Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/G7RlTu4_8bBqM6rB6GDmgPspxeM.roa
File: G7RlTu4_8bBqM6rB6GDmgPspxeM.roa (raw, json)
Hash identifier: UPywGOmBViJ7BHgFRVTaYhoD2+kqwZMvj/k9fw+oSQg=
Subject key identifier: 1B:B4:65:4E:EE:3F:F1:B0:6A:33:AA:C1:E8:60:E6:80:FB:29:C5:E3
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1F37
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/G7RlTu4_8bBqM6rB6GDmgPspxeM.roa
Signing time: Tue 30 Jan 2024 08:49:47 +0000
ROA not before: Tue 30 Jan 2024 08:49:47 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24164
IP address blocks: 211.76.64.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7991 (0x1f37)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Jan 30 08:49:47 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=1BB4654EEE3FF1B06A33AAC1E860E680FB29C5E3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:9a:c0:bd:9a:f0:ee:ee:d8:1e:40:24:53:2c:
7e:4b:60:38:5d:6c:42:f4:de:f7:47:58:33:79:c5:
62:6a:07:26:47:0b:59:e3:d2:b2:bb:01:c0:95:ac:
fd:0c:af:40:2a:89:0d:16:4b:e4:9a:08:f3:79:66:
4f:c9:0a:47:31:b5:54:95:cf:8e:40:02:4a:b3:9c:
5f:4d:c9:06:98:9b:50:19:33:11:46:1f:f2:ce:79:
86:92:2e:da:71:b0:31:4f:67:3b:ef:ad:90:81:d3:
7a:6c:34:e6:ee:f9:32:8a:fa:d5:f4:ab:e7:f1:cc:
60:7f:f2:61:47:b4:f1:10:6b:d3:5e:8b:22:b2:b5:
e0:a9:77:a4:f0:8d:2f:01:9a:49:a9:59:bd:00:6b:
64:63:68:8d:dc:ce:d3:19:2b:16:5b:67:63:1c:5d:
8d:47:9f:07:35:71:90:c6:3c:43:0b:e8:f0:33:34:
54:35:6a:b0:ce:3b:1c:09:d3:cb:71:55:cd:76:bd:
0c:da:4c:a3:77:63:81:3f:b1:7e:a6:09:0d:bd:df:
1d:58:25:8e:8a:bc:9b:27:3a:6f:cf:9d:81:5e:a8:
6a:1f:87:8d:de:8b:34:57:94:d1:fc:2a:25:16:61:
5d:ac:43:c3:b3:10:51:27:7a:9e:19:a3:4a:b7:3d:
89:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:B4:65:4E:EE:3F:F1:B0:6A:33:AA:C1:E8:60:E6:80:FB:29:C5:E3
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/G7RlTu4_8bBqM6rB6GDmgPspxeM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.64.0/20
Signature Algorithm: sha256WithRSAEncryption
4b:d6:f6:06:8a:c2:c3:58:3c:f2:78:ea:24:ea:d3:11:97:16:
22:8d:6a:e4:e2:f9:e9:d3:44:4b:d2:d0:55:5d:b4:40:19:0a:
3a:bf:bc:2f:9d:e4:19:cd:d3:e0:ff:ea:5c:10:4c:5b:16:39:
67:c7:09:03:c6:83:4b:56:67:01:cf:71:17:dc:a1:1d:f4:05:
d9:6b:c3:9e:bf:96:ad:ca:28:c2:a7:62:a4:04:90:c8:37:20:
b2:87:4b:3f:6a:e1:a0:2f:84:56:6d:97:71:b0:26:9a:ac:3e:
4b:02:1b:1d:f5:5f:ff:5e:8a:12:ea:f2:11:e0:ef:94:4a:fb:
34:d7:8d:f1:d5:53:1d:cd:71:71:11:5e:bd:53:5a:37:8b:7d:
9c:9d:2e:69:c0:ab:75:70:cf:0f:c0:24:57:81:c3:06:3c:85:
e5:2b:f8:ef:79:d2:a9:f9:a0:89:4f:68:ad:73:03:ca:85:ef:
4a:9d:b3:30:e6:9f:7b:42:2d:d5:78:28:a6:ff:61:d4:11:61:
bf:6c:95:08:bd:a1:4d:28:f3:a5:05:59:fc:1c:cf:69:1e:ea:
07:61:b9:82:71:bc:90:7c:bd:18:36:eb:b5:8f:7f:24:54:8b:
c1:67:ac:46:c9:0e:96:38:01:7c:77:02:ca:a7:c1:6c:30:37:
74:b9:9f:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:27 2024 by rpki-client on console-fra.rpki-client.org