Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/32VsnD8sFV-OVP2FWX8o4ua_8cI.roa
File: 32VsnD8sFV-OVP2FWX8o4ua_8cI.roa (raw, json)
Hash identifier: 7gXwCG4abZ5I2qYKxzDE8CjYFG9u+4l1EL+IdX3dcgg=
Subject key identifier: DF:65:6C:9C:3F:2C:15:5F:8E:54:FD:85:59:7F:28:E2:E6:BF:F1:C2
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1F39
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/32VsnD8sFV-OVP2FWX8o4ua_8cI.roa
Signing time: Tue 30 Jan 2024 08:51:12 +0000
ROA not before: Tue 30 Jan 2024 08:51:12 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24164
IP address blocks: 45.64.32.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7993 (0x1f39)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Jan 30 08:51:12 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=DF656C9C3F2C155F8E54FD85597F28E2E6BFF1C2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:ea:96:56:1b:70:8b:10:97:af:cc:0d:54:52:
11:9a:71:a8:b2:b6:37:c0:be:34:c5:56:b7:eb:fe:
a1:0d:ff:bf:eb:89:e5:14:dc:92:9d:08:cd:00:47:
a1:d9:31:d7:91:a4:e0:ae:25:72:22:9d:e8:2c:3f:
30:ab:20:b1:1e:0f:0f:8b:a3:3d:f5:0d:37:6c:c0:
d0:04:99:74:18:3d:ce:32:a4:5e:ea:16:96:83:7b:
4a:10:93:25:86:0b:4a:11:2a:28:d3:eb:d3:cc:4b:
d0:8b:a4:cd:ab:fa:65:97:4f:7c:85:c4:a1:2b:60:
0b:2a:06:b9:91:42:77:1d:61:98:65:72:1c:24:d4:
b4:d9:86:b6:23:ff:6a:e5:26:03:b3:2d:14:c0:65:
ab:ca:27:84:10:4c:e7:f9:69:af:65:6c:5c:64:83:
b2:89:ad:bc:33:6f:4c:8f:16:cc:03:80:2f:a5:38:
d6:d3:04:ed:c4:57:82:d5:42:49:94:b8:c0:7b:97:
c7:0b:7b:e5:24:f4:9c:94:c2:cb:4f:4d:4b:69:fc:
49:e0:c7:b9:b6:aa:e2:63:76:67:52:e4:db:cc:ed:
20:ab:b8:4a:b8:50:54:b2:f3:20:73:d1:7a:97:90:
75:32:1c:de:7b:85:1f:06:47:75:ae:36:f5:63:5d:
be:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:65:6C:9C:3F:2C:15:5F:8E:54:FD:85:59:7F:28:E2:E6:BF:F1:C2
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/32VsnD8sFV-OVP2FWX8o4ua_8cI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
45.64.32.0/22
Signature Algorithm: sha256WithRSAEncryption
9c:52:55:a5:bd:68:3a:5b:00:70:40:a6:45:97:07:72:53:23:
58:8e:89:80:75:bf:95:38:a1:17:65:23:5b:57:47:2c:fa:81:
e7:e8:95:ff:c9:27:d4:b7:e6:65:af:d3:29:11:ef:82:da:a9:
78:18:a7:4f:c2:e0:06:8c:55:39:e9:ff:5a:cc:4f:0f:6b:c3:
df:8e:a4:4c:03:55:64:7b:72:53:66:87:46:64:48:7a:ca:76:
0f:8b:6d:40:4c:e0:5c:2d:87:82:c5:37:2d:27:ac:21:40:c2:
fb:21:e1:48:40:e5:67:d4:7e:74:55:a8:51:2e:e3:2f:07:67:
36:95:d1:85:a6:4d:d4:d6:36:b3:92:5b:e2:65:06:ff:58:e3:
56:6d:bf:ea:1b:8e:a4:e1:6e:d9:5e:31:37:a5:86:f6:e1:7c:
b5:5f:34:0c:6a:73:af:37:8c:b2:43:ac:6b:9f:38:85:1c:23:
61:07:32:3c:98:e1:03:d8:ce:c4:7d:54:d4:5c:82:d8:2b:9d:
0a:71:21:3b:71:eb:cb:51:22:1c:f0:87:54:92:1a:05:2d:86:
59:85:5c:c6:bb:58:07:5c:cc:75:dd:fb:eb:39:8b:04:6d:79:
b4:80:bd:5e:9f:7b:7f:b8:b7:a6:21:7c:7f:b4:62:76:2c:22:
bc:fd:02:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:27 2024 by rpki-client on console-fra.rpki-client.org