Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/bh1gn6dASjRZR8LdaadBF32k-GA.roa
File: bh1gn6dASjRZR8LdaadBF32k-GA.roa (raw, json)
Hash identifier: xjeCpEjWTtFCGCVL+56f5raTzlFs6NVhcTo0jV2Wrts=
Subject key identifier: 6E:1D:60:9F:A7:40:4A:34:59:47:C2:DD:69:A7:41:17:7D:A4:F8:60
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1D67
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/bh1gn6dASjRZR8LdaadBF32k-GA.roa
Signing time: Fri 01 Sep 2023 10:14:46 +0000
ROA not before: Fri 01 Sep 2023 10:14:46 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24165
IP address blocks: 49.158.128.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7527 (0x1d67)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 1 10:14:46 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=6E1D609FA7404A345947C2DD69A741177DA4F860
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:cc:ae:49:98:f6:4d:86:f3:f2:63:79:9b:4a:
0d:14:38:7f:dd:e4:b1:b2:1a:65:00:72:51:8d:1d:
5f:b2:a1:dd:96:b6:49:1f:31:34:cd:0b:1b:84:49:
4a:89:91:94:4b:ab:58:21:ab:bc:8c:b2:02:87:fc:
c5:41:19:36:7c:cb:f9:fa:f2:cc:ae:2c:e0:1f:08:
fb:3b:48:82:a1:0c:98:d1:2d:12:04:57:59:82:9d:
02:b3:78:c7:48:5e:07:41:d1:a4:90:c8:d6:1f:1f:
2f:8b:e2:20:ef:4b:72:25:4d:98:9e:7f:5d:67:17:
0a:b7:1a:c5:71:8e:1b:42:95:91:d9:e8:4a:a2:64:
5d:a1:0c:09:d0:58:1c:59:11:ff:bb:c9:8a:8d:49:
10:59:a3:a0:c8:6a:54:1f:63:ed:3c:ec:e5:ce:b5:
a1:2e:06:d1:04:3c:d9:95:b4:51:95:6e:68:e4:f6:
97:57:6c:1b:3f:d1:2a:eb:a2:06:53:c4:ed:32:ee:
0b:7e:7d:54:30:7f:9d:f3:47:b2:38:03:2e:bd:ae:
49:4e:bf:de:10:e4:27:78:98:d6:ee:ca:7a:25:44:
56:ce:10:0d:f2:c7:b6:1e:39:1b:f5:0d:d4:29:03:
7b:2a:a7:bc:69:9b:62:d5:26:0c:c5:a5:c3:8b:d4:
99:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:1D:60:9F:A7:40:4A:34:59:47:C2:DD:69:A7:41:17:7D:A4:F8:60
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/bh1gn6dASjRZR8LdaadBF32k-GA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.128.0/22
Signature Algorithm: sha256WithRSAEncryption
4c:6d:25:94:c9:d6:8f:c3:47:6a:da:d6:50:9d:ba:ad:e7:f7:
65:3e:1f:4e:c5:5a:8c:3f:4a:7d:54:29:cd:3a:69:c1:20:3c:
ae:28:77:de:97:86:3a:c3:50:0f:08:c6:76:38:a0:89:31:0d:
a1:37:ab:54:da:ef:b8:5d:c0:4a:c7:ac:6f:76:65:48:91:7e:
e2:36:19:a2:02:4a:79:52:4c:00:f4:20:a9:f7:68:a7:fc:9c:
c7:4b:4e:f1:0d:60:ee:30:6d:d4:a3:0f:c4:3c:15:51:ad:d0:
de:de:00:48:12:88:47:29:35:40:64:16:f3:c3:b4:03:ef:8a:
84:01:c4:47:ad:74:ce:34:0f:59:64:64:9f:6c:d3:7d:7d:3d:
64:3c:38:7a:c0:4b:e3:c2:84:24:ab:de:9c:01:fe:54:c0:13:
10:87:eb:d6:f9:74:14:54:4d:7b:36:2b:55:b3:f2:6f:99:83:
eb:07:cc:35:69:f2:6c:95:ac:93:32:d1:49:f8:fc:c5:f2:a2:
0d:dd:36:9f:58:9f:86:69:7d:6b:c4:b7:5d:6f:40:24:3b:0a:
d5:05:78:7f:46:20:e5:f0:df:ce:46:81:89:2a:a7:10:be:7d:
b0:02:c6:36:65:82:5e:39:b4:70:fc:8d:ce:e0:28:44:3f:70:
0e:36:39:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:21 2024 by rpki-client on console-ams.rpki-client.org