Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/_BKaApOfThqpDGAf7ykld5-DfH4.roa
File: _BKaApOfThqpDGAf7ykld5-DfH4.roa (raw, json)
Hash identifier: Q/zs2Hv9pJh7oPnFVeZfHdap9QU4Ipn1g2Wu+9JHYoA=
Subject key identifier: FC:12:9A:02:93:9F:4E:1A:A9:0C:60:1F:EF:29:25:77:9F:83:7C:7E
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1E7B
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/_BKaApOfThqpDGAf7ykld5-DfH4.roa
Signing time: Fri 01 Sep 2023 10:16:06 +0000
ROA not before: Fri 01 Sep 2023 10:16:06 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24164
IP address blocks: 49.159.120.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7803 (0x1e7b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 1 10:16:06 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=FC129A02939F4E1AA90C601FEF2925779F837C7E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:15:52:03:6d:28:32:8d:fe:54:59:ff:ca:9b:
46:3f:6d:74:bb:4d:7a:f1:66:de:c8:b8:1e:02:64:
1a:7e:d1:0c:4d:f4:44:5c:39:63:e1:84:05:b6:c8:
96:13:62:1f:82:0f:b2:91:4b:d1:8c:5d:e7:3a:5d:
95:e3:a0:a9:21:55:2a:63:fa:aa:4a:38:6f:09:9e:
56:f1:a0:2c:29:63:5a:ec:a2:1b:8a:4b:3e:37:39:
b6:9f:2c:de:e0:16:61:82:12:e4:e5:e7:0b:eb:0f:
53:67:b2:42:c2:de:2e:75:a8:33:5e:51:7b:f0:9b:
db:44:e9:a5:cd:42:4b:52:7b:bb:7c:a5:4c:a1:93:
b5:d0:6b:1c:8e:3b:a0:5a:8b:f1:1a:82:97:20:02:
74:69:04:39:97:eb:fc:89:22:58:dc:0d:3d:01:ca:
db:a1:d7:5c:91:c2:a1:54:2a:48:c5:1f:63:2f:5f:
dc:43:13:69:d0:01:d6:a6:e1:ee:b6:2a:50:44:31:
81:70:a3:89:ff:87:ab:df:04:56:0d:82:1c:5b:43:
b3:ef:c2:4c:08:dd:14:df:aa:36:25:74:70:b4:86:
c4:f8:c9:32:4b:36:ec:28:4d:8a:2e:86:a6:b1:4b:
c7:c3:30:98:66:29:bf:2f:a4:e0:36:61:9c:b4:04:
c6:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:12:9A:02:93:9F:4E:1A:A9:0C:60:1F:EF:29:25:77:9F:83:7C:7E
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/_BKaApOfThqpDGAf7ykld5-DfH4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.159.120.0/21
Signature Algorithm: sha256WithRSAEncryption
7a:a3:3a:f2:7f:9b:46:70:49:84:77:71:aa:7b:29:84:9f:fa:
51:4f:6e:64:bc:96:02:06:89:93:be:c0:25:c4:88:d6:9e:3d:
26:db:9c:4f:4c:5b:5e:b6:47:61:22:ad:2a:26:c8:6e:5e:08:
bb:fd:85:be:1b:de:9e:d0:d3:7c:cd:28:32:01:b5:5e:d9:47:
20:19:e5:d3:d3:6e:e9:6e:9a:3a:ce:9b:ea:cf:54:7f:77:8e:
38:ac:08:03:29:06:75:be:2c:e3:2d:3f:17:33:3b:88:15:3d:
d1:8e:28:1f:c0:93:8b:cb:84:92:d0:31:df:c2:7b:84:6f:89:
91:f4:47:0b:c5:89:60:00:f2:df:05:33:53:c5:8c:10:d7:24:
53:fa:82:ac:34:cd:9d:c3:33:d5:b7:f6:77:56:22:05:96:80:
5c:6f:dd:62:93:d2:83:73:6e:21:f9:5f:ea:2a:30:28:65:1f:
85:73:27:b6:60:b9:26:c7:46:cc:45:80:b6:af:f6:4d:01:d1:
0d:d7:cf:f9:35:2e:96:13:09:b1:11:7e:95:99:4a:cb:0d:e0:
48:ff:66:2c:7d:9c:c5:2f:33:68:c9:0f:a4:fb:a6:89:c6:70:
61:1b:51:00:3d:fa:d9:6b:4d:ff:f0:f9:84:b2:a5:3a:99:42:
5a:a2:be:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:21 2024 by rpki-client on console-ams.rpki-client.org