Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/lcmzuMRlNQi3iHWDdUjq2DwR-YU.roa
File: lcmzuMRlNQi3iHWDdUjq2DwR-YU.roa (raw, json)
Hash identifier: v+HSQTXQ2NrSQr5YO2NRvCDoMM4sgkjxq05mknvh2Rc=
Subject key identifier: 95:C9:B3:B8:C4:65:35:08:B7:88:75:83:75:48:EA:D8:3C:11:F9:85
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1D7B
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/lcmzuMRlNQi3iHWDdUjq2DwR-YU.roa
Signing time: Fri 01 Sep 2023 10:14:53 +0000
ROA not before: Fri 01 Sep 2023 10:14:53 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24164
IP address blocks: 49.158.145.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7547 (0x1d7b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 1 10:14:53 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=95C9B3B8C4653508B78875837548EAD83C11F985
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:54:bb:3f:68:18:92:03:bd:56:4a:a1:86:d3:
40:2a:42:8b:6f:e6:2c:f3:d4:06:48:cd:eb:b8:da:
2c:21:63:bf:52:82:88:d1:1d:08:71:c8:73:14:00:
a6:9b:22:8c:a5:b5:1a:a5:3b:e8:4f:f0:5e:8e:a8:
99:6e:54:dd:3a:2f:31:45:94:a7:04:74:0c:78:73:
d5:cf:c1:f4:55:0d:e7:40:85:f9:cf:38:f7:9a:4b:
c8:cb:75:a2:ff:b0:28:cf:a9:bd:6e:7a:20:b4:ae:
b6:b9:72:00:83:d9:76:4c:cc:ab:33:1f:d9:c2:f3:
01:ba:6b:d5:6c:cf:ec:f8:ed:5a:04:ee:f4:2d:da:
64:45:98:d0:ca:1d:e5:38:06:6f:74:33:6a:09:06:
5c:3c:75:8e:0e:b5:21:8d:59:91:8e:f5:04:14:8f:
5f:54:33:dc:7a:cd:8c:90:de:3d:80:86:93:9c:b1:
56:3a:7e:ba:d2:ac:98:67:d6:c9:f5:7d:36:6d:58:
b0:3f:a5:85:14:cc:ed:aa:23:17:10:ab:21:03:d6:
7c:38:94:16:40:80:9c:ac:1b:fd:8c:ab:ae:c3:80:
f6:e4:2f:10:de:1b:da:51:1f:7e:2c:d1:99:86:17:
92:66:da:5f:0d:27:7f:53:20:3a:fe:41:24:e9:d0:
c0:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:C9:B3:B8:C4:65:35:08:B7:88:75:83:75:48:EA:D8:3C:11:F9:85
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/lcmzuMRlNQi3iHWDdUjq2DwR-YU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.145.0/24
Signature Algorithm: sha256WithRSAEncryption
26:d5:a8:b7:e0:c4:31:89:ad:a8:e5:14:0a:91:b4:16:eb:9c:
77:5d:a1:99:9d:27:3d:7a:f8:26:c3:c6:f8:4f:81:a9:e6:83:
9a:82:b6:ba:ce:1e:45:5d:5e:e8:c8:1e:84:da:af:c1:e7:7e:
b7:87:26:43:b6:e1:bb:60:d7:89:f2:f0:a8:83:79:75:de:03:
98:8a:9f:ad:d4:0a:29:96:40:ae:ea:88:1e:23:a1:f4:a9:dc:
cc:b3:74:3d:8a:28:23:7b:6c:76:2c:37:00:52:6a:e5:05:7a:
3d:ba:47:1b:ad:28:cd:de:af:32:ac:b9:bb:4a:5f:30:1c:00:
b4:82:f7:ad:5d:7d:c2:b8:13:a0:ad:18:dc:fd:b0:92:51:46:
8d:bb:c9:2a:cc:61:7a:5e:36:0f:10:8b:9b:ed:a9:5f:54:af:
1e:db:63:f5:3c:67:40:49:29:ea:9b:51:7f:30:47:5c:f8:a8:
c3:d6:ed:3b:6f:c3:de:26:ce:5a:9d:d8:06:9f:f9:13:b2:72:
7d:6f:ab:b0:f5:60:4b:ba:a6:95:22:b7:9c:17:40:0a:c7:29:
58:d6:c7:a0:b1:d6:89:d3:73:c5:52:5b:8f:a5:a3:94:68:8f:
db:ec:72:09:5a:e4:4d:4b:29:2d:bf:cc:ad:74:8b:09:5c:be:
57:e8:45:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:28 2024 by rpki-client on console-fra.rpki-client.org