Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/TOnZ4Ws-TOs6SHZNYjtAEmPqKC8.roa
File: TOnZ4Ws-TOs6SHZNYjtAEmPqKC8.roa (raw, json)
Hash identifier: iJcdO7YGU/YwK+lVzR1d5LRZfMjJ9CQXpEwxW5J4l/w=
Subject key identifier: 4C:E9:D9:E1:6B:3E:4C:EB:3A:48:76:4D:62:3B:40:12:63:EA:28:2F
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1DEC
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/TOnZ4Ws-TOs6SHZNYjtAEmPqKC8.roa
Signing time: Fri 01 Sep 2023 10:15:27 +0000
ROA not before: Fri 01 Sep 2023 10:15:27 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24163
IP address blocks: 180.218.232.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7660 (0x1dec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 1 10:15:27 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=4CE9D9E16B3E4CEB3A48764D623B401263EA282F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:cd:fa:a5:72:e0:e2:43:6e:61:f7:5b:cd:b0:
93:32:3e:5d:7a:64:30:83:bc:f6:fe:d9:ea:60:72:
c8:44:99:fa:32:03:c2:06:2f:9d:16:99:3e:e7:94:
4a:91:c5:23:f2:b8:d5:2d:eb:84:77:63:e0:7e:87:
3d:bd:87:cc:03:0b:5b:f2:e2:19:e4:a8:0b:ea:1b:
0c:1c:99:c2:4c:c6:09:2b:a9:41:bc:7f:cf:f6:8c:
7c:40:28:ed:bc:e9:02:94:0b:28:2e:e5:44:cd:df:
21:03:21:94:04:cf:59:f2:6c:bd:48:1e:84:80:dd:
06:60:80:d6:f7:54:cb:44:73:65:81:6e:c5:73:bd:
7e:e2:c0:c8:6a:be:f1:db:f9:8f:1d:96:a0:9a:81:
bc:35:49:8f:8a:e7:2f:a8:ef:97:07:f1:a1:36:8b:
d3:97:1e:4b:2b:2f:1b:8c:92:29:8b:b8:e9:60:21:
22:e7:cd:37:86:d9:21:96:6b:60:8c:21:ba:3a:15:
81:2a:72:7f:d3:30:62:44:0f:ad:92:c6:60:b0:b2:
6c:03:61:3a:b2:98:80:f6:5e:7c:e8:7d:73:04:b2:
36:6c:ae:95:f1:a0:68:2d:47:00:ba:07:f6:2f:25:
35:d9:81:6c:a3:8b:39:9a:5d:d6:33:67:5e:1d:43:
64:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:E9:D9:E1:6B:3E:4C:EB:3A:48:76:4D:62:3B:40:12:63:EA:28:2F
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/TOnZ4Ws-TOs6SHZNYjtAEmPqKC8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.232.0/21
Signature Algorithm: sha256WithRSAEncryption
89:af:6e:2e:15:12:f2:8b:70:de:8d:76:d2:64:c9:bb:b6:91:
46:68:9c:32:6a:ec:e5:62:15:43:81:8d:1a:f9:a6:43:c9:f4:
02:07:00:35:80:bd:24:52:7a:06:42:b5:11:f1:7a:8d:c7:45:
58:ee:bf:cb:00:ec:b1:90:bc:36:58:d5:e4:93:ae:80:32:ee:
14:1f:2c:74:f5:f0:b5:89:21:af:b7:fe:bf:a9:8e:9e:2b:df:
12:71:7c:c5:ba:28:3b:5e:8c:9f:f9:93:46:ce:8a:16:b6:ae:
60:5b:ae:83:b6:26:da:a5:9c:4b:ca:8d:bf:a7:1b:fd:30:94:
1f:e1:c7:d3:d5:b0:4a:bb:74:f7:47:27:0d:eb:9f:80:81:c9:
1d:25:ae:ce:82:6c:67:a1:e0:6f:eb:ef:8b:28:a2:37:3a:9a:
05:db:2d:ab:17:3d:00:4c:7c:95:69:99:c6:6c:0b:25:d0:53:
ff:d2:4d:c2:6d:43:1b:b3:02:ee:b2:1e:dc:d2:43:68:53:b5:
4a:b2:22:a7:23:b8:98:26:ff:8c:90:43:e5:f7:90:00:6f:8e:
17:e7:07:2e:42:23:03:51:c5:9a:b2:df:b1:9e:5a:33:81:77:
d2:97:5a:c6:65:41:a3:b5:1e:d6:b8:0a:cd:c9:4f:ce:82:c4:
b7:e7:61:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:21 2024 by rpki-client on console-ams.rpki-client.org