Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/JJdsemuQoM2bIV2CH2ID_epq7Qc.roa
File: JJdsemuQoM2bIV2CH2ID_epq7Qc.roa (raw, json)
Hash identifier: qjhiGF/KU+/rnma8TX0E8KpQbJqYFG/hiJHs7FC8pwQ=
Subject key identifier: 24:97:6C:7A:6B:90:A0:CD:9B:21:5D:82:1F:62:03:FD:EA:6A:ED:07
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1E2D
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/JJdsemuQoM2bIV2CH2ID_epq7Qc.roa
Signing time: Fri 01 Sep 2023 10:15:45 +0000
ROA not before: Fri 01 Sep 2023 10:15:45 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24164
IP address blocks: 49.159.4.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7725 (0x1e2d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 1 10:15:45 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=24976C7A6B90A0CD9B215D821F6203FDEA6AED07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:2e:93:b5:59:e4:7a:01:96:6e:2f:10:4f:bf:
2b:0d:35:cb:f0:85:9a:f7:81:d2:28:e7:da:f8:28:
b0:6d:07:74:02:66:36:d8:3f:0a:98:10:df:d9:b1:
4f:df:20:89:98:cd:35:59:5b:7b:5d:8d:cd:74:ea:
3c:34:15:38:ef:96:ea:7b:7c:4f:37:29:08:26:34:
ce:ff:a8:b9:97:20:a2:37:c6:81:a5:7d:e0:fe:34:
0a:14:58:89:1e:36:50:5c:18:4e:63:a0:5e:c3:fc:
4e:86:c7:c4:f0:ca:0b:a9:0a:93:43:e5:5e:ff:35:
b5:19:59:6a:5e:b7:7a:a2:0b:cb:10:b9:d1:80:a7:
37:e8:5c:93:c0:c3:6d:7d:91:c4:a9:9f:05:a4:0c:
51:00:9f:dd:80:7f:b2:3b:18:38:bc:a7:19:aa:e0:
ca:fa:d4:4a:e0:a5:44:e0:e1:bb:f4:de:19:81:0a:
b7:6c:f3:44:09:80:65:23:41:f1:0b:5e:b6:ed:b3:
5d:39:37:67:11:20:61:68:3c:47:73:67:96:ab:08:
06:19:77:6f:13:a7:55:fb:a2:eb:ee:41:e6:92:bb:
54:c8:9c:9c:0c:3a:e1:46:16:1f:d0:01:c3:78:b0:
1c:89:e0:5c:8c:25:a2:99:85:44:f0:ef:61:4c:15:
56:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:97:6C:7A:6B:90:A0:CD:9B:21:5D:82:1F:62:03:FD:EA:6A:ED:07
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/JJdsemuQoM2bIV2CH2ID_epq7Qc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.159.4.0/22
Signature Algorithm: sha256WithRSAEncryption
67:99:03:fa:c3:9c:8f:ff:62:3b:1a:9b:1f:19:57:ec:4d:4c:
f0:13:1c:d5:2a:62:3a:96:5e:6a:32:91:70:15:4e:98:fd:21:
ad:2e:e0:02:2b:ec:55:78:5f:1f:d0:47:07:6a:14:90:7c:c1:
70:75:9e:45:6a:1e:d1:eb:89:43:09:a9:1d:90:a5:d6:7d:ab:
1e:5d:fa:8a:3f:5f:ba:36:3a:6b:e4:00:ec:9e:20:1d:b8:12:
f8:5e:84:ea:d1:3c:4b:4b:12:be:ed:4c:5a:40:98:28:ca:1e:
d4:e8:c9:91:01:9c:b3:85:a5:72:fc:56:f9:ca:77:d4:f1:41:
bc:ca:83:a4:87:7d:83:24:f4:d7:e8:c9:02:d7:a5:53:97:45:
31:db:ec:4e:a5:99:95:35:f2:6e:12:ce:3e:c4:b7:2b:e6:fd:
c6:30:8f:16:72:a1:6b:4e:c2:b3:44:ea:61:31:5e:2a:ab:15:
c3:23:56:22:1f:b1:cb:a2:cb:9d:5f:93:00:0e:db:51:ff:ee:
ca:16:3c:cb:12:31:63:a1:6d:7e:77:06:79:ab:40:52:16:c6:
5f:16:aa:d4:26:7f:fc:e9:ea:05:80:49:e7:fe:ed:64:3b:0f:
c8:f4:82:27:2d:9a:7a:3f:f1:12:4d:17:c7:96:b9:88:6d:ff:
84:a0:8a:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:27 2024 by rpki-client on console-fra.rpki-client.org