Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Y8gjTC1ljfWXkqtIunI5TUhlsB0.roa
File: Y8gjTC1ljfWXkqtIunI5TUhlsB0.roa (raw, json)
Hash identifier: hKMvK5hvI4Be3OMYkHVyQHykuk6ksG5GaVwRh7qtP5E=
Subject key identifier: 63:C8:23:4C:2D:65:8D:F5:97:92:AB:48:BA:72:39:4D:48:65:B0:1D
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1E65
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Y8gjTC1ljfWXkqtIunI5TUhlsB0.roa
Signing time: Fri 01 Sep 2023 10:16:00 +0000
ROA not before: Fri 01 Sep 2023 10:16:00 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 4662
IP address blocks: 61.58.96.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7781 (0x1e65)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 1 10:16:00 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=63C8234C2D658DF59792AB48BA72394D4865B01D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:9b:02:d5:80:6c:6c:eb:77:10:4a:1c:2f:53:
50:91:42:c9:8e:14:99:32:ac:5f:02:91:59:4d:22:
48:4c:81:77:12:cc:e0:b2:3f:fa:b0:bd:0c:d1:39:
71:d3:9e:c0:99:20:09:ba:74:5c:9f:ca:55:34:4b:
e9:c6:fc:07:5e:6d:b0:17:e6:99:28:e4:d8:f9:b6:
c5:52:16:cf:89:cc:92:d0:97:23:4a:c2:96:4e:b8:
65:04:3f:18:a1:24:89:f7:5c:86:8c:f1:ab:23:75:
31:00:f6:78:e9:f8:23:4a:8e:e1:9f:14:b7:ae:01:
46:98:1c:e3:d7:b1:a7:3c:5c:c2:b8:9d:1a:07:5a:
ef:e9:33:72:0b:32:07:c5:55:d6:dc:ed:0b:a0:ac:
1d:dd:fd:f6:92:b8:a3:30:f0:6a:78:82:70:f7:3e:
1a:fa:c3:18:10:08:2d:c3:85:89:c5:e8:83:33:6b:
fa:9b:5f:cc:e3:41:33:68:7e:c8:7f:73:36:92:6e:
c9:5f:28:51:a9:31:4d:77:ba:33:b1:18:2f:53:f5:
e9:df:28:96:ef:be:02:0d:80:85:36:4d:aa:06:84:
b2:1e:37:d4:9a:8e:db:03:2d:fd:73:bf:d0:9d:e9:
a2:78:4e:80:ce:c4:e3:f5:47:e2:69:ff:70:43:33:
79:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:C8:23:4C:2D:65:8D:F5:97:92:AB:48:BA:72:39:4D:48:65:B0:1D
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Y8gjTC1ljfWXkqtIunI5TUhlsB0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.58.96.0/20
Signature Algorithm: sha256WithRSAEncryption
01:b5:46:99:c0:17:e4:dd:54:e1:a2:37:d1:ba:46:b3:40:f8:
32:4c:6f:0a:24:ee:a2:eb:81:79:43:7d:5b:9d:37:38:92:7e:
94:b0:42:41:57:ff:e2:a4:af:d9:4d:a9:0e:a5:d7:32:fb:2e:
cd:ea:cf:dd:aa:86:48:c7:4f:80:e1:4b:d0:52:c8:89:8e:d5:
a5:5c:74:90:94:48:83:25:54:6d:ab:79:75:90:26:77:54:33:
68:d4:27:bb:e0:80:da:f9:65:9d:40:aa:98:f3:91:c0:95:30:
17:39:dc:d5:64:ad:da:77:10:2f:b0:a4:ab:27:30:4f:18:9f:
e4:62:70:5c:83:81:aa:22:62:5f:44:a4:4e:a0:57:44:e3:bf:
d9:20:98:9e:68:6e:29:84:31:01:c2:4f:17:35:c8:e5:b6:d9:
eb:c9:f5:29:44:8f:a1:e1:a0:02:f5:82:32:3d:d2:1a:48:54:
38:40:56:ed:e3:d1:87:39:3c:42:23:59:21:de:b5:7e:81:56:
fa:3f:f1:28:1f:a7:56:cf:7e:4e:4f:84:c8:fd:a9:f8:f2:4e:
3d:6b:cb:ed:86:2b:8b:4b:25:e2:8b:30:88:df:1c:8f:8d:3e:
46:7c:ee:ae:35:90:10:c1:16:41:7a:ac:df:3a:be:73:23:2f:
89:31:fe:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:21 2024 by rpki-client on console-ams.rpki-client.org