Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/IWtFJFacUwCXpIIy7aebHaiwCko.roa
File: IWtFJFacUwCXpIIy7aebHaiwCko.roa (raw, json)
Hash identifier: hLz9k20vlkOoFHuHKRyjwpzqEnrIwu7XRhwFtFppZvQ=
Subject key identifier: 21:6B:45:24:56:9C:53:00:97:A4:82:32:ED:A7:9B:1D:A8:B0:0A:4A
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1EBF
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/IWtFJFacUwCXpIIy7aebHaiwCko.roa
Signing time: Fri 01 Sep 2023 10:16:24 +0000
ROA not before: Fri 01 Sep 2023 10:16:24 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24164
IP address blocks: 49.158.88.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7871 (0x1ebf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 1 10:16:24 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=216B4524569C530097A48232EDA79B1DA8B00A4A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:31:43:85:d5:d9:4f:d0:54:af:a6:d3:a7:98:
ed:b0:7e:7c:cb:f0:6a:24:25:6a:25:ee:d8:e4:16:
bd:ee:d8:bb:71:eb:90:4f:59:cf:40:44:29:01:23:
20:76:93:7b:fb:b7:93:30:56:b6:69:59:f0:e1:16:
a3:b7:f3:d2:3d:b9:16:9d:35:d7:4c:7f:9b:f2:73:
58:10:7b:16:3b:8e:5c:1c:ac:c2:03:64:b5:91:ae:
05:a5:b6:ec:e3:81:d2:0f:26:88:85:d6:24:8f:1d:
25:cb:12:09:a5:4e:7d:5e:a8:84:7b:99:87:9d:47:
45:16:fd:61:87:ed:e0:96:e9:db:82:28:20:9b:2c:
db:21:4b:c7:a9:f2:8c:1d:38:4f:ec:9a:f9:29:5b:
14:8c:74:55:08:11:e1:b6:8c:29:6e:37:49:73:6f:
ce:b6:4f:77:67:23:76:88:8e:0f:21:fd:98:b7:52:
31:0d:ef:51:f3:c7:42:3e:d9:0a:dc:b2:c8:71:fb:
5f:07:05:07:79:bc:69:76:e7:ad:d1:75:c8:8d:58:
58:14:28:bc:85:40:92:96:84:89:c9:58:50:1f:be:
92:ff:fa:fa:23:09:0b:1d:04:ff:2d:d7:2b:fe:e7:
65:cb:e6:a7:0b:5d:22:da:49:49:36:a9:e5:b0:1f:
e8:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:6B:45:24:56:9C:53:00:97:A4:82:32:ED:A7:9B:1D:A8:B0:0A:4A
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/IWtFJFacUwCXpIIy7aebHaiwCko.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.88.0/21
Signature Algorithm: sha256WithRSAEncryption
27:85:f8:dd:23:f2:32:db:a2:f3:28:5a:d5:43:f0:2b:a3:7e:
89:06:be:87:c3:72:44:52:5c:22:17:e2:4e:cb:5f:4e:18:76:
8b:cc:a9:60:cc:a7:3c:8f:b4:c0:cf:d8:8d:83:f5:9a:5e:55:
e7:a3:a3:93:81:e8:ca:03:1f:b4:bb:9d:6f:ff:42:ab:f6:98:
77:9d:f1:d5:f5:6b:be:a5:1e:06:e4:82:77:76:a5:9e:8f:31:
e6:2a:0f:05:dc:e2:fc:b3:d3:25:3c:8f:d3:ff:ae:71:14:b2:
3c:a1:3e:24:a9:ba:f1:d4:9a:41:3e:70:c2:dc:5b:e5:d7:43:
c2:dd:87:26:b1:22:d7:72:c3:4e:48:c2:a1:fc:6a:04:eb:8f:
5d:28:cf:d2:b5:6a:ab:d6:1b:93:53:a8:4f:8f:b9:29:ed:32:
5c:d9:2e:dd:f4:48:7c:c5:73:c1:5e:81:9c:a2:bf:70:67:78:
5f:3c:23:87:93:bf:d2:ae:67:4c:95:8d:11:77:d8:c4:02:13:
ea:6e:54:74:26:d9:3d:5d:fd:2b:90:79:1f:a6:dd:10:10:b6:
28:2e:cf:de:5d:78:b9:c1:56:bc:d2:f8:f7:3d:3a:15:7d:1c:
8e:61:62:1a:7d:55:cf:f8:53:36:39:5d:3f:2f:75:74:e3:a2:
8b:25:61:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:21 2024 by rpki-client on console-ams.rpki-client.org