Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/jECRM3gNg41zSDAuiytUSMqZlcg.roa
File: jECRM3gNg41zSDAuiytUSMqZlcg.roa (raw, json)
Hash identifier: 3a2nLULayTj6pdQ57xdCTBZgJdoukXgjzxI4uHmoPxo=
Subject key identifier: 8C:40:91:33:78:0D:83:8D:73:48:30:2E:8B:2B:54:48:CA:99:95:C8
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1E74
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/jECRM3gNg41zSDAuiytUSMqZlcg.roa
Signing time: Fri 01 Sep 2023 10:16:04 +0000
ROA not before: Fri 01 Sep 2023 10:16:04 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24164
IP address blocks: 180.218.216.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7796 (0x1e74)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 1 10:16:04 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=8C409133780D838D7348302E8B2B5448CA9995C8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:61:f4:8e:f2:97:88:d4:52:e5:a0:8c:7a:17:
86:ff:27:d0:2e:af:cd:dc:0d:e5:79:b2:00:c9:41:
78:c8:ef:9f:7a:38:a9:7a:07:bd:c3:d8:c7:5c:cc:
14:4a:c2:ca:ef:4a:c2:c1:97:7a:e3:b2:87:41:60:
46:31:51:5b:fa:88:05:a9:cc:72:4b:aa:df:a1:5d:
c6:51:4e:14:f4:cd:25:ae:cd:4f:c1:d6:5b:91:bb:
0d:a1:c2:43:5c:3c:a5:d2:45:c9:5e:f9:08:e0:49:
bd:83:71:a7:bd:c7:c2:b0:97:23:ca:fd:8b:94:00:
78:b7:f3:60:75:e7:03:5c:52:11:e4:bb:62:90:72:
85:1f:85:9d:e8:98:cf:e7:f5:2e:23:84:45:13:ab:
bc:05:3e:cc:0a:35:1c:18:89:c0:2e:23:de:61:7d:
61:70:b2:48:e1:4d:1c:5b:2c:ee:b3:f7:0f:72:ed:
d0:6c:32:51:0f:3e:e5:55:45:8d:5b:b0:ab:cb:0b:
4a:97:48:ae:d7:b7:66:60:cc:95:9c:66:66:d2:4f:
0b:dd:6c:11:d2:f0:b7:f4:ff:3b:3b:42:4f:80:c8:
19:e8:0f:8e:65:04:18:7b:d3:a9:dd:81:14:3b:29:
fe:bb:fe:d4:66:b1:99:53:c3:e0:0e:bf:1f:43:ac:
8f:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:40:91:33:78:0D:83:8D:73:48:30:2E:8B:2B:54:48:CA:99:95:C8
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/jECRM3gNg41zSDAuiytUSMqZlcg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.216.0/22
Signature Algorithm: sha256WithRSAEncryption
1c:52:bf:2b:15:31:26:7b:df:77:01:87:5d:dd:f4:56:82:af:
43:75:db:4f:80:87:46:27:86:32:5d:ac:4a:1c:ea:06:9d:be:
7e:9e:42:12:c5:55:d4:8f:04:7c:4c:d6:51:36:0c:64:87:3c:
8e:bb:ce:02:b8:24:7c:38:48:e1:1d:2d:87:8d:43:c4:b1:16:
79:bf:4b:ea:32:d4:b0:e9:b9:fc:47:e4:31:17:4b:51:62:a8:
41:1e:61:45:f6:f3:72:e6:ad:d7:47:f6:b0:7e:02:c2:34:53:
5c:e0:4c:78:42:7e:bf:a3:9a:65:61:b7:7a:76:9e:2a:b5:d3:
d7:24:62:1a:49:34:79:7a:76:f7:a8:aa:8b:ea:8f:7f:1e:38:
67:3e:21:2a:0f:b0:78:95:6f:93:42:0d:85:db:be:5e:e4:10:
52:ed:ff:20:16:b1:51:7e:50:50:fd:74:2a:43:2e:bf:6b:41:
50:e6:32:77:2b:a4:4e:e7:2b:1a:a0:f1:79:8f:5c:c5:b4:7f:
fa:54:26:ec:93:2e:2f:5e:2e:c4:03:37:c7:d7:e0:ff:5b:cb:
0e:6f:96:0b:72:ba:9b:ee:f1:6d:1e:6a:79:d5:d4:3a:0d:9d:
d8:27:07:f0:91:96:e1:ee:7a:a1:38:a5:0b:1e:0c:66:1c:7b:
b4:6a:26:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:28 2024 by rpki-client on console-fra.rpki-client.org