Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Y-t3Hr_NYQBEvCVe8ImpHzCBePE.roa
File: Y-t3Hr_NYQBEvCVe8ImpHzCBePE.roa (raw, json)
Hash identifier: mlUxbFNBG7ztGVNlSR4tWoe45h2nsQrdhF4kNzSLlc8=
Subject key identifier: 63:EB:77:1E:BF:CD:61:00:44:BC:25:5E:F0:89:A9:1F:30:81:78:F1
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1E99
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Y-t3Hr_NYQBEvCVe8ImpHzCBePE.roa
Signing time: Fri 01 Sep 2023 10:16:14 +0000
ROA not before: Fri 01 Sep 2023 10:16:14 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24164
IP address blocks: 49.159.32.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7833 (0x1e99)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 1 10:16:14 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=63EB771EBFCD610044BC255EF089A91F308178F1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:d5:89:f7:2f:70:41:7b:89:1a:07:9c:51:ef:
b2:fe:46:2f:86:53:20:51:08:42:9f:14:69:e0:c8:
5e:3c:24:0f:c2:8b:93:f7:9c:fb:7b:da:f0:fe:db:
d3:53:68:71:9e:50:b7:57:d0:22:a8:d6:4d:13:8f:
d8:a6:d3:bf:e3:90:50:62:56:81:d5:0a:91:82:7b:
44:46:e1:54:c5:e4:31:53:0f:5d:6c:7c:8e:b0:89:
ac:61:ea:4a:c6:4a:ea:7f:83:75:38:37:6e:6c:53:
dc:ac:cd:c4:d6:b7:2f:d6:08:d6:9d:f3:bc:58:ee:
b1:0b:07:d3:48:7a:9a:e7:3d:98:64:16:3d:52:c1:
d0:87:60:29:9c:a8:98:7d:92:ae:49:cc:3d:d2:62:
51:42:c3:2c:2e:d9:cb:e0:c8:13:a4:5a:9e:97:96:
75:32:6f:a6:65:3a:6f:d4:77:f1:ab:f1:5f:5d:2c:
df:ad:95:fd:af:84:3d:32:94:ae:a1:3d:16:b9:ea:
d4:2b:b9:17:05:9a:7b:ff:96:42:b3:3a:40:80:76:
1c:b5:29:c2:d7:21:9e:23:d6:42:a7:1f:f7:d1:9a:
8b:80:1a:f8:fd:34:0f:a5:8c:82:9d:84:86:50:18:
4c:12:42:8f:02:42:7c:56:33:cb:33:0b:cb:19:00:
2c:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:EB:77:1E:BF:CD:61:00:44:BC:25:5E:F0:89:A9:1F:30:81:78:F1
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Y-t3Hr_NYQBEvCVe8ImpHzCBePE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.159.32.0/19
Signature Algorithm: sha256WithRSAEncryption
1c:ac:fe:18:34:4c:5a:b4:9a:45:b1:e6:23:1e:0e:71:2e:84:
75:cc:b8:93:ce:63:03:d0:fe:61:85:a5:97:1a:65:3e:17:c4:
00:c2:86:ec:74:7c:bd:5a:86:22:b9:65:3d:1e:b6:68:a3:db:
34:e2:5e:ce:68:00:a4:2e:e3:7c:c8:0c:5e:96:9b:dc:ea:ee:
a2:df:9a:38:68:5f:97:3d:2c:95:5f:06:81:2a:ba:b3:99:7d:
d3:93:5f:57:f8:e4:21:bc:98:5a:18:c6:79:4c:13:4c:89:13:
73:86:15:21:7b:67:96:7c:6a:92:5d:22:ab:03:78:cc:dc:94:
b6:de:24:20:b3:5f:e8:84:91:65:ba:e9:94:d6:d9:1f:ab:7b:
09:55:7f:45:12:bd:76:20:3d:7a:28:11:02:15:6f:5a:cb:5a:
ac:00:db:3e:bf:04:dc:24:66:a6:40:9d:95:04:5f:47:2c:38:
f0:c4:34:2d:80:6a:b0:32:4c:a5:ce:06:ce:a7:a4:66:27:1a:
60:1d:eb:50:53:11:75:e2:08:20:64:14:5a:2d:1c:81:99:4e:
a7:05:a3:35:a3:0c:98:6c:9b:21:e9:de:65:19:45:a9:a3:6e:
dc:d4:d3:29:ee:a3:6f:13:a5:f3:9a:f9:ad:48:62:ca:60:f4:
97:15:ba:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:21 2024 by rpki-client on console-ams.rpki-client.org