Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/W2KsjNBoSUY0LU8TkWsQcfHzdgE.roa
File: W2KsjNBoSUY0LU8TkWsQcfHzdgE.roa (raw, json)
Hash identifier: vtgiqr/oqwP9SWfi6/KmbFJOd25iCgwXIJpjMdOkB+o=
Subject key identifier: 5B:62:AC:8C:D0:68:49:46:34:2D:4F:13:91:6B:10:71:F1:F3:76:01
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1E6D
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/W2KsjNBoSUY0LU8TkWsQcfHzdgE.roa
Signing time: Fri 01 Sep 2023 10:16:02 +0000
ROA not before: Fri 01 Sep 2023 10:16:02 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24164
IP address blocks: 61.61.224.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7789 (0x1e6d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 1 10:16:02 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=5B62AC8CD0684946342D4F13916B1071F1F37601
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:2d:ec:90:20:14:09:71:de:c5:6e:a2:ff:81:
aa:c1:eb:16:96:28:ce:07:d6:c3:3e:b1:3f:83:89:
43:d9:16:80:f7:6b:e0:da:1f:0b:45:dd:1b:19:2d:
91:f2:f2:81:5d:dc:cf:c2:0f:78:f6:de:9d:63:11:
6a:8e:3d:ce:cd:da:de:32:56:89:54:c2:17:29:7d:
0a:99:e4:95:4f:36:7f:39:78:90:25:68:e8:42:dd:
9d:0c:f6:fb:62:11:51:22:60:36:fc:60:71:57:ca:
fe:63:52:17:eb:3e:5a:45:0a:79:64:40:1b:15:2a:
7c:29:26:bb:08:0f:67:76:0f:41:7b:e2:65:98:83:
6c:46:cf:a1:1e:12:83:f2:28:bd:6c:27:df:b6:4a:
30:a7:c8:bb:d2:1d:af:28:2b:cc:db:be:48:a0:f3:
42:a5:1b:ee:94:de:ea:5d:0b:d6:4b:a3:81:2e:1e:
23:19:cc:8b:c1:41:9f:bb:3e:26:44:c8:7f:2e:7d:
08:93:84:d5:aa:b2:a6:f8:f3:b9:54:36:ba:2c:bc:
48:19:3f:c0:b4:9c:0b:71:92:a9:0d:5e:41:54:40:
3e:fd:87:c9:75:00:a1:53:5b:7d:bf:9d:a6:5d:ed:
83:30:0e:48:65:9e:cd:bf:16:82:62:5f:7c:f0:85:
24:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:62:AC:8C:D0:68:49:46:34:2D:4F:13:91:6B:10:71:F1:F3:76:01
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/W2KsjNBoSUY0LU8TkWsQcfHzdgE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.224.0/20
Signature Algorithm: sha256WithRSAEncryption
73:7b:b9:0e:e7:83:00:63:af:03:09:b8:90:e7:91:7c:7d:36:
65:0e:5b:e4:09:fc:9d:f9:a8:39:2e:9d:dc:36:a3:a2:7c:dc:
9f:cf:69:78:d4:d1:86:4b:bd:d8:96:15:99:6b:76:08:a8:76:
71:ab:9d:12:ff:73:fd:de:26:58:5e:25:bb:28:2a:e5:27:b6:
ea:44:67:26:06:45:c5:7b:16:3a:5f:2c:db:d7:ee:22:f0:fc:
c7:10:85:9e:ba:11:5c:b4:ae:2e:a2:22:c5:52:98:f0:90:8a:
3e:ee:7d:7c:a9:a9:82:3d:9b:5e:fe:ca:95:27:6e:2b:e5:ea:
3e:0a:d9:0d:26:3e:be:27:ad:a8:b1:f0:a8:3c:32:ea:08:25:
c1:19:7a:a6:78:e6:3b:40:e7:a8:15:eb:a7:69:d9:d0:18:39:
76:22:a4:42:46:42:95:46:b3:e0:00:f5:ac:d7:33:78:3e:80:
ed:f5:11:57:74:5e:14:d8:cc:aa:8f:ae:2b:a2:cb:4f:d0:6f:
00:ed:7f:c7:8f:59:b0:46:a6:00:00:92:08:a4:9d:51:cf:76:
23:3a:21:b2:db:a2:a0:54:dc:01:ce:f1:42:73:21:68:d7:b7:
25:99:df:53:44:02:84:9f:05:11:b9:33:50:3b:3a:3f:77:64:
de:51:b5:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:27 2024 by rpki-client on console-fra.rpki-client.org