Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Amnf1rWrG9j5glSMIs-YWtk6TQM.roa
File: Amnf1rWrG9j5glSMIs-YWtk6TQM.roa (raw, json)
Hash identifier: gmLo92Y6InOceWO4cke4zz6192bgYHsCBf/Hu/5hrq8=
Subject key identifier: 02:69:DF:D6:B5:AB:1B:D8:F9:82:54:8C:22:CF:98:5A:D9:3A:4D:03
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1EBC
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Amnf1rWrG9j5glSMIs-YWtk6TQM.roa
Signing time: Fri 01 Sep 2023 10:16:24 +0000
ROA not before: Fri 01 Sep 2023 10:16:24 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24164
IP address blocks: 49.159.16.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7868 (0x1ebc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 1 10:16:24 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=0269DFD6B5AB1BD8F982548C22CF985AD93A4D03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:04:a4:04:ec:10:58:fa:6f:36:e7:95:fb:8a:
fb:43:f3:0f:52:4c:6b:23:91:24:15:51:13:13:e6:
38:05:2b:e9:d9:df:70:93:79:7d:e0:db:9f:b2:e6:
92:d7:e1:68:47:ba:4e:3f:42:2a:bc:21:20:ad:1a:
8c:df:8f:41:4e:4d:12:95:15:b9:c2:fb:6d:5b:9a:
0e:f5:84:b0:10:7c:45:74:66:8c:a3:a7:fc:65:af:
02:74:55:df:0f:cc:e0:93:8b:12:37:af:bb:56:ac:
76:5c:67:cd:1e:44:8e:4e:21:1b:cb:77:b4:7c:27:
b9:c5:be:7d:bf:35:34:12:cd:33:d9:f5:5d:51:02:
da:c0:e0:5d:b6:37:67:da:cc:c9:0c:b1:bf:10:14:
31:75:52:c4:81:77:11:ec:c8:0f:c0:cf:ea:19:6b:
98:5d:52:22:89:25:5d:a5:35:50:3b:6a:b6:31:7b:
ab:2e:cc:c5:ab:41:63:78:5e:23:b7:87:54:eb:e2:
08:74:60:a0:d5:ec:ec:7c:a1:89:41:62:ec:9f:ea:
3a:52:37:6c:66:9b:7e:89:f8:62:e8:94:4b:27:00:
53:bb:6b:6d:37:9d:6b:75:b2:4d:fa:76:c1:fa:21:
b2:ac:28:18:b1:97:f0:31:6b:f3:f5:b8:13:e4:66:
ac:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:69:DF:D6:B5:AB:1B:D8:F9:82:54:8C:22:CF:98:5A:D9:3A:4D:03
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Amnf1rWrG9j5glSMIs-YWtk6TQM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.159.16.0/21
Signature Algorithm: sha256WithRSAEncryption
3f:3f:88:64:0f:a6:3a:6e:b5:82:35:4f:ad:fe:cb:52:bc:4a:
94:b0:93:be:62:6f:9e:d0:07:f6:b2:70:c7:cc:30:fa:f4:ef:
4b:3c:87:99:23:3a:b7:d2:06:c9:58:57:c4:19:ae:98:09:f6:
8f:a4:1e:9b:70:84:b7:e9:c1:fa:f9:75:8c:2e:99:18:77:9c:
8e:95:e6:27:b6:02:8c:f1:3f:97:a5:33:37:47:73:67:e0:58:
93:91:41:77:00:f1:4c:00:9b:2c:82:f2:ea:45:36:ea:0e:aa:
a3:5f:f9:66:32:c3:d7:70:eb:bd:dd:10:24:87:f1:fe:bd:57:
47:7c:d0:cc:72:12:54:9b:87:80:53:86:93:a5:fe:be:74:55:
48:83:08:b2:1f:3a:36:fb:29:39:7c:75:b8:c4:3e:bd:4b:16:
e8:c4:f0:96:1f:3a:c7:11:83:ca:9f:42:57:89:76:1f:b1:90:
ed:1d:0f:0f:77:f9:7c:02:70:bf:29:58:9c:ca:9d:05:b6:ad:
6f:17:7c:54:62:66:5d:9a:a3:bd:dd:25:21:24:1c:8b:e8:a2:
47:f0:ef:ee:cd:f1:b5:78:79:69:cf:17:3b:51:3b:4c:8f:57:
24:bf:30:a9:82:45:b9:d0:2f:59:9c:d2:df:ba:f2:be:e4:97:
1e:9c:db:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:21 2024 by rpki-client on console-ams.rpki-client.org