Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/pBPCBER0Bn_DIWC1gmf8sffj31g.roa
File: pBPCBER0Bn_DIWC1gmf8sffj31g.roa (raw, json)
Hash identifier: C6nydi/b/ENlrPfB6yHVGQoYw9Yr2kGdU5vDMRLDm2A=
Subject key identifier: A4:13:C2:04:44:74:06:7F:C3:21:60:B5:82:67:FC:B1:F7:E3:DF:58
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1D74
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/pBPCBER0Bn_DIWC1gmf8sffj31g.roa
Signing time: Fri 01 Sep 2023 10:14:50 +0000
ROA not before: Fri 01 Sep 2023 10:14:50 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24164
IP address blocks: 211.76.77.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7540 (0x1d74)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 1 10:14:50 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=A413C2044474067FC32160B58267FCB1F7E3DF58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:b3:a6:39:ac:0f:e8:40:bf:b6:83:2a:17:e6:
01:c8:f0:fc:9c:22:67:64:7c:93:27:e5:66:f9:69:
bf:97:fd:8c:d4:95:a1:f2:8a:ca:f2:10:43:48:cb:
c5:a4:60:28:9d:4e:81:ff:a9:22:17:b5:d4:26:ed:
93:b5:3c:2e:14:3b:b7:a4:65:10:ff:df:3a:17:e8:
d2:84:fb:97:a4:9b:fc:b4:7b:ac:48:13:9c:81:33:
bb:f1:e7:c8:7a:e9:04:e3:6b:e3:51:de:2d:da:d9:
7c:bc:37:cc:2f:01:49:2f:3c:6b:f6:bb:7e:63:a3:
24:39:45:4a:85:0a:69:ac:39:07:4c:6a:21:52:bd:
d5:d2:09:f7:c9:9f:17:6b:01:08:91:60:5b:86:c3:
75:a6:9f:6e:90:c4:d9:79:bc:dd:c4:ba:06:30:26:
36:e1:12:48:32:80:23:8a:56:35:fb:f0:b1:87:bb:
f6:4d:7a:63:e9:ae:fc:d9:1f:90:dc:fc:cb:e8:52:
91:c3:33:3f:93:10:3b:62:e1:f5:b1:43:e7:31:25:
a7:e4:87:e2:84:f3:30:32:36:6b:44:86:e4:fd:55:
77:44:71:47:eb:c3:fd:00:54:bf:ea:71:05:7b:76:
4e:20:f1:a1:a1:b4:7e:33:26:47:f6:21:6e:63:56:
51:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:13:C2:04:44:74:06:7F:C3:21:60:B5:82:67:FC:B1:F7:E3:DF:58
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/pBPCBER0Bn_DIWC1gmf8sffj31g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.77.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:43:68:1c:eb:ed:95:24:56:8f:77:b3:ac:0e:bd:30:5a:c1:
56:00:c2:67:7e:83:b1:7e:62:2b:7b:15:0c:3a:89:ad:03:64:
fa:0d:b2:a9:8f:ae:bb:35:f3:6d:39:1a:ef:8c:0c:4b:af:9b:
e2:00:16:4f:01:f0:b3:9a:f4:87:f2:3d:b5:84:1d:d4:26:be:
f1:49:f9:61:1c:67:bc:db:dd:d3:47:ad:d9:dc:f1:e3:61:a3:
46:e7:53:79:59:dd:b3:40:07:10:1d:76:e3:65:3a:02:02:75:
0a:f2:38:e1:82:0f:f3:2f:e1:44:49:ad:02:f8:ac:57:ae:7b:
ce:f5:be:32:aa:b3:0c:4f:1e:65:97:38:e6:9a:ab:17:4e:a4:
89:c4:ed:f5:8f:cb:d3:21:ea:4d:36:3f:21:8b:8b:df:a7:59:
70:9e:8f:77:02:83:6f:cf:da:15:e4:62:e3:a2:36:54:92:8e:
a4:89:09:07:de:6d:19:dc:a4:77:42:fe:16:35:fe:d7:b5:9a:
7a:15:7f:51:de:93:c9:a3:ca:a6:73:dd:e4:92:e1:cc:64:ce:
72:43:37:7d:f7:87:c5:7d:f1:76:10:27:c2:0e:cd:0f:98:76:
73:1d:08:67:cc:54:f6:2f:55:90:50:64:70:7f:8e:a1:62:16:
fc:69:9d:55
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICHXQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMzA5MDEx
MDE0NTBaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEE0MTNDMjA0NDQ3NDA2
N0ZDMzIxNjBCNTgyNjdGQ0IxRjdFM0RGNTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQChs6Y5rA/oQL+2gyoX5gHI8PycImdkfJMn5Wb5ab+X/YzUlaHy
isryEENIy8WkYCidToH/qSIXtdQm7ZO1PC4UO7ekZRD/3zoX6NKE+5ekm/y0e6xI
E5yBM7vx58h66QTja+NR3i3a2Xy8N8wvAUkvPGv2u35joyQ5RUqFCmmsOQdMaiFS
vdXSCffJnxdrAQiRYFuGw3Wmn26QxNl5vN3EugYwJjbhEkgygCOKVjX78LGHu/ZN
emPprvzZH5Dc/MvoUpHDMz+TEDti4fWxQ+cxJafkh+KE8zAyNmtEhuT9VXdEcUfr
w/0AVL/qcQV7dk4g8aGhtH4zJkf2IW5jVlEtAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUpBPCBER0Bn/DIWC1gmf8sffj31gwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL3BCUENCRVIwQm5fRElXQzFn
bWY4c2ZmajMxZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADT
TE0wDQYJKoZIhvcNAQELBQADggEBAExDaBzr7ZUkVo93s6wOvTBawVYAwmd+g7F+
Yit7FQw6ia0DZPoNsqmPrrs18205Gu+MDEuvm+IAFk8B8LOa9IfyPbWEHdQmvvFJ
+WEcZ7zb3dNHrdnc8eNho0bnU3lZ3bNABxAdduNlOgICdQryOOGCD/Mv4URJrQL4
rFeue871vjKqswxPHmWXOOaaqxdOpInE7fWPy9Mh6k02PyGLi9+nWXCej3cCg2/P
2hXkYuOiNlSSjqSJCQfebRncpHdC/hY1/te1mnoVf1Hek8mjyqZz3eSS4cxkznJD
N333h8V98XYQJ8IOzQ+YdnMdCGfMVPYvVZBQZHB/jqFiFvxpnVU=
-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:28 2024 by rpki-client on console-fra.rpki-client.org