Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/E34VvoYtOYDU6oW1wGx6dstwXQo.roa
File: E34VvoYtOYDU6oW1wGx6dstwXQo.roa (raw, json)
Hash identifier: kx6xr21o59IyYqGhdICRfNaDFxGjq/dp4doXCh6sGs4=
Subject key identifier: 13:7E:15:BE:86:2D:39:80:D4:EA:85:B5:C0:6C:7A:76:CB:70:5D:0A
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 144D
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/E34VvoYtOYDU6oW1wGx6dstwXQo.roa
Signing time: Mon 10 Feb 2025 14:34:47 +0000
ROA not before: Mon 10 Feb 2025 14:34:47 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 203.160.242.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5197 (0x144d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:34:47 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=137E15BE862D3980D4EA85B5C06C7A76CB705D0A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:9d:dd:f2:fd:75:d2:32:54:25:4a:49:d2:e4:
3f:fc:b6:61:3c:3a:8e:b8:bd:32:3f:37:de:b5:4b:
dd:13:17:db:ba:97:3c:29:99:4b:2f:cf:d9:43:f1:
21:5b:b7:f0:ef:9b:42:89:c8:42:5a:d7:9b:de:29:
0d:e6:70:f0:95:02:47:f0:be:c2:9a:8a:8b:d0:bc:
c2:d9:0c:3d:99:85:d8:8f:10:78:80:23:0f:65:fa:
ff:79:c4:2c:dd:28:72:3e:57:0d:84:a9:ad:de:5c:
39:0d:89:50:88:dd:2b:d9:48:fc:70:58:60:cf:cb:
7a:5e:64:34:10:a6:c6:e3:06:ea:8e:bc:1c:63:4c:
db:16:bf:c4:47:5e:bf:a0:27:d7:c3:33:c9:cd:e1:
55:6e:f8:d4:70:cb:7f:81:bc:ca:6a:ee:29:fc:81:
8f:9a:a2:d3:85:09:3e:5c:52:f5:8f:38:eb:8d:e7:
f3:02:bc:18:9e:c4:4b:c3:bc:74:ef:bd:44:8e:de:
69:6b:2c:00:69:1c:1a:36:84:f4:a3:50:95:89:c7:
13:78:dd:2e:a7:92:b2:1a:72:11:39:54:d1:80:1e:
18:7a:2a:ef:5a:9b:f2:67:5d:d0:7b:d0:c7:0e:32:
6d:a3:25:7f:ba:f6:a3:6b:94:cd:84:c7:ad:2d:a8:
b8:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:7E:15:BE:86:2D:39:80:D4:EA:85:B5:C0:6C:7A:76:CB:70:5D:0A
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/E34VvoYtOYDU6oW1wGx6dstwXQo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.160.242.0/24
Signature Algorithm: sha256WithRSAEncryption
c3:8c:3e:a7:e6:44:9b:19:8b:76:db:fb:f6:24:bd:4e:14:71:
10:3c:d7:ce:e0:f7:e2:e8:7a:51:65:e0:84:01:8d:bd:aa:ff:
98:3f:cb:f5:00:d8:0d:2b:87:96:7b:34:8c:dd:5f:15:87:a6:
45:17:4d:b6:08:a4:03:bf:49:c3:68:9a:70:7c:1d:b3:a4:eb:
12:64:2d:00:38:96:95:79:b8:08:08:f6:f9:81:a7:88:09:88:
54:00:b0:26:2d:c6:5b:33:ee:c1:26:1b:09:a6:0e:c9:c7:bd:
4d:fa:fb:d0:4f:ca:f9:66:54:55:d6:d8:6d:a0:a2:91:bc:65:
96:07:3d:43:bc:db:5e:4e:98:00:ff:ce:42:46:e4:fd:04:d6:
e1:f1:85:4c:17:12:96:24:2f:cd:05:6b:61:f8:13:c9:53:33:
4b:92:9b:72:ff:87:01:80:be:75:78:ca:34:7d:60:b0:2f:09:
65:a1:f2:14:93:cc:f0:54:1c:d5:c3:62:50:c2:2b:04:1c:b7:
ab:2a:23:2f:04:6c:71:ad:52:73:8a:e4:9c:4d:ed:1d:53:ed:
6d:c3:b4:a2:4c:c1:ab:37:05:ee:1d:43:75:04:ae:ec:b3:06:
95:04:b8:8c:42:54:2b:55:38:2a:59:05:e2:90:7f:76:0d:06:
09:9a:5d:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 12 03:38:01 2025 by rpki-client on console.sobornost.net