Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/8PXpqusQq0gsXGVpRSo3KT63Fu0.roa
File: 8PXpqusQq0gsXGVpRSo3KT63Fu0.roa (raw, json)
Hash identifier: 1hLUr6YUKkRkONzgKH8FSkuIZ+qkLqEEqIDZgVW/XwY=
Subject key identifier: F0:F5:E9:AA:EB:10:AB:48:2C:5C:65:69:45:2A:37:29:3E:B7:16:ED
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1D58
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/8PXpqusQq0gsXGVpRSo3KT63Fu0.roa
Signing time: Fri 01 Sep 2023 10:14:42 +0000
ROA not before: Fri 01 Sep 2023 10:14:42 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24163
IP address blocks: 122.100.104.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7512 (0x1d58)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 1 10:14:42 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=F0F5E9AAEB10AB482C5C6569452A37293EB716ED
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:3d:3d:65:8f:65:76:a0:4c:df:f3:4c:5d:da:
1f:f5:d1:63:44:f7:e8:95:0a:3c:cb:d7:f1:9c:9b:
34:c9:70:92:2b:c2:ea:da:aa:72:fd:e3:c5:d3:d1:
03:20:d0:b6:26:5c:0c:14:63:4c:73:58:14:0f:82:
f3:17:fa:28:f2:10:54:08:5c:80:91:33:56:09:76:
57:73:e0:e6:ce:1a:0c:b6:c8:fb:85:0c:18:10:a7:
97:4f:7b:00:82:78:b2:15:f4:27:29:eb:f9:74:22:
ac:1c:cb:05:1f:79:19:7f:8f:8d:a7:23:76:57:85:
6d:65:ef:7e:c9:cf:47:d4:24:6f:fb:28:3c:aa:2f:
e4:d2:cd:3b:5b:83:d9:33:42:9f:8b:4d:d3:4d:71:
38:69:b1:da:3e:2f:78:22:6a:00:c8:95:49:74:dd:
50:09:db:68:b4:47:53:24:76:a0:a9:ae:6c:33:cc:
9c:3e:b8:a5:78:a8:c9:ca:23:76:6f:36:75:ec:03:
b3:9e:08:6e:ea:db:ae:34:6c:3f:74:69:27:c8:fe:
60:30:eb:11:cf:b2:9d:9d:df:91:e1:0a:d1:31:22:
6a:c8:94:d5:aa:d4:26:b3:cf:93:57:37:d3:8d:ca:
ac:fd:94:5d:dc:e6:ee:64:c6:b3:c2:a4:57:07:ce:
af:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:F5:E9:AA:EB:10:AB:48:2C:5C:65:69:45:2A:37:29:3E:B7:16:ED
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/8PXpqusQq0gsXGVpRSo3KT63Fu0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.100.104.0/21
Signature Algorithm: sha256WithRSAEncryption
23:d2:13:0a:bc:d5:99:cd:1d:a7:bd:e0:3e:f5:9b:1c:ad:75:
0a:43:10:62:11:88:8c:d5:77:65:56:3e:e5:1e:2f:32:4f:47:
16:54:db:28:fd:a1:2f:89:82:96:e3:33:67:3c:49:50:77:42:
97:a8:0b:75:ab:d9:98:b6:2b:9b:37:21:d3:e1:17:20:17:d2:
05:2b:39:4c:4e:38:5c:06:66:b7:14:18:f5:f6:61:a6:11:4b:
e3:3d:a3:30:c5:b8:71:12:20:64:85:5b:54:28:b7:c3:84:73:
d7:d8:6c:ae:3e:a4:18:3e:d0:f6:eb:32:6e:d0:97:96:ed:8a:
d1:66:de:9b:ec:7e:18:3a:d1:31:d1:de:ab:33:ce:5f:1e:ae:
bb:55:54:af:49:33:a3:1a:ff:23:76:1a:e6:40:cd:8d:5b:16:
f6:a9:5f:c1:70:7d:dd:c9:bc:25:5e:ac:96:d2:3a:5b:dd:a2:
45:6d:f4:bb:6a:6b:df:93:81:d0:59:10:60:34:19:38:16:93:
3e:77:a1:f9:9d:29:d7:98:b7:98:f3:18:e2:cd:53:e6:4e:50:
82:df:e0:44:a0:b8:e4:69:2b:19:67:3e:15:9d:c6:5b:19:c1:
e3:71:2c:ed:fd:35:87:15:b3:4f:1b:a3:37:b1:2e:ca:5b:4d:
4e:97:ae:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:21 2024 by rpki-client on console-ams.rpki-client.org