Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/YFl6f6z4E908pIhm3qZEfGAieTk.roa
File: YFl6f6z4E908pIhm3qZEfGAieTk.roa (raw, json)
Hash identifier: b/lDEA/fdAl7salLylZ9riYQzYNNPd1MNYL3HaVQm3I=
Subject key identifier: 60:59:7A:7F:AC:F8:13:DD:3C:A4:88:66:DE:A6:44:7C:60:22:79:39
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1DAE
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/YFl6f6z4E908pIhm3qZEfGAieTk.roa
Signing time: Fri 01 Sep 2023 10:15:09 +0000
ROA not before: Fri 01 Sep 2023 10:15:09 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24164
IP address blocks: 2407:4b00:ff01::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7598 (0x1dae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 1 10:15:09 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=60597A7FACF813DD3CA48866DEA6447C60227939
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:f7:00:65:2d:da:cd:f5:f1:38:a4:6b:0f:52:
9c:c9:16:d2:74:c7:9e:ca:27:b3:57:a7:6b:3c:83:
7f:22:cd:95:9e:b7:cb:1a:2b:12:c2:29:3f:48:bb:
1a:69:14:92:12:df:8e:09:c2:de:bb:2b:b5:e8:1e:
da:81:9f:87:b9:6f:95:f8:ae:63:75:4c:4e:2e:2b:
06:1b:dd:1c:ca:18:85:cd:38:ed:f1:b1:ec:5f:ab:
f9:50:2b:9c:11:c2:c6:25:b3:b7:f6:da:90:af:b0:
b3:7b:c2:8c:33:f5:7f:da:df:d0:ee:8a:60:9f:8f:
61:3c:fc:5c:d7:28:0b:ed:be:9a:40:12:fa:58:52:
76:6d:6b:a4:f6:1c:9f:af:c1:ba:ce:ee:28:e0:ca:
fd:37:5c:ac:ee:cd:aa:11:ed:57:f7:01:92:16:d3:
55:9f:63:23:56:4a:9e:a4:19:5c:36:2c:c1:46:be:
a0:bf:75:44:dc:e4:ca:7e:f4:de:45:9a:8f:4f:47:
b0:b2:06:d8:26:4d:c1:4b:d3:8d:45:68:98:e5:d8:
86:31:37:82:3c:51:25:54:ce:04:26:da:69:29:21:
42:9b:a0:47:39:45:46:79:d6:14:53:a8:91:8c:08:
c3:c3:ae:98:cb:58:ae:47:ac:4d:1c:8d:78:ed:62:
20:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:59:7A:7F:AC:F8:13:DD:3C:A4:88:66:DE:A6:44:7C:60:22:79:39
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/YFl6f6z4E908pIhm3qZEfGAieTk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2407:4b00:ff01::/48
Signature Algorithm: sha256WithRSAEncryption
77:ab:05:ad:a8:44:5d:41:2b:9e:70:7c:f1:3d:c5:5c:63:97:
49:97:aa:a9:9a:d9:4b:e1:39:cc:a3:c9:9e:d4:d0:51:84:ac:
af:27:42:12:4e:26:2c:54:cc:e3:60:0f:3e:d7:05:48:2c:36:
b3:26:97:75:61:b7:52:6b:93:a8:20:7b:3c:be:5a:54:d1:d2:
7a:c3:79:b4:15:a7:62:52:58:d8:39:68:34:97:99:be:d1:23:
04:11:21:c9:1b:44:09:dd:55:e5:5a:8e:98:d0:ce:eb:32:27:
b6:9e:8a:c1:12:68:42:e4:4d:4e:4b:4c:f9:d8:e1:3f:bf:f3:
d9:98:bf:6a:86:ca:ee:26:a1:a8:7b:54:9d:68:ba:a8:be:c3:
6e:a7:15:b2:25:1e:fe:4f:5a:1d:ca:4e:59:83:19:2d:11:97:
24:2a:85:62:44:9c:ef:14:a7:7b:e9:b3:38:a3:28:ee:e5:6a:
f5:4e:4d:40:a4:d4:72:77:ed:fa:14:8b:77:fc:9b:71:b7:f1:
f4:aa:7c:53:e3:7a:7d:a5:95:8d:d4:ea:c1:1b:f1:de:6e:dc:
60:be:a2:ce:c0:1b:e4:a4:f6:14:87:79:84:2a:4d:f3:a6:ab:
fd:f3:a0:6c:0e:94:6e:e7:ab:3e:88:aa:a9:f0:18:8e:ba:f4:
52:fe:b9:c1
-----BEGIN CERTIFICATE-----
MIIE1TCCA72gAwIBAgICHa4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMzA5MDEx
MDE1MDlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDYwNTk3QTdGQUNGODEz
REQzQ0E0ODg2NkRFQTY0NDdDNjAyMjc5MzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDf9wBlLdrN9fE4pGsPUpzJFtJ0x57KJ7NXp2s8g38izZWet8sa
KxLCKT9IuxppFJIS344Jwt67K7XoHtqBn4e5b5X4rmN1TE4uKwYb3RzKGIXNOO3x
sexfq/lQK5wRwsYls7f22pCvsLN7wowz9X/a39DuimCfj2E8/FzXKAvtvppAEvpY
UnZta6T2HJ+vwbrO7ijgyv03XKzuzaoR7Vf3AZIW01WfYyNWSp6kGVw2LMFGvqC/
dUTc5Mp+9N5Fmo9PR7CyBtgmTcFL041FaJjl2IYxN4I8USVUzgQm2mkpIUKboEc5
RUZ51hRTqJGMCMPDrpjLWK5HrE0cjXjtYiCfAgMBAAGjggHxMIIB7TAdBgNVHQ4E
FgQUYFl6f6z4E908pIhm3qZEfGAieTkwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1lGbDZmNno0RTkwOHBJaG0z
cVpFZkdBaWVUay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk
B0sA/wEwDQYJKoZIhvcNAQELBQADggEBAHerBa2oRF1BK55wfPE9xVxjl0mXqqma
2UvhOcyjyZ7U0FGErK8nQhJOJixUzONgDz7XBUgsNrMml3Vht1Jrk6ggezy+WlTR
0nrDebQVp2JSWNg5aDSXmb7RIwQRIckbRAndVeVajpjQzusyJ7aeisESaELkTU5L
TPnY4T+/89mYv2qGyu4moah7VJ1ouqi+w26nFbIlHv5PWh3KTlmDGS0RlyQqhWJE
nO8Up3vpszijKO7lavVOTUCk1HJ37foUi3f8m3G38fSqfFPjen2llY3U6sEb8d5u
3GC+os7AG+Sk9hSHeYQqTfOmq/3zoGwOlG7nqz6IqqnwGI669FL+ucE=
-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:27 2024 by rpki-client on console-fra.rpki-client.org