Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/kZ5hVMzCBAduVcBtLYC0PwIeixY.roa
File: kZ5hVMzCBAduVcBtLYC0PwIeixY.roa (raw, json)
Hash identifier: f/9JCkfZig0L0rc3bisLoiuUkeLB0GmT8JhO5wucBJo=
Subject key identifier: 91:9E:61:54:CC:C2:04:07:6E:55:C0:6D:2D:80:B4:3F:02:1E:8B:16
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1E6F
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/kZ5hVMzCBAduVcBtLYC0PwIeixY.roa
Signing time: Fri 01 Sep 2023 10:16:02 +0000
ROA not before: Fri 01 Sep 2023 10:16:02 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24164
IP address blocks: 123.0.40.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7791 (0x1e6f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 1 10:16:02 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=919E6154CCC204076E55C06D2D80B43F021E8B16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:8d:43:2c:c9:93:f9:57:b1:0a:dd:8d:76:ce:
49:8c:98:94:ae:39:13:db:4a:ce:66:ae:3a:25:3f:
30:c4:63:1f:84:d6:c8:0a:2f:a6:fa:61:44:ac:a6:
7c:2e:1f:57:fb:25:c9:a8:2a:ea:ca:31:27:31:2e:
63:6c:0b:5d:1c:a2:76:c7:45:f6:d5:bf:de:f6:be:
b1:20:eb:6f:8b:e1:4f:07:67:7a:df:e0:01:09:1b:
94:78:8c:8c:36:7c:e4:bc:f7:4c:c0:fc:e9:1b:5c:
37:73:09:22:81:c8:03:ad:1d:7c:f7:ec:2d:ea:3d:
ec:0f:f1:68:55:57:31:f2:a1:d8:ab:87:75:fa:cc:
7f:78:d2:78:b5:ed:24:ae:cf:80:00:db:c4:36:77:
b4:7c:38:94:25:0c:c1:8a:2f:81:08:12:37:58:50:
57:db:e0:2e:aa:49:6a:4b:bb:a6:c4:62:e1:d0:84:
49:c9:53:88:ac:c7:0b:5a:04:e8:a1:07:3e:88:ea:
02:d0:a1:b1:32:dd:5e:e1:1b:c6:72:35:07:e3:fd:
de:12:e8:b6:76:d5:c1:3a:e4:c6:74:c0:19:3d:28:
6d:92:e1:4b:45:ce:8c:d0:ec:20:a1:73:f5:6b:21:
08:b5:1e:b1:d8:22:d0:8b:11:49:b7:45:08:1b:1c:
4d:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:9E:61:54:CC:C2:04:07:6E:55:C0:6D:2D:80:B4:3F:02:1E:8B:16
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/kZ5hVMzCBAduVcBtLYC0PwIeixY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.0.40.0/23
Signature Algorithm: sha256WithRSAEncryption
2b:4a:15:8c:54:30:6d:f4:4f:25:fd:ae:3e:db:23:76:0a:7a:
19:05:77:5a:7e:19:a9:9e:14:8b:e1:a6:36:fc:09:80:27:ad:
33:a1:fb:01:4e:e9:3e:13:bb:61:38:63:1a:12:9f:e6:64:b3:
08:02:c5:02:57:7f:e2:ed:f2:bc:44:35:80:14:ec:72:d1:66:
e0:ad:98:9c:c1:b5:18:81:ec:ea:68:79:dc:dc:88:88:84:eb:
12:f5:a9:2a:7e:08:8e:19:1e:df:be:bf:63:04:a0:e8:fe:85:
31:1e:41:aa:c5:aa:e5:ce:e7:d2:84:16:b7:25:a5:79:d2:90:
3c:60:55:f4:75:2a:11:83:a9:42:89:ff:d0:f6:79:f9:f4:4f:
b3:38:82:74:5a:03:10:c3:96:f8:39:ee:08:86:20:5e:d2:4d:
8c:94:39:51:d2:50:e6:9e:df:6c:86:04:d6:63:66:0f:07:bf:
40:dc:07:1a:b0:b6:9a:77:f0:a4:8a:50:72:83:c7:78:bb:15:
13:ea:b5:15:99:6f:ff:5b:67:9b:58:09:79:c7:e2:49:ab:27:
57:7f:ae:2b:d7:64:af:37:d6:b7:f2:2f:0d:6f:c2:52:23:d3:
d2:e4:39:4f:ae:1a:1a:18:67:92:fc:97:51:53:92:e9:02:5c:
33:07:b6:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:28 2024 by rpki-client on console-fra.rpki-client.org