Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Oeg3Hx5vhDHFjZWroIpbW_MVYKQ.roa
File: Oeg3Hx5vhDHFjZWroIpbW_MVYKQ.roa (raw, json)
Hash identifier: f3KUCd/BJ8aN6m4OL+D1lE7BhZ/ygIzdZ3NVsUSbyhs=
Subject key identifier: 39:E8:37:1F:1E:6F:84:31:C5:8D:95:AB:A0:8A:5B:5B:F3:15:60:A4
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1E37
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Oeg3Hx5vhDHFjZWroIpbW_MVYKQ.roa
Signing time: Fri 01 Sep 2023 10:15:48 +0000
ROA not before: Fri 01 Sep 2023 10:15:48 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 4662
IP address blocks: 61.64.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7735 (0x1e37)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 1 10:15:48 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=39E8371F1E6F8431C58D95ABA08A5B5BF31560A4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:17:db:6f:8a:1a:e5:27:3f:83:5d:58:d7:e1:
07:63:39:00:08:ef:14:1b:7c:22:8c:e8:bb:b2:43:
4e:21:f0:2b:ec:d2:41:22:86:40:68:4c:64:1a:55:
21:55:8b:4f:66:b4:b8:ec:f7:2e:94:83:ff:e1:6b:
6b:24:a5:ab:ef:99:fb:91:a5:89:3b:f2:26:bf:14:
28:7f:7c:15:ed:06:52:20:79:73:56:17:0c:2e:e6:
84:5a:35:38:5b:a0:39:eb:3e:3e:3e:87:61:10:56:
9d:0a:de:dd:f4:5f:08:bb:66:5c:42:a0:49:5f:6d:
d0:c2:8d:ea:bd:89:a4:0f:25:c5:d0:6b:57:d8:53:
20:46:1f:12:62:ec:3f:31:f4:26:7a:80:a1:72:77:
36:28:fc:72:aa:fe:eb:4a:e3:95:0c:25:77:43:6c:
3a:be:b4:2c:6e:5a:82:ef:ae:44:76:60:4b:e2:28:
08:0b:52:9a:a8:07:8b:6d:4c:55:59:30:17:3c:60:
64:94:49:da:95:63:0f:82:ff:83:7b:8a:a1:a5:33:
0e:91:b7:df:62:2c:51:d9:95:a1:87:d0:6d:93:90:
c8:8a:0c:28:35:55:cb:a7:07:47:16:74:cb:2b:e2:
ad:8d:bb:16:4e:58:52:47:51:a5:bd:53:93:4a:b3:
e4:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:E8:37:1F:1E:6F:84:31:C5:8D:95:AB:A0:8A:5B:5B:F3:15:60:A4
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Oeg3Hx5vhDHFjZWroIpbW_MVYKQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.64.0.0/19
Signature Algorithm: sha256WithRSAEncryption
4d:3a:2b:af:ed:e6:c4:09:86:c5:a6:af:9f:43:42:87:1f:a2:
a4:7a:b7:51:8e:8a:48:5b:e9:c0:29:72:d5:5e:90:4c:64:7a:
a2:b3:ec:8e:28:40:e7:fe:8b:0a:00:73:30:dd:bf:21:cd:0f:
71:83:97:35:3d:20:c7:de:31:4e:5e:d8:83:b4:ff:29:92:83:
9b:5f:4c:8c:b6:d6:c0:e5:3e:85:6a:3f:64:d4:1b:eb:56:96:
b7:ae:9c:2a:9f:ee:3a:ca:f7:d7:18:6c:0d:34:d2:07:39:c4:
89:35:6a:d6:d9:c0:dd:73:9b:44:8c:e3:41:4a:46:fe:07:b0:
0c:a7:52:be:c6:b3:4d:d3:00:46:93:03:88:b6:f8:5a:c6:24:
ac:dc:8c:39:3f:76:50:45:81:fb:eb:79:2e:3a:e9:91:af:26:
20:b0:ed:9a:31:f0:9b:1f:62:9d:a7:1e:c7:ab:78:ea:2f:f2:
d1:9e:95:27:77:49:78:35:7f:9d:67:1e:fd:d6:38:7d:27:c2:
61:96:c6:53:8a:c6:71:44:42:c2:93:51:3f:d2:78:3a:d2:c7:
d5:fc:99:3c:31:dc:84:a6:dc:0a:37:7a:b6:22:39:b3:bb:44:
7a:2e:49:99:af:1a:28:c5:ce:65:77:e7:3a:18:df:c7:ac:17:
e8:8c:32:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:21 2024 by rpki-client on console-ams.rpki-client.org