Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/IF8hr-d5AQuJ0zzJbVw9xbbn7JI.roa
File: IF8hr-d5AQuJ0zzJbVw9xbbn7JI.roa (raw, json)
Hash identifier: d8vm2tjm89oLMgleoIaoDHSDHE+l0SxXkrPaDh54Plo=
Subject key identifier: 20:5F:21:AF:E7:79:01:0B:89:D3:3C:C9:6D:5C:3D:C5:B6:E7:EC:92
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1463
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/IF8hr-d5AQuJ0zzJbVw9xbbn7JI.roa
Signing time: Mon 10 Feb 2025 14:34:52 +0000
ROA not before: Mon 10 Feb 2025 14:34:52 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 60.248.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5219 (0x1463)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:34:52 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=205F21AFE779010B89D33CC96D5C3DC5B6E7EC92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:8b:e1:17:04:0b:e9:8c:85:a5:8b:39:81:d5:
02:ad:bc:8d:50:00:0f:c0:b7:72:2c:85:60:32:cf:
5c:e0:95:1b:c4:e4:86:5f:53:e6:22:3a:4c:36:bb:
8f:2d:c0:78:0b:b8:41:74:8c:c3:79:d4:b1:bd:8d:
d9:d5:6c:ae:64:2b:03:c5:4a:18:65:fa:45:73:ed:
2e:95:82:fd:22:84:c8:e0:a5:3f:15:8d:39:f0:58:
e8:be:4b:af:56:67:60:23:32:7b:7f:66:09:0c:71:
b6:01:c9:83:65:89:c8:bc:c4:25:96:27:78:67:74:
5c:34:29:4a:d7:d2:11:96:0a:f7:0f:e9:15:b6:26:
a2:b0:03:70:4a:8a:14:ab:80:95:cc:d3:b4:5f:49:
87:e4:d2:a5:da:4e:af:15:fd:03:32:37:22:9d:ac:
46:12:7a:27:dd:99:7d:2a:a7:80:b6:fc:44:19:42:
6d:af:b1:57:71:72:29:f6:f4:73:06:d8:12:83:c5:
31:4f:0e:19:6a:0f:09:a2:4e:e1:54:cf:70:8a:cd:
6a:3a:33:63:b9:7b:71:ce:46:a4:82:53:c9:9a:91:
41:39:4b:d2:70:cc:15:7e:e1:13:26:e3:d6:e9:61:
f5:6c:9c:70:1b:6d:3a:d0:3c:47:df:98:fd:07:31:
8b:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:5F:21:AF:E7:79:01:0B:89:D3:3C:C9:6D:5C:3D:C5:B6:E7:EC:92
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/IF8hr-d5AQuJ0zzJbVw9xbbn7JI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.248.0.0/16
Signature Algorithm: sha256WithRSAEncryption
04:a4:b6:3e:49:f8:33:f3:be:98:c0:49:4c:4f:7b:51:4a:f2:
a2:13:25:8f:42:d4:08:e6:f8:c8:4d:f9:c1:bf:93:e9:68:65:
9f:eb:6c:38:3b:40:56:ac:1c:b3:17:66:5d:6e:09:53:41:d4:
e6:2f:7a:67:ef:3b:ea:9d:b8:2c:86:43:28:0d:8e:79:44:87:
18:37:63:d5:49:8c:cf:fc:ac:a2:3d:ef:92:b2:f4:44:4e:e4:
f4:1e:fd:67:76:21:22:43:04:16:d3:03:4a:3f:49:9d:63:1a:
2c:45:1c:6d:fa:31:27:a1:f1:99:90:0b:cb:54:e0:8c:61:2a:
ab:84:c3:90:5a:a7:9b:e1:d7:44:de:c3:af:77:9c:bc:ee:f5:
f7:98:85:a6:b7:53:0b:c4:7c:ca:53:85:19:ea:07:f6:90:a2:
7f:89:6c:b6:67:05:0b:a5:0f:98:ea:82:f5:ac:62:25:13:d2:
96:89:1d:4b:fb:c9:c5:fe:f4:4e:03:03:f7:ac:0b:27:d4:6e:
49:35:2b:fe:81:da:c8:9f:bf:8e:ba:8a:79:a8:53:64:1a:7c:
8e:6e:e0:46:40:67:ac:33:88:bd:41:5a:be:e3:68:88:91:31:
e5:f1:a3:7e:ea:f5:57:ad:65:29:ff:9f:28:11:0d:eb:11:bd:
8a:77:5f:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 12 03:38:01 2025 by rpki-client on console.sobornost.net