Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/395-zoNrIa7bdNEHaDGqo8sqzHc.roa
File: 395-zoNrIa7bdNEHaDGqo8sqzHc.roa (raw, json)
Hash identifier: FswomesWcyuOo4EufdTN9yNQhEDHWJqBYZGFatPX78A=
Subject key identifier: DF:DE:7E:CE:83:6B:21:AE:DB:74:D1:07:68:31:AA:A3:CB:2A:CC:77
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1457
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/395-zoNrIa7bdNEHaDGqo8sqzHc.roa
Signing time: Mon 10 Feb 2025 14:34:49 +0000
ROA not before: Mon 10 Feb 2025 14:34:49 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 33717
IP address blocks: 220.128.55.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5207 (0x1457)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:34:49 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=DFDE7ECE836B21AEDB74D1076831AAA3CB2ACC77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:8d:ca:3c:6e:84:29:a1:28:5f:34:20:4a:41:
b3:d3:a5:a4:43:11:8a:6a:0e:3f:c5:41:ed:f1:2d:
f6:4b:2b:c3:a0:c5:47:98:d4:bb:f3:7b:f6:d9:ce:
ba:03:66:8f:23:5b:91:5a:0d:0a:15:e4:fb:9b:b8:
ec:e3:99:31:f0:48:ca:ac:cf:60:09:fc:b0:7d:ad:
4d:cf:4f:39:54:c7:d1:b7:5b:04:6c:39:79:7d:fc:
eb:e1:78:b4:de:2a:6e:15:4f:bc:4f:c2:07:55:27:
f5:8b:31:4e:c7:5c:a3:a3:ca:69:1e:a2:25:7b:3f:
b6:42:84:17:db:4d:10:76:c5:7a:cc:cb:22:14:40:
5e:6e:94:b2:08:44:2e:b1:36:86:0c:70:bc:3f:41:
d0:75:fd:f1:c3:30:46:bb:30:4c:e6:9d:8b:ce:31:
b2:e9:4d:0a:59:88:ef:67:db:e7:f0:25:8f:3a:63:
78:da:bb:04:5d:1e:a8:a0:4b:07:ac:14:2b:2e:86:
f7:b6:ba:a4:82:e5:87:93:c9:3d:ba:90:01:b6:9f:
d4:ba:85:df:90:94:52:b6:89:d8:1e:be:ce:fd:1f:
d7:5e:3f:36:09:5f:c3:f3:ce:ab:d8:5d:02:10:31:
35:a2:45:a0:2a:54:5f:32:68:b5:b4:c0:15:0e:4e:
9d:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:DE:7E:CE:83:6B:21:AE:DB:74:D1:07:68:31:AA:A3:CB:2A:CC:77
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/395-zoNrIa7bdNEHaDGqo8sqzHc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.128.55.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:3a:e7:22:6e:5c:9a:b7:07:5d:46:80:03:89:ea:45:e5:96:
a8:94:f3:84:9b:1c:01:ea:18:99:a9:df:ee:5c:49:52:c7:cd:
66:1a:07:fe:b8:2b:df:3f:04:c1:29:ca:78:cb:65:30:8d:f8:
07:3e:84:84:0c:6e:b5:ad:e3:62:8e:96:15:5b:60:17:bf:f0:
81:b2:75:3c:3e:3b:ab:57:5b:d2:96:58:43:fe:4a:64:9e:1c:
73:2b:a7:60:58:c6:6b:bd:e9:aa:bc:59:6b:a6:21:50:00:cb:
7d:a6:b2:cc:a6:e1:09:ef:b1:b6:71:11:74:63:48:1e:8d:40:
10:fa:de:ab:a2:26:5f:e2:d9:4e:5b:73:5b:8d:9b:1f:bd:b4:
c7:3f:a0:f5:ba:93:9f:d7:85:f7:21:0f:6c:58:f4:6b:40:68:
77:2c:9d:a0:27:9e:f3:0d:da:63:e3:e4:f7:55:fb:70:55:e6:
8b:78:88:98:02:fe:b5:07:16:10:f4:38:c5:3a:6e:2d:fa:10:
d6:61:2c:52:d2:31:5b:b0:95:a6:68:08:2a:46:22:ae:00:02:
86:94:7e:19:78:8c:98:84:b4:bb:6d:77:15:bc:50:62:e3:8e:
10:08:5e:c5:67:b3:b7:02:5f:5c:50:e0:95:30:fa:6f:44:34:
c8:ad:dc:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 12 03:38:00 2025 by rpki-client on console.sobornost.net