Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/nTuqjQnxP5B2L_9xKxJM4G5UwOU.roa
File: nTuqjQnxP5B2L_9xKxJM4G5UwOU.roa (raw, json)
Hash identifier: SYRlZfwRNMClnkAj9smjQZUgM+tsGwQHaukwJvLvWyY=
Subject key identifier: 9D:3B:AA:8D:09:F1:3F:90:76:2F:FF:71:2B:12:4C:E0:6E:54:C0:E5
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1E9A
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/nTuqjQnxP5B2L_9xKxJM4G5UwOU.roa
Signing time: Fri 01 Sep 2023 10:16:15 +0000
ROA not before: Fri 01 Sep 2023 10:16:15 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24165
IP address blocks: 122.254.0.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7834 (0x1e9a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 1 10:16:15 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=9D3BAA8D09F13F90762FFF712B124CE06E54C0E5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:2d:32:1c:de:2e:e7:43:42:e5:40:e4:fa:8b:
b3:30:9b:8b:ec:78:8d:69:dd:83:b0:eb:43:e9:8e:
f3:d0:7a:66:40:c3:6c:e1:7e:8b:3c:42:f6:af:53:
ee:a5:9e:3e:f5:52:eb:5c:e2:54:47:e3:b0:23:22:
4c:af:2e:51:fd:05:8a:31:95:20:04:71:4a:5f:f1:
03:8f:37:6c:eb:2e:d4:d2:e2:97:75:81:bf:d0:84:
41:73:6b:75:4d:eb:5d:9f:d8:2b:39:cc:57:9e:3d:
bb:2e:f7:1f:f3:e2:80:b4:bf:3f:db:b6:4a:a0:e4:
c6:1c:8a:5d:aa:1c:40:a8:7b:6f:4d:5a:72:d8:f4:
15:31:b4:5c:09:0b:e0:ef:5c:ea:fb:cf:15:56:ab:
20:ac:22:e5:8a:c1:e1:23:20:b8:e0:0c:a8:a0:6b:
30:45:59:34:1c:09:94:e6:44:16:b0:98:a9:3b:78:
03:08:13:f9:f3:62:da:7e:0c:1f:04:bc:58:e3:bc:
97:66:d2:f1:82:d0:2a:1e:2b:34:ba:95:24:66:7c:
9b:eb:49:fa:fb:10:49:78:09:81:9f:22:94:1c:44:
99:02:07:5c:16:9e:0b:66:61:d6:75:93:ee:b2:bd:
cc:90:fd:99:39:a3:65:57:00:96:59:89:b9:a5:56:
e3:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:3B:AA:8D:09:F1:3F:90:76:2F:FF:71:2B:12:4C:E0:6E:54:C0:E5
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/nTuqjQnxP5B2L_9xKxJM4G5UwOU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.254.0.0/21
Signature Algorithm: sha256WithRSAEncryption
78:4c:a7:68:d4:6e:51:a2:4e:62:e2:6d:0b:75:20:cf:b3:01:
ba:95:b9:a8:c4:23:8d:55:da:d8:36:1e:05:2d:0e:f4:7c:22:
97:3e:d3:a9:89:e9:0c:d5:2b:e1:b8:dc:bf:95:2e:fa:ee:dc:
71:d8:3d:d5:59:58:d6:4d:48:d6:80:44:02:28:a7:c1:3d:f9:
6a:a1:54:0f:8d:15:19:73:5c:5b:e9:0c:a6:c6:da:bf:e4:75:
4c:18:9c:23:e7:0e:30:f9:68:2d:23:52:49:d1:e8:b2:c5:28:
d5:55:c2:4b:5e:1a:24:88:2a:3b:8d:45:dd:f6:4c:a5:d4:8a:
7c:a5:70:5a:f9:f5:5c:ed:90:10:1d:16:78:54:93:b5:6f:0f:
3a:e8:5b:75:44:ba:77:2b:46:6e:6c:f4:69:df:8c:5f:6d:38:
b6:65:97:5c:fd:e0:27:d6:6a:3c:f1:91:a0:0a:3a:20:75:10:
dd:25:1c:e3:ba:6b:80:b0:dd:d1:32:73:c4:5b:c5:69:4a:e0:
bf:d6:68:cf:f9:3e:15:cc:9a:03:bd:d7:53:27:20:f2:4d:53:
a9:ca:06:5d:34:e8:45:c9:9b:05:10:a8:36:e9:ff:66:45:d5:
d5:d3:88:b6:01:72:24:73:1e:0f:2e:8c:43:44:04:1b:54:8e:
09:44:e1:ce
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICHpowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMzA5MDEx
MDE2MTVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDlEM0JBQThEMDlGMTNG
OTA3NjJGRkY3MTJCMTI0Q0UwNkU1NEMwRTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCsLTIc3i7nQ0LlQOT6i7Mwm4vseI1p3YOw60PpjvPQemZAw2zh
fos8QvavU+6lnj71Uutc4lRH47AjIkyvLlH9BYoxlSAEcUpf8QOPN2zrLtTS4pd1
gb/QhEFza3VN612f2Cs5zFeePbsu9x/z4oC0vz/btkqg5MYcil2qHECoe29NWnLY
9BUxtFwJC+DvXOr7zxVWqyCsIuWKweEjILjgDKigazBFWTQcCZTmRBawmKk7eAMI
E/nzYtp+DB8EvFjjvJdm0vGC0CoeKzS6lSRmfJvrSfr7EEl4CYGfIpQcRJkCB1wW
ngtmYdZ1k+6yvcyQ/Zk5o2VXAJZZibmlVuOXAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUnTuqjQnxP5B2L/9xKxJM4G5UwOUwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL25UdXFqUW54UDVCMkxfOXhL
eEpNNEc1VXdPVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN6
/gAwDQYJKoZIhvcNAQELBQADggEBAHhMp2jUblGiTmLibQt1IM+zAbqVuajEI41V
2tg2HgUtDvR8Ipc+06mJ6QzVK+G43L+VLvru3HHYPdVZWNZNSNaARAIop8E9+Wqh
VA+NFRlzXFvpDKbG2r/kdUwYnCPnDjD5aC0jUknR6LLFKNVVwkteGiSIKjuNRd32
TKXUinylcFr59VztkBAdFnhUk7VvDzroW3VEuncrRm5s9GnfjF9tOLZll1z94CfW
ajzxkaAKOiB1EN0lHOO6a4Cw3dEyc8RbxWlK4L/WaM/5PhXMmgO911MnIPJNU6nK
Bl006EXJmwUQqDbp/2ZF1dXTiLYBciRzHg8ujENEBBtUjglE4c4=
-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:28 2024 by rpki-client on console-fra.rpki-client.org