Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/7EkTAXYLwtv1XTUsKUrbOIKqWxw.roa
File: 7EkTAXYLwtv1XTUsKUrbOIKqWxw.roa (raw, json)
Hash identifier: Bc7q0lyImepCmPaB+M3DxVsGSeVUlRfBeLQOTGhaXYw=
Subject key identifier: EC:49:13:01:76:0B:C2:DB:F5:5D:35:2C:29:4A:DB:38:82:AA:5B:1C
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1DAF
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/7EkTAXYLwtv1XTUsKUrbOIKqWxw.roa
Signing time: Fri 01 Sep 2023 10:15:10 +0000
ROA not before: Fri 01 Sep 2023 10:15:09 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24165
IP address blocks: 61.61.208.0/24 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7599 (0x1daf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 1 10:15:09 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=EC491301760BC2DBF55D352C294ADB3882AA5B1C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:0e:5d:2d:d8:a6:3f:4e:20:ef:d6:38:28:09:
a5:bc:5f:b0:75:6c:57:d1:e1:77:a5:ae:b0:05:09:
56:2f:ee:7e:e2:0d:6d:ff:64:9d:36:51:24:02:0b:
95:26:f5:68:e9:71:a8:ed:5c:2b:f8:21:cf:b7:7e:
79:f9:f2:9c:ac:d1:9b:09:9a:d3:ca:fd:db:6f:6e:
dc:65:d3:18:ed:9b:cd:71:8a:af:6b:a0:6b:b8:89:
ce:5d:4c:c5:da:17:7b:86:a7:df:66:c7:aa:7b:79:
12:c8:81:eb:1d:dd:72:6a:60:c4:b0:a3:5a:f4:92:
19:22:ec:74:d2:1a:03:94:5f:94:41:5a:45:9d:70:
53:1b:e3:89:30:1f:36:1d:ee:52:2c:53:db:7b:60:
23:81:b2:81:d8:57:66:a1:03:e5:c5:83:82:db:cf:
63:be:a7:ad:6e:f2:af:c5:37:ed:54:52:2e:96:b4:
c5:9f:f9:37:2e:82:ac:06:74:1d:3a:a4:ee:35:46:
24:b6:b7:86:20:85:30:dc:ce:d8:fc:bb:f5:ca:c8:
cd:91:f7:d4:bc:62:25:cd:34:eb:0c:6b:9d:10:24:
b3:51:26:52:15:5a:1f:35:22:da:fa:52:73:af:54:
58:5e:b0:84:b5:58:c5:b4:99:14:6e:75:69:39:03:
e7:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:49:13:01:76:0B:C2:DB:F5:5D:35:2C:29:4A:DB:38:82:AA:5B:1C
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/7EkTAXYLwtv1XTUsKUrbOIKqWxw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.208.0/24
Signature Algorithm: sha256WithRSAEncryption
01:28:07:cb:f5:af:4f:04:86:cb:5d:a9:25:5d:5b:cc:c3:29:
96:c7:8f:86:c2:f9:99:ae:b3:16:a9:52:1b:73:4f:90:86:3f:
02:10:29:56:c6:1b:01:18:bf:6e:85:09:24:df:41:7c:40:66:
da:0b:2d:5c:5f:56:ce:27:96:5b:47:45:f0:98:3f:c1:a4:c8:
58:21:ae:1c:b4:6a:b6:a0:b9:42:c7:c4:6d:c0:f8:57:0e:17:
68:5a:ad:5e:c6:27:d6:6e:b1:ba:54:7b:8a:6d:0d:5d:59:d5:
fe:10:76:55:9b:b8:2b:c3:69:97:1e:e2:e1:2e:2a:04:b6:00:
4c:57:52:72:83:85:fb:87:8a:81:d3:c6:e1:6a:11:11:ff:d6:
01:f3:fa:f4:16:eb:22:90:99:7e:5e:c6:a4:95:8e:43:f2:89:
b9:fd:0c:71:b2:25:44:f5:99:3b:01:89:ce:d4:6f:73:ba:18:
7c:87:65:25:42:f3:18:5e:f9:57:c6:d7:9b:14:6c:74:b4:ca:
ab:c0:ad:a3:d2:dd:6f:d6:ac:91:cb:b2:f2:da:29:65:16:00:
08:e9:15:e1:1e:d6:3c:73:51:9f:e6:17:21:69:54:44:76:e5:
f6:a2:8a:7b:1b:66:f7:ee:de:d3:a8:73:5e:0e:a0:8e:81:12:
fd:22:e4:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:21 2024 by rpki-client on console-ams.rpki-client.org