Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/FNJJgU6UbvvNd8HPMmi6q_m7B30.roa
File: FNJJgU6UbvvNd8HPMmi6q_m7B30.roa (raw, json)
Hash identifier: FtIKl925sPBWbY2tQrp75/yDAUbpRMZxFZHAFaXFNMY=
Subject key identifier: 14:D2:49:81:4E:94:6E:FB:CD:77:C1:CF:32:68:BA:AB:F9:BB:07:7D
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1EAA
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/FNJJgU6UbvvNd8HPMmi6q_m7B30.roa
Signing time: Fri 01 Sep 2023 10:16:19 +0000
ROA not before: Fri 01 Sep 2023 10:16:19 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24165
IP address blocks: 124.6.12.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7850 (0x1eaa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 1 10:16:19 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=14D249814E946EFBCD77C1CF3268BAABF9BB077D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:58:c5:e8:48:7c:9c:9e:f1:93:58:24:48:54:
1c:4a:98:d7:a3:b6:8e:26:94:ed:e3:b1:ac:ae:81:
c9:fc:0e:3c:81:fe:b9:4a:bf:56:fe:92:8c:61:f8:
ed:20:54:0d:ea:cc:e6:be:7f:e9:83:ca:84:97:07:
0d:d2:a8:d1:2d:85:4e:88:97:3b:9f:6f:a8:ff:42:
ec:30:a7:5c:b1:7f:80:e7:b4:46:a3:72:d9:81:65:
49:9e:18:2a:f2:2e:8c:9b:54:40:85:3a:68:33:d5:
11:0a:d1:f3:dc:97:b0:e4:8c:41:50:1d:9c:c1:65:
21:77:ab:8f:89:96:d1:4e:f7:5a:9c:5b:ba:02:9a:
47:bd:b1:74:5b:11:53:a1:5c:39:72:58:1c:cc:f9:
d5:c6:f3:e4:41:1f:d9:0a:6f:6f:d2:59:4c:25:a2:
a8:26:3d:b9:8c:d6:f9:47:05:09:88:51:79:8e:85:
32:e5:cd:c4:84:12:dd:5e:00:3a:9b:5b:f1:38:0b:
8f:c8:bd:73:15:d3:6d:f1:f4:e5:cb:ed:71:85:db:
80:e3:51:22:ca:09:ab:59:65:6e:fb:b7:2d:83:77:
a4:71:28:22:cc:cf:6c:23:5e:c1:ca:96:24:06:a5:
54:1e:65:9b:73:44:e5:e7:c1:5c:44:8e:85:ec:0a:
27:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:D2:49:81:4E:94:6E:FB:CD:77:C1:CF:32:68:BA:AB:F9:BB:07:7D
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/FNJJgU6UbvvNd8HPMmi6q_m7B30.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.6.12.0/22
Signature Algorithm: sha256WithRSAEncryption
32:e3:6e:fd:63:31:bd:9b:23:54:de:d7:47:eb:90:7d:6e:2f:
de:d0:d0:cc:e5:dc:22:99:0b:aa:d9:48:d7:60:3c:a5:cd:3b:
9b:cb:24:ab:f3:1a:59:17:a2:38:78:5f:80:8e:7b:48:0c:ea:
ae:35:c8:48:d8:46:68:5b:17:fd:94:a3:ee:a2:f3:4a:d2:44:
09:27:cf:ba:da:d2:cb:9a:3e:42:49:74:16:21:04:45:55:2a:
32:55:35:cf:80:0b:0e:91:a9:0d:3b:cf:30:c9:73:16:e5:7a:
05:ca:e8:d7:3d:de:e8:af:a8:b9:e1:46:cc:0d:ee:66:f6:6c:
22:16:01:bf:bd:a1:10:ea:1d:6f:21:fc:fe:cd:e6:e7:91:ca:
da:4e:08:fa:60:0a:0a:ee:f9:97:e9:80:c1:5f:2e:63:51:1c:
b1:e9:8a:0c:f8:15:86:3c:c7:f1:e4:c0:b8:1d:6a:52:33:a5:
a2:c6:44:a9:bd:f2:0f:8d:44:70:cf:19:d7:70:83:ba:db:77:
e4:ab:68:6c:0d:60:4e:47:62:2f:29:9a:7e:e5:e2:1d:1e:be:
01:a1:77:80:83:46:16:f9:0b:12:85:a2:62:16:3c:68:ee:4c:
d9:0b:5d:32:d4:35:15:a6:e7:7e:c0:34:7f:15:59:cc:1c:f6:
e3:93:26:6b
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICHqowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMzA5MDEx
MDE2MTlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDE0RDI0OTgxNEU5NDZF
RkJDRDc3QzFDRjMyNjhCQUFCRjlCQjA3N0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCoWMXoSHycnvGTWCRIVBxKmNejto4mlO3jsayugcn8DjyB/rlK
v1b+koxh+O0gVA3qzOa+f+mDyoSXBw3SqNEthU6Ilzufb6j/Quwwp1yxf4DntEaj
ctmBZUmeGCryLoybVECFOmgz1REK0fPcl7DkjEFQHZzBZSF3q4+JltFO91qcW7oC
mke9sXRbEVOhXDlyWBzM+dXG8+RBH9kKb2/SWUwloqgmPbmM1vlHBQmIUXmOhTLl
zcSEEt1eADqbW/E4C4/IvXMV023x9OXL7XGF24DjUSLKCatZZW77ty2Dd6RxKCLM
z2wjXsHKliQGpVQeZZtzROXnwVxEjoXsCifbAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUFNJJgU6UbvvNd8HPMmi6q/m7B30wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0ZOSkpnVTZVYnZ2TmQ4SFBN
bWk2cV9tN0IzMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ8
BgwwDQYJKoZIhvcNAQELBQADggEBADLjbv1jMb2bI1Te10frkH1uL97Q0Mzl3CKZ
C6rZSNdgPKXNO5vLJKvzGlkXojh4X4COe0gM6q41yEjYRmhbF/2Uo+6i80rSRAkn
z7ra0suaPkJJdBYhBEVVKjJVNc+ACw6RqQ07zzDJcxblegXK6Nc93uivqLnhRswN
7mb2bCIWAb+9oRDqHW8h/P7N5ueRytpOCPpgCgru+ZfpgMFfLmNRHLHpigz4FYY8
x/HkwLgdalIzpaLGRKm98g+NRHDPGddwg7rbd+SraGwNYE5HYi8pmn7l4h0evgGh
d4CDRhb5CxKFomIWPGjuTNkLXTLUNRWm537ANH8VWcwc9uOTJms=
-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:27 2024 by rpki-client on console-fra.rpki-client.org