Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/byw9k_3m9FJhdm1_5gx53PyVegI.roa
File: byw9k_3m9FJhdm1_5gx53PyVegI.roa (raw, json)
Hash identifier: dzk9Ynpbsa5cLKGvKmI27sS4XU0HwTpam8u9NjYVcB4=
Subject key identifier: 6F:2C:3D:93:FD:E6:F4:52:61:76:6D:7F:E6:0C:79:DC:FC:95:7A:02
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1EE1
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/byw9k_3m9FJhdm1_5gx53PyVegI.roa
Signing time: Fri 13 Oct 2023 03:10:49 +0000
ROA not before: Fri 13 Oct 2023 03:10:49 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24164
IP address blocks: 180.218.0.0/17 maxlen: 17
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7905 (0x1ee1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 13 03:10:49 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=6F2C3D93FDE6F45261766D7FE60C79DCFC957A02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:ea:cb:ae:64:bd:da:fa:31:cf:f6:45:55:b7:
47:3a:a4:4c:c6:87:27:86:40:f6:f6:24:e6:08:9b:
93:32:26:1a:23:2c:8f:7d:76:a2:d4:2f:ae:7c:33:
3d:bd:1b:13:71:45:fa:ae:6c:92:d9:09:a4:df:28:
0f:92:e9:6b:2e:3c:af:39:cf:00:aa:58:20:85:08:
37:86:73:e4:9b:18:e0:00:88:18:74:a6:87:9c:9c:
c3:df:8b:7e:b7:97:1d:21:fa:67:b7:43:d8:52:a7:
84:eb:67:5d:5c:aa:3f:28:77:84:c4:15:f0:69:b6:
94:a0:c4:1b:bd:83:33:53:30:cf:1a:ec:b0:76:83:
70:b2:b6:50:b4:86:9f:7d:c8:8c:87:67:d9:f5:d7:
40:ef:91:98:02:a1:d4:72:2f:06:37:37:4a:62:ce:
ec:c6:55:38:6f:01:10:cb:1d:2c:09:c7:12:18:0c:
a9:65:88:de:c8:4f:c8:e9:0c:a2:93:07:f0:98:47:
d4:67:5a:b5:e4:e5:03:80:53:c5:b2:43:d7:9b:ba:
f7:31:3e:81:e5:90:20:85:47:b6:ca:a5:9c:fb:e8:
83:d1:a3:68:e0:56:d9:d5:e5:08:5b:5c:aa:56:98:
1d:2c:6b:c3:2f:3d:02:b4:f3:9a:e6:c6:cd:3b:c4:
d0:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:2C:3D:93:FD:E6:F4:52:61:76:6D:7F:E6:0C:79:DC:FC:95:7A:02
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/byw9k_3m9FJhdm1_5gx53PyVegI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.0.0/17
Signature Algorithm: sha256WithRSAEncryption
0f:f1:83:7c:44:df:69:54:ad:d9:2d:c0:75:66:3d:78:c3:6c:
01:da:62:17:ba:6f:03:01:93:74:a1:1d:d3:5e:19:21:f9:53:
6a:f1:8c:45:e9:ab:10:5d:6a:27:3c:dd:27:d4:a5:0d:25:6f:
14:c8:b7:c9:cf:7d:1c:98:5f:fe:b5:17:ea:c8:71:1f:ca:44:
8d:7e:13:61:6e:6c:70:b6:67:b3:94:33:4e:ae:12:98:aa:bb:
5c:08:8d:12:f0:aa:eb:54:12:0f:04:06:d7:a9:b5:e4:1f:3a:
39:b8:6a:26:de:aa:91:98:98:94:6d:f2:0a:58:f5:46:2a:da:
9c:a9:25:e2:7a:57:34:da:81:9a:6c:12:f1:8a:45:02:54:9f:
dc:d0:8c:6a:62:6d:21:f6:23:2f:28:33:b1:ff:6b:30:f2:fd:
0a:0a:d8:ff:d6:c1:4c:ed:65:71:df:d6:15:55:db:f9:f1:e3:
08:df:6c:e6:44:7e:51:c9:34:82:33:93:5d:17:4c:d1:7c:75:
c2:ab:5c:97:61:9e:1c:12:10:f3:b9:23:6e:48:5e:30:8a:4d:
30:a7:bc:2c:68:ce:81:b9:76:4b:bc:ff:08:e7:48:39:88:c9:
fa:73:09:4c:44:85:84:bd:0c:e7:03:01:db:6b:d5:e5:14:d0:
5e:28:55:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:21 2024 by rpki-client on console-ams.rpki-client.org