Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/riprpMlDkyONhGwCvMMLVE_h5Bw.roa
File: riprpMlDkyONhGwCvMMLVE_h5Bw.roa (raw, json)
Hash identifier: OrKgCLbmzxbQiGQvx3falFvRxagS+pVECB8ofxx0Z6Q=
Subject key identifier: AE:2A:6B:A4:C9:43:93:23:8D:84:6C:02:BC:C3:0B:54:4F:E1:E4:1C
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1DEA
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/riprpMlDkyONhGwCvMMLVE_h5Bw.roa
Signing time: Fri 01 Sep 2023 10:15:27 +0000
ROA not before: Fri 01 Sep 2023 10:15:27 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 4662
IP address blocks: 61.60.208.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7658 (0x1dea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 1 10:15:27 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=AE2A6BA4C94393238D846C02BCC30B544FE1E41C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:5e:29:6a:46:ba:53:29:c5:41:ed:dd:fd:e8:
84:29:7a:99:5a:b4:99:cc:de:a5:da:6d:7b:f8:b4:
c3:4a:6f:1a:90:14:e4:a8:4e:55:24:f2:91:54:e4:
8c:0b:99:e5:f8:2d:3a:22:28:45:31:43:b8:98:ef:
fe:95:ab:c1:89:f9:39:8d:d7:1b:9d:84:6c:2d:2f:
0c:b4:b5:90:46:20:72:ca:51:4b:d6:ad:a7:d4:d0:
18:bf:10:b8:c0:dd:50:03:5d:b9:6d:8f:a1:d9:9b:
ec:c8:96:85:93:af:09:d0:6f:f5:2b:3f:5f:fa:e7:
75:e1:98:90:26:7d:e5:88:3f:a6:a4:f2:c8:02:3b:
0a:52:54:63:21:eb:2b:57:82:18:3b:d2:bc:60:7c:
28:71:6a:3c:a4:01:0e:29:c4:60:6f:84:f9:1e:65:
6a:54:e6:21:21:18:3c:3a:35:27:25:18:be:8d:8e:
60:e5:8b:1a:c7:24:53:4f:66:34:6d:49:20:40:a7:
6c:41:4a:41:e8:fc:44:5c:84:e7:f6:01:52:62:85:
53:fa:c5:55:a1:87:c8:4d:82:9d:8d:e7:c0:39:22:
72:b4:f0:09:d7:3a:12:e4:ea:69:0e:06:55:18:2f:
69:2f:34:dc:c9:80:8d:f3:f1:bd:b7:50:cd:23:06:
93:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:2A:6B:A4:C9:43:93:23:8D:84:6C:02:BC:C3:0B:54:4F:E1:E4:1C
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/riprpMlDkyONhGwCvMMLVE_h5Bw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.60.208.0/20
Signature Algorithm: sha256WithRSAEncryption
51:1a:d2:fd:e7:76:7d:13:02:e2:6e:e4:17:f1:80:0a:ca:5e:
ec:3f:94:a4:64:ee:a2:69:f1:13:b5:d6:ed:fb:64:c1:a4:66:
9e:31:b3:02:39:8d:98:5d:ea:87:cc:61:81:52:6d:2f:33:ec:
76:ad:dc:2b:1b:19:80:7a:c1:cc:d9:d8:e3:ba:8c:e6:0d:28:
65:d2:9f:be:b3:9a:c7:c8:0c:e0:25:58:7f:aa:6c:39:7c:b4:
27:b6:44:0e:1e:b6:c0:ac:dc:ae:84:e3:e5:ba:15:7c:e8:dc:
aa:44:cd:47:b9:3c:33:86:c9:bd:18:b2:a5:78:b8:06:18:a1:
48:1f:b4:5c:97:cc:8b:b8:0f:f9:8d:4d:ca:3f:cd:7a:f2:77:
94:de:e1:4d:31:fb:4a:73:28:bf:a4:67:dc:c9:71:67:2d:0f:
40:41:90:76:76:00:23:f2:73:c0:41:d5:92:47:6a:ab:ca:f8:
53:76:b8:64:91:dd:b6:86:55:b5:bd:ac:41:d1:51:30:c9:18:
ab:c5:07:46:e4:4e:dd:32:e0:f1:cd:e3:cc:18:f4:87:6d:4a:
a9:af:42:3f:cc:6b:8e:29:97:10:60:14:55:e8:6f:f1:34:b6:
da:0c:ed:e8:2c:f8:4a:af:63:57:f8:c2:70:eb:96:70:3e:ea:
f8:da:a7:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:28 2024 by rpki-client on console-fra.rpki-client.org