Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/fl8FsF3ye1iOPMlEhsi0E-ETqvo.roa
File: fl8FsF3ye1iOPMlEhsi0E-ETqvo.roa (raw, json)
Hash identifier: fwrx3y6C1C68Fn9LagEpRSGapHH88FnII5NwImWKlXg=
Subject key identifier: 7E:5F:05:B0:5D:F2:7B:58:8E:3C:C9:44:86:C8:B4:13:E1:13:AA:FA
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1E05
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/fl8FsF3ye1iOPMlEhsi0E-ETqvo.roa
Signing time: Fri 01 Sep 2023 10:15:35 +0000
ROA not before: Fri 01 Sep 2023 10:15:35 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24163
IP address blocks: 61.58.96.0/20 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7685 (0x1e05)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 1 10:15:35 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=7E5F05B05DF27B588E3CC94486C8B413E113AAFA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:ab:c0:86:24:81:7b:52:1d:55:84:b3:d3:91:
12:e6:a2:07:f4:e3:4c:19:1d:90:c7:fa:de:18:be:
14:db:19:fe:2a:b4:7c:e5:bb:f0:55:08:fc:0e:e4:
52:10:e5:65:8d:68:ba:24:70:47:65:08:41:0c:d0:
84:e4:c2:b5:a5:b9:16:e4:5b:9d:e1:5b:f9:da:f6:
9e:db:8c:fd:cf:e8:de:64:70:fa:2a:6e:43:e3:e1:
64:e3:20:f9:bd:5e:62:79:05:c1:37:ae:77:5b:92:
e9:98:b7:55:be:3d:f3:dd:b5:fb:7f:3c:cc:af:c8:
88:33:74:f3:97:18:e5:55:7b:4f:7a:55:4c:85:80:
ac:c7:74:f1:6c:45:f0:17:ee:58:40:d5:c9:16:5b:
88:6e:db:ad:3f:2c:3e:e2:4a:81:cb:35:66:15:5f:
93:fd:6c:a3:70:f8:14:fc:88:bc:7a:cb:bf:92:c0:
9b:42:c1:ea:55:ef:db:4e:b8:d6:4a:a1:f5:52:98:
de:0e:f2:67:5f:ae:38:fb:83:16:b4:76:44:d8:cb:
ea:2d:4d:c4:b7:33:2f:31:a2:ab:3d:02:a8:9b:ee:
25:b4:a0:ce:8e:d9:f4:b3:30:88:43:96:a8:06:d5:
43:42:27:29:3e:41:21:c4:ca:85:3c:4e:9f:1f:f7:
98:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:5F:05:B0:5D:F2:7B:58:8E:3C:C9:44:86:C8:B4:13:E1:13:AA:FA
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/fl8FsF3ye1iOPMlEhsi0E-ETqvo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.58.96.0/20
Signature Algorithm: sha256WithRSAEncryption
17:45:bd:c2:28:45:3c:71:09:f2:8e:7a:b9:cb:dc:5c:a3:be:
2a:a0:5c:d9:80:b7:78:a2:14:1c:36:d3:da:bd:1b:f8:b0:d9:
e0:b3:ff:8a:4b:c5:f9:40:6a:df:07:e9:fd:ba:33:8f:aa:35:
88:6e:43:a3:1b:a8:fe:bd:db:35:da:1d:ac:87:f2:d0:4e:c2:
f8:1b:fd:c0:5a:40:02:7b:2b:f6:d9:1e:fe:6e:3c:2b:3b:7b:
23:44:23:6f:00:cd:cd:14:e4:86:7b:69:f0:d5:fe:a3:26:52:
9e:a3:d3:6f:a1:69:4c:3e:1c:39:ea:4c:9c:01:9a:54:13:69:
01:00:63:69:62:4c:5e:19:2f:2d:01:1c:50:06:72:8b:ae:ef:
8b:0d:35:98:5f:28:7f:44:b1:36:27:82:99:65:30:ce:c5:ed:
55:22:88:77:05:e1:3f:e5:8b:30:47:0d:26:ec:fd:5d:8c:4e:
68:1e:9d:a0:97:aa:25:20:42:1b:9e:cf:52:c2:6a:39:f2:74:
9b:ae:bc:e0:8e:dc:33:e8:e9:4d:0d:1b:b0:e6:6b:c1:e3:73:
96:6c:9e:e0:0b:07:2b:46:6a:bd:b9:bb:7c:5f:03:49:fd:86:
8e:66:1f:b2:91:53:11:7c:9e:e9:6e:df:bc:da:1a:a1:35:64:
bb:42:1a:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:28 2024 by rpki-client on console-fra.rpki-client.org