDIovh71kYbOftdLIs=
Subject key identifier: F7:B3:BB:40:F6:9A:AF:38:76:CD:09:CE:3C:C2:45:5A:A8:8B:BA:EF
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 22D4
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/97O7QPaarzh2zQnOPMJFWqiLuu8.roa
Signing time: Mon 26 Aug 2024 05:34:24 +0000
ROA not before: Mon 26 Aug 2024 05:34:24 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 24163
IP address blocks: 211.76.32.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8916 (0x22d4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Aug 26 05:34:24 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=F7B3BB40F69AAF3876CD09CE3CC2455AA88BBAEF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:9e:07:ee:00:22:2d:ac:71:d5:1a:c7:ab:10:
b2:99:31:59:3a:d0:40:f8:d2:97:c2:2d:d7:6a:2c:
2d:f0:c3:de:c0:82:e4:39:07:1c:2e:7d:7a:55:e4:
65:62:bc:a8:b5:52:09:63:74:8b:d4:cd:4d:ac:8d:
d4:d7:88:4b:b5:06:1b:10:e5:c5:20:c0:b7:5c:d1:
be:88:e1:ed:4a:e4:ab:5d:fe:e5:6d:50:80:c4:57:
4e:ab:a8:74:a6:29:9a:6a:99:71:7a:08:69:35:11:
57:ac:b3:cf:7f:9b:b1:6d:c7:63:fd:7e:b6:c3:81:
1d:29:c9:81:3b:9a:fb:fb:f1:e1:7a:10:9d:d8:ab:
08:eb:dd:e3:51:5f:e0:47:02:0f:5f:98:46:be:bb:
d1:21:04:ad:e6:8a:12:a5:43:48:06:de:fb:10:5b:
02:59:f2:05:d6:15:39:1c:1b:88:1b:f4:86:c6:b2:
9d:d6:c0:1d:4a:8f:4b:ed:e8:f1:23:10:93:09:08:
81:6f:58:99:ce:96:2d:5b:c6:a6:99:e0:46:8a:ad:
50:a8:07:f0:59:4e:f9:7b:f3:5a:0c:9b:99:97:6f:
cd:16:62:f7:a4:ad:26:33:80:47:40:63:32:b9:ea:
e5:1c:76:97:55:0a:17:25:b0:34:29:c1:d5:63:3f:
6b:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:B3:BB:40:F6:9A:AF:38:76:CD:09:CE:3C:C2:45:5A:A8:8B:BA:EF
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/97O7QPaarzh2zQnOPMJFWqiLuu8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.32.0/21
Signature Algorithm: sha256WithRSAEncryption
6c:7a:3c:ec:f3:82:15:5b:0d:56:bb:b9:5a:9a:60:5a:2f:fe:
92:06:81:bb:77:70:f7:80:ce:df:55:8b:af:56:42:85:cb:e6:
c9:fb:61:b8:b2:7d:55:42:39:84:83:71:2f:57:c7:a2:84:ef:
aa:a7:24:6a:0d:f1:c4:87:b2:a2:58:ba:d2:e0:d7:a8:d1:2b:
a3:d1:54:75:e2:42:9b:1a:9a:c6:20:bc:89:26:b8:ca:8f:d7:
72:59:d4:54:71:2d:11:e9:52:fb:d0:8f:ad:65:03:cc:b4:c1:
5e:b1:1e:83:c7:36:1a:cc:09:bf:91:36:98:3b:fc:0f:49:1a:
e7:2c:f1:f3:2a:36:fa:b5:97:a1:78:3c:b1:ac:cf:45:37:c5:
40:82:5b:3d:da:a1:11:0d:9d:f0:d2:bc:f9:86:b1:65:82:33:
b4:b2:c2:de:84:92:eb:fc:97:ef:1f:15:13:56:3a:f7:4e:0e:
16:a1:5a:33:12:9c:0b:e7:aa:ac:f1:dc:93:ee:7e:93:b7:f0:
ae:1b:81:8b:19:96:7d:7d:69:5a:a4:2f:79:e8:aa:56:28:2d:
6c:0d:c1:80:e7:47:1a:29:27:21:d9:f9:0a:a5:55:e3:17:d2:
7c:f7:14:5a:13:88:33:1a:89:eb:2b:e9:b2:69:d2:14:6d:c0:
df:80:e2:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 22:55:36 2025 by rpki-client