Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/OMQZCbbg08c7v64icDATbCyZUqc.roa
File: OMQZCbbg08c7v64icDATbCyZUqc.roa (raw, json)
Hash identifier: rmT+AWDUbEAtB4JTE0mFKfsmXRskxxUdG7jcC8ikdXE=
Subject key identifier: 38:C4:19:09:B6:E0:D3:C7:3B:BF:AE:22:70:30:13:6C:2C:99:52:A7
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1D96
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/OMQZCbbg08c7v64icDATbCyZUqc.roa
Signing time: Fri 01 Sep 2023 10:15:02 +0000
ROA not before: Fri 01 Sep 2023 10:15:02 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24164
IP address blocks: 180.218.160.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7574 (0x1d96)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 1 10:15:02 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=38C41909B6E0D3C73BBFAE227030136C2C9952A7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:51:5d:c6:18:5d:ca:8e:b2:ed:f3:d4:b7:2c:
4f:62:7e:7f:db:32:0b:e6:9e:c6:60:fb:65:15:19:
7b:69:f5:76:34:c5:a5:9d:f5:01:a4:7c:6d:cd:bc:
26:c4:2e:d7:90:54:ad:6a:81:22:b3:4d:0b:a3:6c:
15:26:ec:0f:3b:74:f2:7a:5b:54:b4:4a:fd:83:8c:
78:5a:90:c4:dc:54:ef:1c:c4:ce:6b:c8:1a:ba:57:
b3:3d:7b:69:cf:aa:38:2b:6c:3f:6b:69:ae:59:01:
bf:a1:3e:7a:ea:ad:df:d6:ac:5c:5f:09:3d:f6:a6:
f5:f0:bc:b1:21:39:ba:71:35:54:1e:d2:58:58:eb:
77:4a:82:29:dc:16:f2:89:89:2a:64:fd:54:b2:8e:
8e:8f:74:07:b5:de:43:ff:0d:dd:0d:ab:66:ea:19:
91:da:ee:69:2d:62:55:64:f0:96:e5:f7:8d:35:dd:
6e:5a:b9:b2:0a:50:3b:9d:6c:e5:9a:e6:e7:ef:50:
d7:31:1e:15:84:2d:0c:ec:93:e9:e5:61:99:4a:76:
36:ae:25:ce:9e:86:64:07:60:77:d5:59:83:2b:c7:
85:7d:5d:43:ef:23:ec:e0:dd:9f:58:45:0e:62:ad:
e0:1e:9e:14:64:ce:a2:fd:30:a6:25:b6:2d:be:3a:
9d:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:C4:19:09:B6:E0:D3:C7:3B:BF:AE:22:70:30:13:6C:2C:99:52:A7
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/OMQZCbbg08c7v64icDATbCyZUqc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.160.0/20
Signature Algorithm: sha256WithRSAEncryption
11:de:7c:43:7f:ff:56:ff:5c:da:4a:d3:03:72:d8:29:1c:3e:
9e:06:20:48:5e:67:c6:31:90:2e:b1:08:9a:05:65:78:ae:42:
ac:79:4b:5e:80:30:fc:3f:24:db:a2:b1:b2:fb:c0:1d:af:90:
ec:d3:1c:20:57:d3:b2:1e:5e:50:be:b3:eb:f8:d5:de:dc:bd:
cb:a1:91:1d:96:29:47:a4:98:40:4a:f3:2d:f8:ed:86:b8:39:
0d:55:99:86:70:fc:c4:2f:ac:ce:8d:0a:cb:7e:e9:83:10:d2:
cc:9b:42:be:9e:e3:03:26:77:be:3c:44:b3:0f:33:da:b0:34:
a0:20:f1:1b:d3:f5:ef:7c:a0:0e:c7:ac:5f:58:cc:a0:27:ee:
a1:51:e8:b8:43:8f:2d:32:d9:9b:2f:07:98:b8:5b:95:2e:e3:
12:36:b5:0a:82:72:71:8f:1f:5e:b1:1d:22:f6:d8:fb:01:08:
5e:0d:7f:99:14:f5:fb:74:d9:e9:7c:97:90:24:08:85:8f:85:
fa:53:4c:b9:1c:b5:96:97:ab:b4:39:53:a8:7a:b0:63:cd:9f:
b2:ff:eb:91:3a:f1:ca:26:50:c2:f9:53:90:23:12:c4:db:33:
4f:46:da:c8:b5:a2:9b:56:71:57:f0:7e:51:fa:9c:46:5f:0d:
45:c6:bd:55
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICHZYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMzA5MDEx
MDE1MDJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDM4QzQxOTA5QjZFMEQz
QzczQkJGQUUyMjcwMzAxMzZDMkM5OTUyQTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC5UV3GGF3KjrLt89S3LE9ifn/bMgvmnsZg+2UVGXtp9XY0xaWd
9QGkfG3NvCbELteQVK1qgSKzTQujbBUm7A87dPJ6W1S0Sv2DjHhakMTcVO8cxM5r
yBq6V7M9e2nPqjgrbD9raa5ZAb+hPnrqrd/WrFxfCT32pvXwvLEhObpxNVQe0lhY
63dKgincFvKJiSpk/VSyjo6PdAe13kP/Dd0Nq2bqGZHa7mktYlVk8Jbl94013W5a
ubIKUDudbOWa5ufvUNcxHhWELQzsk+nlYZlKdjauJc6ehmQHYHfVWYMrx4V9XUPv
I+zg3Z9YRQ5ireAenhRkzqL9MKYlti2+Op2DAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUOMQZCbbg08c7v64icDATbCyZUqcwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL09NUVpDYmJnMDhjN3Y2NGlj
REFUYkN5WlVxYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAS0
2qAwDQYJKoZIhvcNAQELBQADggEBABHefEN//1b/XNpK0wNy2CkcPp4GIEheZ8Yx
kC6xCJoFZXiuQqx5S16AMPw/JNuisbL7wB2vkOzTHCBX07IeXlC+s+v41d7cvcuh
kR2WKUekmEBK8y347Ya4OQ1VmYZw/MQvrM6NCst+6YMQ0sybQr6e4wMmd748RLMP
M9qwNKAg8RvT9e98oA7HrF9YzKAn7qFR6LhDjy0y2ZsvB5i4W5Uu4xI2tQqCcnGP
H16xHSL22PsBCF4Nf5kU9ft02el8l5AkCIWPhfpTTLkctZaXq7Q5U6h6sGPNn7L/
65E68comUML5U5AjEsTbM09G2si1optWcVfwflH6nEZfDUXGvVU=
-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:21 2024 by rpki-client on console-ams.rpki-client.org