Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ou3jM0WAJux3cvrwiwJzH16oTlU.roa
File: ou3jM0WAJux3cvrwiwJzH16oTlU.roa (raw, json)
Hash identifier: z1BskmJK72AaWm5iX0B6gw64is9TkWYlsQJZtEygYhY=
Subject key identifier: A2:ED:E3:33:45:80:26:EC:77:72:FA:F0:8B:02:73:1F:5E:A8:4E:55
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1F45
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ou3jM0WAJux3cvrwiwJzH16oTlU.roa
Signing time: Tue 30 Jan 2024 09:04:05 +0000
ROA not before: Tue 30 Jan 2024 09:04:05 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24164
IP address blocks: 61.64.0.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8005 (0x1f45)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Jan 30 09:04:05 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=A2EDE333458026EC7772FAF08B02731F5EA84E55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:4c:93:54:38:fa:a1:c5:54:4a:f1:69:53:cb:
9b:ca:14:4e:a2:70:ae:f5:2f:a1:ec:76:d1:af:1d:
ae:3e:4e:8d:d5:11:a0:2d:91:49:ee:41:b0:df:d1:
6a:9d:8c:21:b6:2b:2d:67:eb:75:be:8d:a5:43:59:
92:8f:2f:13:c4:36:78:27:e6:0b:59:f8:5e:83:7c:
1d:a5:8c:bc:3a:3a:d5:bd:5d:1a:93:fd:7d:35:f2:
c0:8a:1f:d6:40:66:9c:5d:88:27:d6:6d:74:9f:53:
d4:96:d1:de:2b:22:61:66:42:d0:fe:3b:62:db:ce:
57:b4:56:9f:78:de:c7:04:0c:8f:ac:67:18:cc:e1:
c1:31:bd:97:14:6d:04:50:d7:00:aa:ee:16:aa:73:
d4:6c:a6:c0:33:76:34:e5:be:ba:80:0b:85:f7:08:
44:92:fe:57:ec:39:7e:c3:3f:03:9e:85:83:75:b1:
cc:ce:27:cd:41:60:5a:bb:ad:21:91:c6:27:46:c1:
9d:6f:bb:e9:c6:7e:40:8e:88:b1:9b:7c:4b:12:df:
f1:bc:8e:d5:55:60:3f:df:9e:64:4d:a4:77:63:7c:
06:34:c3:b8:ef:41:ba:de:f8:58:fd:74:b5:5a:66:
09:4d:47:b7:49:d9:b4:bf:f8:3a:4d:3e:da:9a:1b:
f7:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:ED:E3:33:45:80:26:EC:77:72:FA:F0:8B:02:73:1F:5E:A8:4E:55
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ou3jM0WAJux3cvrwiwJzH16oTlU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.64.0.0/19
Signature Algorithm: sha256WithRSAEncryption
10:0f:f6:7b:5e:23:e0:33:e2:5f:2f:f9:27:c0:93:1f:e8:c9:
70:a3:74:11:cf:f2:5c:57:08:b5:d8:48:1c:45:90:31:ef:00:
50:19:fe:89:48:70:78:2f:ed:24:44:33:84:aa:8e:24:45:14:
84:40:d2:17:58:0a:a1:a5:b7:c2:27:ff:bb:cc:4c:85:18:95:
06:1c:e6:b3:55:57:ec:3d:a7:22:7b:4b:81:b9:f8:35:b0:12:
eb:0d:f2:99:93:e2:fb:c9:4f:13:6a:13:b1:f3:8f:e5:23:30:
b2:f6:50:66:a0:29:a2:11:b0:30:34:89:dd:73:1e:5a:b8:39:
15:09:9e:aa:3d:38:0e:6f:bc:31:2c:8e:99:60:05:63:e1:46:
ec:a0:74:18:28:95:2f:bb:c2:c3:01:ac:bd:9d:1a:e2:71:ce:
75:96:12:76:6f:89:68:65:73:47:ab:05:e5:a9:97:fe:81:58:
8d:a6:4a:3d:51:73:57:cd:bb:1e:a9:a9:b6:9e:24:1a:a9:7b:
17:2f:c7:5b:a4:00:7c:b8:56:8c:57:9a:ec:43:5d:a3:c6:d0:
0b:e0:06:5f:0b:0e:e9:85:d9:53:e6:a0:06:b7:a8:4b:0a:bb:
7a:54:c1:ed:cf:85:4f:1c:ad:f6:f0:d0:10:44:35:6f:21:41:
e6:2d:83:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:28 2024 by rpki-client on console-fra.rpki-client.org