Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/tNtiD4jf_QS-48J5GRD7_EHrjAY.roa
File: tNtiD4jf_QS-48J5GRD7_EHrjAY.roa (raw, json)
Hash identifier: CRy2prg2TZNmaAG1AQ4sPIbTDCKLc/5nanad7mOMlr8=
Subject key identifier: B4:DB:62:0F:88:DF:FD:04:BE:E3:C2:79:19:10:FB:FC:41:EB:8C:06
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1DA1
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/tNtiD4jf_QS-48J5GRD7_EHrjAY.roa
Signing time: Fri 01 Sep 2023 10:15:05 +0000
ROA not before: Fri 01 Sep 2023 10:15:05 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24164
IP address blocks: 49.159.48.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7585 (0x1da1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 1 10:15:05 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=B4DB620F88DFFD04BEE3C2791910FBFC41EB8C06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:4e:f9:0e:27:a7:17:62:a3:a1:61:89:c5:d9:
3a:76:18:d8:43:58:b5:3c:59:32:d0:8f:70:1f:b1:
7c:ea:ab:38:d6:96:31:6f:ea:85:f2:95:19:fc:d6:
49:72:89:b7:c3:3d:46:8f:c6:8f:25:10:47:a6:4c:
0b:e9:69:d4:e3:03:b6:10:40:71:40:1a:63:da:19:
18:39:4d:54:1a:fa:d6:df:2a:10:67:6d:09:db:9f:
57:cd:7c:9b:c7:ee:20:9b:38:d6:ec:4a:22:7d:bc:
fa:37:3e:9c:aa:2c:f1:1c:2b:cb:79:f3:ba:f0:74:
4a:65:f3:e5:99:cd:a7:2a:4a:56:9c:7c:74:ba:67:
f7:c5:89:de:ee:28:1f:86:b2:17:69:5a:a5:1e:af:
4b:d6:9e:76:a6:57:9b:c5:be:e3:9b:9d:e0:06:74:
9a:e1:6e:21:09:7d:bf:39:c5:d8:b8:a2:db:35:0f:
27:82:54:33:33:45:c6:59:fc:c4:0f:37:36:98:f2:
42:a5:1e:5a:95:a0:2e:04:5f:cf:e1:99:3e:a8:70:
46:3b:d1:a4:03:d9:05:3b:6d:9a:80:dc:c5:fe:94:
a4:14:8d:63:b6:bd:ca:b1:55:26:a6:4d:29:62:e2:
6e:d0:c7:c5:a5:bd:7b:18:f4:65:4e:ea:c1:1c:05:
51:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:DB:62:0F:88:DF:FD:04:BE:E3:C2:79:19:10:FB:FC:41:EB:8C:06
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/tNtiD4jf_QS-48J5GRD7_EHrjAY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.159.48.0/21
Signature Algorithm: sha256WithRSAEncryption
50:12:a7:5f:29:c0:8d:fa:da:22:09:18:cb:e8:c6:c7:21:57:
54:cc:ad:4a:13:eb:2a:c3:dd:e9:b2:08:59:4e:c5:29:25:b2:
a0:89:82:3f:14:6a:c9:3a:71:56:bb:0d:0e:99:1a:f4:ff:9d:
7a:4a:0a:46:f1:d1:35:c4:09:9d:79:fb:49:fd:68:56:ea:39:
c0:d1:77:bc:b7:69:f0:6a:a5:8b:bb:5b:e8:2c:97:3f:1b:b5:
62:a7:cd:b7:e8:24:19:4f:86:83:0c:9b:82:13:37:6d:2d:bf:
79:40:bc:b9:fa:b4:62:f7:d9:c7:0b:a0:5a:27:4c:d0:2d:cc:
5b:ac:37:81:9b:3f:9e:34:28:0f:74:8c:4a:3f:a8:7d:5b:60:
1a:a7:a8:55:34:9e:90:5e:2a:0e:d2:6f:8e:8e:5f:64:20:57:
6c:3a:80:45:7b:9d:9a:4f:54:ad:02:6f:56:ff:66:d7:1f:b2:
fa:bc:27:bf:f7:0d:21:70:4c:c7:28:a8:b8:6c:1a:f2:a6:94:
9f:84:f4:f3:ad:75:5c:c7:a0:f3:5c:05:c0:4f:c4:92:5d:cc:
cb:24:79:91:72:2f:aa:89:8e:71:bc:9e:77:ee:46:11:89:39:
5a:c0:ac:ec:0f:b1:90:91:af:fa:c1:db:75:05:6e:69:ef:da:
da:e7:83:03
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICHaEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMzA5MDEx
MDE1MDVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEI0REI2MjBGODhERkZE
MDRCRUUzQzI3OTE5MTBGQkZDNDFFQjhDMDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC5TvkOJ6cXYqOhYYnF2Tp2GNhDWLU8WTLQj3AfsXzqqzjWljFv
6oXylRn81klyibfDPUaPxo8lEEemTAvpadTjA7YQQHFAGmPaGRg5TVQa+tbfKhBn
bQnbn1fNfJvH7iCbONbsSiJ9vPo3PpyqLPEcK8t587rwdEpl8+WZzacqSlacfHS6
Z/fFid7uKB+GshdpWqUer0vWnnamV5vFvuObneAGdJrhbiEJfb85xdi4ots1DyeC
VDMzRcZZ/MQPNzaY8kKlHlqVoC4EX8/hmT6ocEY70aQD2QU7bZqA3MX+lKQUjWO2
vcqxVSamTSli4m7Qx8WlvXsY9GVO6sEcBVEfAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUtNtiD4jf/QS+48J5GRD7/EHrjAYwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL3ROdGlENGpmX1FTLTQ4SjVH
UkQ3X0VIcmpBWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx
nzAwDQYJKoZIhvcNAQELBQADggEBAFASp18pwI362iIJGMvoxschV1TMrUoT6yrD
3emyCFlOxSklsqCJgj8Uask6cVa7DQ6ZGvT/nXpKCkbx0TXECZ15+0n9aFbqOcDR
d7y3afBqpYu7W+gslz8btWKnzbfoJBlPhoMMm4ITN20tv3lAvLn6tGL32ccLoFon
TNAtzFusN4GbP540KA90jEo/qH1bYBqnqFU0npBeKg7Sb46OX2QgV2w6gEV7nZpP
VK0Cb1b/Ztcfsvq8J7/3DSFwTMcoqLhsGvKmlJ+E9POtdVzHoPNcBcBPxJJdzMsk
eZFyL6qJjnG8nnfuRhGJOVrArOwPsZCRr/rB23UFbmnv2trngwM=
-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:28 2024 by rpki-client on console-fra.rpki-client.org