Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/0JrWSiDMK3NoIUJNdi4hFibZxJI.roa
File: 0JrWSiDMK3NoIUJNdi4hFibZxJI.roa (raw, json)
Hash identifier: fCD0ZD6O4USVRzSDP3G4XxIT6bkocvirrPVZM60yWdw=
Subject key identifier: D0:9A:D6:4A:20:CC:2B:73:68:21:42:4D:76:2E:21:16:26:D9:C4:92
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1EA3
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/0JrWSiDMK3NoIUJNdi4hFibZxJI.roa
Signing time: Fri 01 Sep 2023 10:16:18 +0000
ROA not before: Fri 01 Sep 2023 10:16:18 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24163
IP address blocks: 180.218.224.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7843 (0x1ea3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 1 10:16:18 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=D09AD64A20CC2B736821424D762E211626D9C492
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:9a:b7:62:a5:83:e4:59:bc:74:1b:45:e5:2f:
1f:dc:0f:f9:d8:fa:62:dd:ac:0f:c2:a7:12:26:d4:
72:61:e1:ba:cd:00:d7:77:ee:43:be:c1:a8:65:c4:
58:59:42:47:de:d5:ad:24:47:a0:07:f3:81:89:9d:
a9:a1:b1:24:d4:68:90:de:df:e3:3b:f0:11:15:8e:
90:e2:31:cf:2e:f5:8d:a3:eb:5d:6b:36:62:ff:ca:
a5:54:82:7b:05:98:6e:f4:04:63:51:41:ea:8f:2d:
b5:83:17:4a:c4:7f:cc:ad:19:60:ff:2b:cd:62:15:
19:34:8d:80:13:76:4a:02:80:32:16:81:f5:2f:37:
45:43:4e:02:23:16:d4:8a:21:5b:ea:4f:3c:3d:ff:
67:92:b2:5b:35:8c:e8:e6:59:49:ae:fa:e1:2d:78:
f2:c9:25:b5:8d:f2:55:9d:c9:4b:c8:ae:a9:d8:b1:
0f:f9:9f:85:19:d7:70:19:f1:e0:16:e9:4c:84:cf:
1d:02:ed:a2:0f:5e:9b:9e:13:d2:36:af:02:45:1e:
eb:72:7c:c5:e1:aa:44:79:83:28:1d:dd:c9:e2:f7:
b2:63:41:4a:22:a5:af:a8:ac:92:37:f8:04:77:1d:
bc:12:7a:7d:44:f7:e6:04:4f:7e:f8:01:75:b5:95:
cd:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:9A:D6:4A:20:CC:2B:73:68:21:42:4D:76:2E:21:16:26:D9:C4:92
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/0JrWSiDMK3NoIUJNdi4hFibZxJI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.224.0/21
Signature Algorithm: sha256WithRSAEncryption
74:c0:9d:44:fd:59:66:f0:5f:59:3a:c3:5f:a0:eb:30:ed:f3:
33:78:da:73:13:4f:3b:38:2e:5f:7a:7c:db:e8:4c:0c:61:35:
76:b8:b4:b4:7b:fd:8b:12:a2:ce:b3:45:be:a2:30:c9:6f:df:
11:a6:0a:c7:40:29:9e:8f:12:1c:57:57:98:b2:45:d4:3f:83:
21:57:75:83:9e:c1:eb:f9:23:3c:07:a9:c8:59:a9:b5:7d:7a:
43:18:05:6e:12:77:5f:ca:c7:f9:04:2a:2d:15:fd:e7:e0:a1:
e6:ee:44:cb:10:18:4a:3d:cd:ea:37:96:62:6d:d9:ac:f5:0f:
eb:a0:ad:28:4b:8d:fa:37:67:07:93:b2:a2:ca:35:c9:69:84:
ce:89:f2:a4:cd:a3:06:a3:ed:0d:99:69:7d:4c:ab:0d:b0:b7:
ca:a3:98:64:4d:2e:ba:6c:3c:42:71:8e:13:5e:3a:51:1f:46:
bf:3c:15:ca:d0:4a:99:89:f3:31:73:9b:df:88:fa:f1:9c:f2:
53:20:20:81:78:6e:3f:d9:8b:fa:f8:c9:eb:70:f2:c4:94:23:
86:c8:f3:b3:82:e6:08:d6:bb:35:98:d6:98:f1:a9:42:3e:8a:
ad:08:32:5e:14:75:75:db:0e:7a:a8:69:62:ab:50:b7:c2:e9:
04:2f:90:b4
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICHqMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMzA5MDEx
MDE2MThaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEQwOUFENjRBMjBDQzJC
NzM2ODIxNDI0RDc2MkUyMTE2MjZEOUM0OTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC6mrdipYPkWbx0G0XlLx/cD/nY+mLdrA/CpxIm1HJh4brNANd3
7kO+wahlxFhZQkfe1a0kR6AH84GJnamhsSTUaJDe3+M78BEVjpDiMc8u9Y2j611r
NmL/yqVUgnsFmG70BGNRQeqPLbWDF0rEf8ytGWD/K81iFRk0jYATdkoCgDIWgfUv
N0VDTgIjFtSKIVvqTzw9/2eSsls1jOjmWUmu+uEtePLJJbWN8lWdyUvIrqnYsQ/5
n4UZ13AZ8eAW6UyEzx0C7aIPXpueE9I2rwJFHutyfMXhqkR5gygd3cni97JjQUoi
pa+orJI3+AR3HbwSen1E9+YET374AXW1lc2fAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQU0JrWSiDMK3NoIUJNdi4hFibZxJIwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULzBKcldTaURNSzNOb0lVSk5k
aTRoRmliWnhKSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAO0
2uAwDQYJKoZIhvcNAQELBQADggEBAHTAnUT9WWbwX1k6w1+g6zDt8zN42nMTTzs4
Ll96fNvoTAxhNXa4tLR7/YsSos6zRb6iMMlv3xGmCsdAKZ6PEhxXV5iyRdQ/gyFX
dYOewev5IzwHqchZqbV9ekMYBW4Sd1/Kx/kEKi0V/efgoebuRMsQGEo9zeo3lmJt
2az1D+ugrShLjfo3ZweTsqLKNclphM6J8qTNowaj7Q2ZaX1Mqw2wt8qjmGRNLrps
PEJxjhNeOlEfRr88FcrQSpmJ8zFzm9+I+vGc8lMgIIF4bj/Zi/r4yetw8sSUI4bI
87OC5gjWuzWY1pjxqUI+iq0IMl4UdXXbDnqoaWKrULfC6QQvkLQ=
-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:27 2024 by rpki-client on console-fra.rpki-client.org