Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/WvHjFaHawv1kIqvS6v109egZrTI.roa
File: WvHjFaHawv1kIqvS6v109egZrTI.roa (raw, json)
Hash identifier: fJpLMCh6gMI+Xq0QJcwyENqui1Kn3m/DOKfikiLjjmo=
Subject key identifier: 5A:F1:E3:15:A1:DA:C2:FD:64:22:AB:D2:EA:FD:74:F5:E8:19:AD:32
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1D6A
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/WvHjFaHawv1kIqvS6v109egZrTI.roa
Signing time: Fri 01 Sep 2023 10:14:47 +0000
ROA not before: Fri 01 Sep 2023 10:14:47 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24163
IP address blocks: 49.158.192.0/20 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7530 (0x1d6a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 1 10:14:47 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=5AF1E315A1DAC2FD6422ABD2EAFD74F5E819AD32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:39:4b:bf:99:63:1c:ba:94:48:0e:68:bd:0d:
8a:45:b4:c4:af:a0:82:bc:17:3c:5b:5a:5e:02:9c:
ba:a2:58:01:df:9f:8b:5a:35:ca:91:27:d0:32:25:
61:7b:d0:17:87:7e:53:39:d4:7b:22:17:e6:5f:79:
84:b9:55:4b:8b:0b:97:d4:11:ff:f7:b4:01:8a:57:
e2:e9:a6:bf:eb:35:35:bf:ee:62:ea:d7:5c:ce:b0:
4d:38:20:2f:07:93:bc:e7:1f:1d:e2:74:54:70:a0:
77:c8:c6:2e:5e:bc:7b:3e:a0:f1:f2:ed:e4:2f:86:
a9:3f:ec:ba:8c:e2:50:81:eb:63:f3:1c:37:ec:5a:
1b:58:c1:e1:f3:93:70:8d:3d:5d:ec:99:ac:6c:bb:
31:4a:ad:2c:80:d8:86:ed:0d:7d:f8:9a:45:af:14:
7f:b3:16:f2:f4:ff:62:38:c0:f7:0c:81:79:a2:aa:
cc:60:76:79:ad:93:54:f5:f1:cd:f4:f5:99:ec:d1:
b9:06:54:aa:fd:79:0a:1d:cc:d3:2a:20:42:ae:e1:
8a:1d:f5:30:91:2d:b3:c8:01:c9:6d:c5:4c:b7:3a:
3f:b7:c0:05:8a:06:70:ed:27:f8:6a:44:fd:c9:3c:
a5:69:9c:7e:97:a5:ae:27:c6:05:68:92:13:30:50:
1e:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:F1:E3:15:A1:DA:C2:FD:64:22:AB:D2:EA:FD:74:F5:E8:19:AD:32
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/WvHjFaHawv1kIqvS6v109egZrTI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.192.0/20
Signature Algorithm: sha256WithRSAEncryption
35:ab:e3:1a:54:45:51:3a:eb:f0:7b:8e:38:a0:bf:ae:dd:27:
ff:52:81:60:fc:56:c7:e0:d9:9b:dc:7d:5b:b1:ff:66:81:21:
7c:5c:2d:c3:fe:9a:1b:4a:a4:8f:24:29:35:54:65:97:7b:ce:
07:73:65:8c:32:19:5a:d2:20:8e:18:71:9d:9f:51:e2:25:a2:
b1:7a:84:fd:fb:8c:f7:61:2e:f2:34:06:15:76:09:db:af:fe:
72:63:ff:5c:b4:f2:13:5b:5b:af:d3:96:12:98:41:b5:74:ca:
da:93:56:1d:16:94:8a:e9:8a:2a:ed:b8:78:f2:80:3d:80:2a:
88:a7:25:12:71:9b:4c:e2:e1:1b:d7:14:c4:b1:39:51:b0:b5:
1f:30:88:1c:25:33:0e:4e:9d:aa:34:70:3d:77:bf:07:e9:82:
38:82:fb:db:fc:6e:aa:f5:0d:ee:95:4e:2c:3e:98:d0:2e:86:
1b:aa:f9:4c:85:97:98:5c:8b:f5:da:c3:21:90:49:aa:05:e4:
0f:94:d7:65:81:97:f6:eb:16:6e:46:26:52:cd:c7:76:3c:06:
a2:4c:7e:76:f0:46:f7:3d:60:5e:cd:b0:ae:46:9d:ed:1a:c1:
6e:25:59:f5:ea:77:23:1e:57:7b:b5:ab:9d:a1:c0:ec:78:71:
bd:8d:3a:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:21 2024 by rpki-client on console-ams.rpki-client.org