Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/5A8xce_DMk2U9WHdJLMlhAb-ZUg.roa
File: 5A8xce_DMk2U9WHdJLMlhAb-ZUg.roa (raw, json)
Hash identifier: /+Jn5H+tkctBfiEJ167/ZkmIV2fDI1ccE/B4sxuFDqU=
Subject key identifier: E4:0F:31:71:EF:C3:32:4D:94:F5:61:DD:24:B3:25:84:06:FE:65:48
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1471
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/5A8xce_DMk2U9WHdJLMlhAb-ZUg.roa
Signing time: Mon 10 Feb 2025 14:34:55 +0000
ROA not before: Mon 10 Feb 2025 14:34:55 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 2001:b000::/21 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5233 (0x1471)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:34:55 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=E40F3171EFC3324D94F561DD24B3258406FE6548
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:3b:ff:6e:79:aa:17:1f:e7:b5:6d:09:de:0e:
fc:f4:c2:d9:d3:ba:50:1b:0d:c2:d3:f5:fa:48:9f:
76:f7:68:20:87:40:fa:d6:a2:dc:fb:23:3e:a2:fa:
39:64:70:ef:dd:b1:58:97:69:09:4c:32:1b:f7:10:
ca:cd:c7:be:32:e6:d4:77:ac:4a:6a:54:26:9f:68:
8e:17:9b:24:5e:70:ed:ec:59:80:3e:b4:ae:92:51:
73:1f:bf:c9:7c:cf:70:6a:3c:bf:0e:45:02:6c:f8:
42:24:9b:2d:d3:44:1c:a7:40:77:9e:92:dc:84:74:
dd:02:7d:e2:0c:77:83:6c:80:f0:2b:80:cc:76:d6:
02:e6:0f:f2:4e:e7:f1:b5:01:a9:53:96:69:16:63:
86:dd:64:08:5f:02:52:49:6a:5e:76:85:e9:ee:ad:
1c:99:cd:8d:00:48:3d:99:58:fa:bd:68:d2:45:85:
75:ce:bd:0d:1b:5f:28:3e:98:80:0e:2e:8e:01:92:
7b:d2:d8:99:7a:04:7c:e0:20:55:f3:68:cb:92:63:
10:0e:9a:8c:4c:1f:ea:e8:87:e2:d2:9e:64:c7:16:
12:ae:84:36:f4:3a:ac:80:ce:2d:79:85:63:06:ee:
ff:4d:11:46:84:8d:84:67:b9:d2:1e:07:46:2c:9f:
7a:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:0F:31:71:EF:C3:32:4D:94:F5:61:DD:24:B3:25:84:06:FE:65:48
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/5A8xce_DMk2U9WHdJLMlhAb-ZUg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:b000::/21
Signature Algorithm: sha256WithRSAEncryption
a3:6f:4a:5a:38:42:0b:27:ff:ca:3a:0e:5c:96:c6:52:5d:eb:
d9:a4:c1:98:6c:3b:10:43:35:ca:05:26:fe:76:f9:de:53:54:
da:75:10:d4:53:c1:ec:96:06:27:5c:8a:72:ff:66:07:78:fc:
48:2b:b6:d1:34:3e:4a:1f:50:3d:b7:42:a0:07:71:ff:3a:f8:
4c:b2:35:43:4a:2b:af:0b:d6:9e:5b:a7:6a:53:2e:e2:c0:32:
3f:f3:da:4d:99:35:e4:71:60:2f:da:17:dc:17:82:e1:92:de:
4f:17:f7:81:6b:3c:ec:a0:83:be:b7:c3:0b:4f:f2:ce:b8:1c:
7f:86:4c:e2:2e:6f:51:ac:e0:54:5e:b9:82:79:9f:bd:c7:77:
6d:73:ad:4c:dd:64:e0:c0:6e:1e:30:b3:c3:7e:06:32:6a:0e:
1c:7f:c0:df:47:2b:a1:3f:ac:dd:94:cb:86:06:c4:1f:13:29:
ba:33:ed:b8:36:5c:a9:fd:1e:cb:37:41:52:18:54:b3:b5:0e:
af:18:63:70:cc:e5:6d:3b:be:d1:2f:fb:cd:f5:4a:ac:24:66:
e6:aa:02:fd:c4:f7:6e:4e:93:84:40:21:aa:75:b6:90:73:f6:
30:b4:fa:d3:18:e4:6f:e8:bb:cd:07:43:52:6c:71:c3:cf:17:
de:58:22:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 12 03:38:00 2025 by rpki-client on console.sobornost.net