Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/IMF19UN-vt_7rYqS1QCdXFwojRU.roa
File: IMF19UN-vt_7rYqS1QCdXFwojRU.roa (raw, json)
Hash identifier: EA3d+2ethyR5hSlamemcjJkpgehTUJG2mbccSZNPkIM=
Subject key identifier: 20:C1:75:F5:43:7E:BE:DF:FB:AD:8A:92:D5:00:9D:5C:5C:28:8D:15
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 14B7
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/IMF19UN-vt_7rYqS1QCdXFwojRU.roa
Signing time: Mon 10 Feb 2025 14:35:13 +0000
ROA not before: Mon 10 Feb 2025 14:35:13 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131660
IP address blocks: 203.74.220.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5303 (0x14b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:35:13 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=20C175F5437EBEDFFBAD8A92D5009D5C5C288D15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:cf:b7:55:2c:df:13:97:9c:0f:65:20:09:fd:
ee:e9:f4:be:96:47:b0:25:56:94:80:c9:7f:27:9d:
af:e3:a1:b8:c4:9e:c3:1f:70:5b:73:78:5c:12:73:
19:82:ed:62:7f:aa:5f:9f:5d:ce:5d:fd:c6:bc:c6:
f7:77:1a:a4:29:1e:93:5c:9f:c4:38:a8:a7:3a:96:
64:7b:cf:ca:f2:1d:63:69:49:9b:75:fd:66:37:88:
5b:0f:44:50:e3:bc:d4:28:fc:0b:e7:19:66:5b:07:
d7:de:34:7c:55:cb:c0:05:89:b0:4c:c5:7f:96:b2:
64:27:cd:e9:4b:f3:50:57:0c:f1:46:aa:1e:81:98:
b9:05:b5:99:12:bf:11:9a:b2:32:e7:54:7d:30:79:
12:02:dc:97:6e:43:33:f1:2f:63:4b:75:56:6d:e2:
6e:8a:46:1b:23:5f:08:ec:95:22:07:c3:f8:e4:d7:
74:d0:29:eb:c1:a2:a0:0d:7c:33:be:06:8e:67:45:
02:cc:03:64:78:29:95:37:00:28:69:0e:ab:8c:e5:
54:51:99:4a:de:87:0f:d7:96:7d:4f:78:f4:b2:63:
9c:7b:68:30:92:83:d4:f6:22:77:22:95:af:e8:c3:
f6:d3:f0:cb:3a:0c:26:d0:fc:aa:d2:51:ff:57:02:
70:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:C1:75:F5:43:7E:BE:DF:FB:AD:8A:92:D5:00:9D:5C:5C:28:8D:15
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/IMF19UN-vt_7rYqS1QCdXFwojRU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.74.220.0/22
Signature Algorithm: sha256WithRSAEncryption
53:f0:ef:ce:2d:07:70:37:50:07:d3:36:12:d9:29:d4:be:97:
86:0d:97:7c:87:da:8f:a7:3d:50:23:9d:5e:8c:39:21:0a:1f:
b1:03:8e:14:94:8d:99:5a:d4:3c:8b:3b:d6:db:3f:c5:8f:27:
3c:8c:19:78:3b:51:37:9b:bf:b8:b8:f0:29:57:14:93:0e:13:
c6:43:36:a4:d2:57:3d:52:25:07:21:66:e4:2b:49:dc:17:4c:
13:fe:20:c5:e5:e4:16:e3:9a:2a:a0:1e:8b:ba:f7:8b:5f:39:
eb:02:4c:0a:a6:16:a8:ea:b9:9e:0f:7a:bc:80:0e:2f:31:b8:
50:d5:cd:50:e2:d5:a2:4e:8a:1e:00:2e:2b:d8:2c:1e:25:a0:
40:cb:84:ef:60:d2:db:58:41:f1:fc:dd:7e:dd:9b:42:91:e8:
dc:7b:6a:29:4d:8b:a7:58:b4:e4:5a:32:2c:d3:e3:a4:ca:9f:
81:7c:4b:8b:07:c4:91:ce:74:0d:9c:1a:6d:b7:ed:1b:bc:ef:
45:63:2b:d6:6f:a1:a0:54:91:a8:38:3d:d9:13:65:50:c3:a9:
cb:1a:25:13:64:ab:b6:e0:9f:c3:63:04:7b:19:ba:40:ee:2b:
85:a4:36:38:d1:67:40:f2:37:92:52:2f:bc:e5:6c:c4:b1:62:
8b:6c:91:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 12 03:38:01 2025 by rpki-client on console.sobornost.net