Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/K4LPa_rgK8Ng6jLunTbnUXCAd7g.roa
File: K4LPa_rgK8Ng6jLunTbnUXCAd7g.roa (raw, json)
Hash identifier: 9Sk4fHCi3t66rxyTzFtOmVHhaydfnovrsbMLRDy8nhM=
Subject key identifier: 2B:82:CF:6B:FA:E0:2B:C3:60:EA:32:EE:9D:36:E7:51:70:80:77:B8
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1495
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/K4LPa_rgK8Ng6jLunTbnUXCAd7g.roa
Signing time: Mon 10 Feb 2025 14:35:03 +0000
ROA not before: Mon 10 Feb 2025 14:35:03 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 202.39.0.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5269 (0x1495)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:35:03 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=2B82CF6BFAE02BC360EA32EE9D36E751708077B8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:5b:3a:1a:e2:4e:a3:ad:49:a6:ad:13:38:c9:
d2:47:0f:31:46:3b:d8:c7:a5:30:9e:9b:70:74:32:
6c:1f:35:d9:1e:b6:66:6c:f8:1e:c4:67:58:48:0f:
69:e4:b3:cc:48:cc:fb:b3:d5:d6:42:04:7b:e7:0e:
4c:29:77:3e:5f:60:e5:2c:8c:a2:e0:bc:1c:b7:fa:
f9:86:7c:42:ee:d5:c0:1b:fc:d9:f9:6a:f6:3f:39:
19:40:f0:5e:0d:5f:21:f1:c0:b7:08:c9:10:cb:1f:
46:3e:1e:3c:08:21:17:db:6d:f6:71:be:db:41:87:
f1:8d:b9:fe:34:9b:91:2f:3b:80:17:8a:c6:2d:0e:
75:21:45:ca:95:e2:3c:f2:de:a1:74:de:f0:0b:88:
6b:6f:72:bb:51:77:a1:38:8e:e9:cf:e4:fe:5d:14:
15:8c:4a:bd:27:73:aa:27:3a:1e:a6:98:d8:0f:72:
b8:07:13:fb:bb:b8:b1:82:f6:b4:81:64:ca:9e:d2:
8d:5b:7b:a5:90:93:13:f5:12:45:31:0e:06:36:d6:
60:16:6e:77:6f:f9:e4:5d:b0:f2:26:36:0f:a2:9f:
16:58:f2:94:1f:28:25:d4:75:a3:cd:43:09:99:5f:
af:d3:87:e1:df:54:8f:51:6e:87:04:e8:70:63:64:
34:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:82:CF:6B:FA:E0:2B:C3:60:EA:32:EE:9D:36:E7:51:70:80:77:B8
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/K4LPa_rgK8Ng6jLunTbnUXCAd7g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.39.0.0/18
Signature Algorithm: sha256WithRSAEncryption
94:6f:11:3a:58:51:ff:e2:29:8f:ae:3d:de:db:e1:84:5d:76:
48:da:e5:ca:3b:96:e6:93:55:a9:a6:10:16:c3:88:a9:ac:b0:
70:ea:bd:b3:2e:6c:1c:c8:34:90:56:7a:76:26:83:6a:cf:30:
c6:d6:ee:4d:a2:7d:3b:e1:82:71:90:e1:66:01:c9:6b:a0:4c:
a1:19:04:33:f9:f3:c4:26:9a:b3:a0:4f:a9:3d:0c:33:13:be:
54:b6:26:8c:fa:b5:ed:db:33:48:2d:da:0a:a1:22:f3:4f:a6:
4a:7f:fe:73:f7:7c:03:59:e5:e8:51:37:0b:81:29:7f:91:ab:
9a:f9:ad:dd:93:6b:3f:5a:bd:d8:16:39:ff:26:0b:e1:46:b6:
98:c8:19:2c:66:db:3c:0a:3f:cc:74:e8:26:9c:ee:bb:03:2c:
bc:79:bc:85:63:8f:d5:ef:34:7d:aa:40:9e:db:0d:6a:ff:f8:
a0:5f:65:fd:bc:34:e3:17:df:f1:2e:32:e1:8d:72:4c:b4:c2:
57:df:c7:7e:2a:3e:fd:2f:13:8a:ef:be:84:a3:e6:77:8d:01:
5b:55:04:7d:30:f0:a6:8e:ba:e3:5d:c6:35:75:4e:9d:97:4b:
14:7d:1e:da:c2:30:62:b6:49:84:ac:5e:04:61:ae:94:3d:32:
92:c6:e8:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 12 03:38:01 2025 by rpki-client on console.sobornost.net