Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/vNQTuvic5fLhaqWy-EVcx-Km03w.roa
File: vNQTuvic5fLhaqWy-EVcx-Km03w.roa (raw, json)
Hash identifier: xQMz8vOmirepAzMECJmEdsC5IOjjt2jDTRcyeNwakf8=
Subject key identifier: BC:D4:13:BA:F8:9C:E5:F2:E1:6A:A5:B2:F8:45:5C:C7:E2:A6:D3:7C
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1DA0
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/vNQTuvic5fLhaqWy-EVcx-Km03w.roa
Signing time: Fri 01 Sep 2023 10:15:05 +0000
ROA not before: Fri 01 Sep 2023 10:15:05 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24164
IP address blocks: 49.158.216.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7584 (0x1da0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 1 10:15:05 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=BCD413BAF89CE5F2E16AA5B2F8455CC7E2A6D37C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:fb:9e:98:88:38:f2:35:e9:a6:7c:c5:26:7e:
41:3e:1e:5f:0e:3a:57:bf:1a:29:c2:44:72:78:e6:
d9:4f:2f:b5:73:e3:1e:d8:14:55:b3:e2:45:01:b9:
83:a4:a9:37:5f:ac:19:df:fa:2f:b9:46:63:94:8e:
e8:f8:ca:5c:55:14:ce:fe:65:62:01:0b:5d:f8:c6:
06:3a:17:4a:36:a8:53:77:9c:4f:04:13:f4:3a:ca:
2e:ee:1b:7a:f2:5c:e5:5f:a8:eb:1d:90:ad:cc:ab:
9e:89:07:58:ea:fe:da:8e:e2:ed:26:2e:cc:4c:f4:
6d:c8:2a:d4:87:bc:ba:d2:45:36:15:f1:fa:75:9f:
a9:87:66:51:42:f1:49:5a:da:f2:49:c8:ae:9b:34:
f1:18:5a:c5:7c:03:25:42:e5:90:0e:33:78:3c:fd:
ec:61:60:d7:f7:54:ce:4d:b7:92:28:9c:78:94:77:
c8:d6:2e:4f:63:65:1a:be:f8:cc:e1:16:a9:b6:2f:
71:70:28:c8:0f:e3:58:98:5c:65:ac:30:fa:ac:ea:
20:92:a8:19:a5:fc:4a:bb:c4:55:a3:f8:46:e0:40:
71:72:76:75:22:b3:04:47:e8:04:94:06:d4:43:6c:
05:06:04:8f:d2:b6:5d:39:65:14:6c:c8:65:63:b5:
8d:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:D4:13:BA:F8:9C:E5:F2:E1:6A:A5:B2:F8:45:5C:C7:E2:A6:D3:7C
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/vNQTuvic5fLhaqWy-EVcx-Km03w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.216.0/22
Signature Algorithm: sha256WithRSAEncryption
1d:69:35:b8:c3:2d:24:5c:de:8a:01:43:0b:8f:74:a2:39:3b:
83:cd:68:95:a7:2f:e0:1f:56:6e:86:98:c6:58:a9:ee:4e:c1:
4e:fc:ef:9a:08:06:12:c0:56:b2:fc:8e:df:8f:9a:2f:37:dc:
d8:83:7d:1a:b3:10:7d:ec:d7:e5:51:d1:76:2d:80:9d:c2:3d:
79:30:1c:b4:a9:dd:ef:d2:80:c0:e2:d6:02:d3:69:df:37:77:
42:c1:03:a2:7b:4e:81:f4:1a:6e:c9:dc:a4:04:1d:6c:b1:c1:
d5:f7:be:71:ca:11:0c:f9:3a:b2:45:fb:01:80:0a:49:cf:9d:
a6:04:ca:f1:46:c7:0d:dc:3d:0f:10:84:47:99:97:30:38:85:
3a:fd:37:11:e2:60:7e:6d:9d:7a:94:f5:94:88:89:6c:81:5d:
d0:e8:da:72:e2:69:c0:48:10:bd:81:b2:46:62:1e:78:0e:9e:
16:ce:bd:a0:7f:7f:0d:24:72:4f:46:dd:f4:2f:97:8c:ec:7d:
2c:d0:6a:7d:f1:d7:3f:5e:a1:6d:b4:95:b1:2b:a1:90:f2:c8:
13:21:a0:9c:f7:d5:e9:1d:0e:dc:1b:d1:b2:43:c0:ff:03:b0:
89:54:3e:86:75:21:4d:e0:a9:dc:ff:68:c7:32:09:f0:44:46:
62:d8:cb:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:28 2024 by rpki-client on console-fra.rpki-client.org