Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/-dqIOkPTotKg7XwN7f-lWJIcSdQ.roa
File: -dqIOkPTotKg7XwN7f-lWJIcSdQ.roa (raw, json)
Hash identifier: 4dQ6Loa6AdFZhM9rfUTcVgYptBV5S1IEBfxY7nicHAQ=
Subject key identifier: F9:DA:88:3A:43:D3:A2:D2:A0:ED:7C:0D:ED:FF:A5:58:92:1C:49:D4
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1E20
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/-dqIOkPTotKg7XwN7f-lWJIcSdQ.roa
Signing time: Fri 01 Sep 2023 10:15:42 +0000
ROA not before: Fri 01 Sep 2023 10:15:42 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24164
IP address blocks: 49.158.8.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7712 (0x1e20)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 1 10:15:42 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=F9DA883A43D3A2D2A0ED7C0DEDFFA558921C49D4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:cf:33:7f:2c:7e:74:56:3e:19:1c:53:1e:f2:
52:b4:6d:a8:e9:27:36:30:06:15:2c:7b:c3:65:16:
be:38:af:76:cd:8f:6d:6c:d4:cd:e9:f7:18:23:27:
14:33:fb:b8:fe:56:fd:a9:b5:a3:d6:4f:27:45:1c:
6c:f0:c6:84:c8:d9:2c:ed:fb:10:b7:20:36:f5:88:
bd:af:bc:c9:ef:91:96:53:13:aa:25:ac:da:3a:2e:
75:35:35:03:75:b2:4d:9d:20:3b:9f:31:a8:ce:74:
6d:e8:70:aa:79:0c:ba:c5:fc:5b:dc:99:a0:98:06:
71:7a:2d:07:6e:2e:a4:00:2f:41:55:d9:5c:57:55:
b2:fa:db:c9:a4:51:dd:8e:c0:9c:84:38:54:b7:ef:
57:e3:bd:25:6c:7a:dd:51:06:50:0a:96:36:2b:82:
eb:29:19:a4:88:c5:c8:a3:af:f3:7f:ea:83:3e:6f:
12:66:92:f9:3d:c0:10:7c:df:7c:99:18:eb:51:e5:
e2:bd:01:4c:8a:88:57:27:a9:88:4c:cc:84:8b:34:
c7:a5:52:40:9d:71:f5:b9:29:c5:9f:81:46:fe:1b:
c2:05:02:17:77:c6:80:0e:18:6a:15:bb:a2:ab:9b:
7d:bc:d7:e1:9a:3d:0c:fb:ac:2b:c4:5a:6e:09:df:
aa:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:DA:88:3A:43:D3:A2:D2:A0:ED:7C:0D:ED:FF:A5:58:92:1C:49:D4
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/-dqIOkPTotKg7XwN7f-lWJIcSdQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.8.0/21
Signature Algorithm: sha256WithRSAEncryption
16:e4:2c:50:ba:b0:59:87:a4:87:ca:ae:91:c1:23:5e:15:5d:
d0:59:3c:25:4f:03:77:51:c3:52:64:6f:58:31:00:bb:c3:1b:
d6:2c:43:da:51:ac:be:77:d3:dc:92:f1:14:96:cc:91:f4:0b:
8b:37:09:23:08:17:ee:0a:38:92:39:bd:fa:9d:68:f6:87:6d:
4b:2b:95:10:c8:aa:82:a7:4b:a6:57:c2:40:d5:bc:87:6d:e3:
c9:ea:1e:c7:c6:b4:1f:01:7c:26:b6:c7:82:6b:65:44:87:e3:
a2:81:6e:d4:28:51:ae:d7:0e:c2:71:5d:1a:0a:60:ba:b7:8f:
8e:a1:c1:01:f9:27:e5:16:3c:5b:20:e7:c5:86:28:dd:df:58:
04:79:e9:59:ff:1b:09:f0:4c:b6:b5:45:50:85:f6:5b:e8:5c:
b4:19:c5:71:2a:b7:9a:33:95:84:7c:f3:79:f2:b3:40:b9:7c:
92:76:5a:aa:02:23:87:71:a0:a3:99:d0:8e:1c:6b:b9:6c:59:
72:68:d5:09:82:b0:a3:af:dc:01:a6:df:24:99:73:59:e2:bf:
46:0c:f8:ee:af:d9:2e:f2:78:3b:1c:ac:96:e8:ed:75:77:e5:
63:4c:5e:a3:e4:54:de:5c:b5:f9:f4:ff:97:4b:0d:83:90:e2:
2e:fd:4a:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:27 2024 by rpki-client on console-fra.rpki-client.org