Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/ElFun-iudbi2_IOwBD0lqq6PWqc.roa
File: ElFun-iudbi2_IOwBD0lqq6PWqc.roa (raw, json)
Hash identifier: ljPCc7fAl/B33E1USeTIT2ea9oG0OT1VHoUMsdzFFuU=
Subject key identifier: 12:51:6E:9F:E8:AE:75:B8:B6:FC:83:B0:04:3D:25:AA:AE:8F:5A:A7
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 14A9
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/ElFun-iudbi2_IOwBD0lqq6PWqc.roa
Signing time: Mon 10 Feb 2025 14:35:09 +0000
ROA not before: Mon 10 Feb 2025 14:35:09 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 220.128.79.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5289 (0x14a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:35:09 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=12516E9FE8AE75B8B6FC83B0043D25AAAE8F5AA7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:c6:c5:1d:7a:35:dd:b5:aa:3e:70:65:2e:80:
c9:c4:81:9d:fa:8c:75:dd:9b:62:86:de:71:28:a7:
2e:76:a6:ce:75:0a:8c:69:42:d3:f4:77:ef:2f:99:
be:df:b9:f0:6a:ea:38:38:ba:41:34:61:68:46:a8:
3e:e8:50:2f:8e:d5:57:5a:62:37:b4:ac:d1:b4:a7:
e8:97:d4:a1:da:62:f7:67:32:8b:e8:63:24:13:c3:
31:19:e7:36:28:a6:3b:74:91:f7:f5:25:ef:25:8f:
4d:4b:9b:e1:50:f9:69:0f:00:d4:d2:d4:e4:0a:24:
b7:77:5c:c3:dc:52:3c:ad:27:33:20:53:07:6c:65:
d0:4d:e8:b2:f5:70:59:78:15:e9:4a:68:f4:e5:51:
de:bc:8e:d8:cf:68:e2:30:d2:fc:5d:56:80:91:77:
dc:40:59:60:cc:25:8c:64:b5:31:b7:12:9f:43:7a:
4c:dc:ff:aa:04:db:92:65:f7:4b:27:08:16:64:4e:
82:6b:e2:e0:52:da:8a:16:e3:51:fa:f0:82:34:95:
fe:c6:41:c8:99:86:24:1b:36:5e:e7:93:a3:dd:5b:
90:26:30:0b:c2:a1:d4:a4:92:06:41:2c:10:1e:76:
99:b6:0e:4f:c8:2b:52:fc:8d:a0:e7:e3:02:dd:a2:
12:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:51:6E:9F:E8:AE:75:B8:B6:FC:83:B0:04:3D:25:AA:AE:8F:5A:A7
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/ElFun-iudbi2_IOwBD0lqq6PWqc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.128.79.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:19:0a:74:37:07:0f:1c:38:d5:6b:a9:16:3b:56:c2:28:0c:
7d:26:61:7a:93:04:65:b7:93:f6:74:d1:0d:ab:7f:41:fb:d5:
ee:8f:95:b2:8c:d5:a3:ab:a8:f9:7a:ed:63:a5:e8:35:d6:d7:
66:30:a7:00:c4:09:b8:8d:98:40:37:5a:bb:ec:8f:63:fc:d1:
2f:41:fe:9a:95:63:33:09:d8:6c:03:d2:fd:4d:61:b0:e0:8b:
39:fd:ed:cb:ff:16:f7:20:81:39:0b:f0:9a:b0:6c:8b:6b:5c:
39:5d:ec:9c:ea:ec:7b:a1:06:08:cb:48:5f:9f:f7:4e:69:9b:
16:cc:7a:93:b7:79:99:ff:80:79:28:30:2b:81:3e:6e:9a:bc:
c2:7e:00:15:26:09:c2:de:fd:0e:9f:64:7f:c6:0c:ce:a2:32:
36:56:9f:66:ba:f2:4d:e9:1a:e0:af:f7:e6:5c:51:1e:d6:c5:
93:a6:e0:4b:a4:1e:7e:3c:7c:51:36:cd:9e:51:0d:e4:e1:60:
58:98:ae:1d:84:ec:9f:5e:f3:56:c3:6c:4c:61:b5:86:28:74:
2a:ad:7b:a6:06:3d:db:94:5c:93:78:c6:72:34:4e:55:2a:6c:
7b:bb:da:b6:0d:eb:99:b0:48:ea:16:98:f3:6a:60:ad:8d:90:
47:e1:15:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 12 03:38:01 2025 by rpki-client on console.sobornost.net