Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/Mgup0i_OT5bFOG_JZ7c95jj3aV4.roa
File: Mgup0i_OT5bFOG_JZ7c95jj3aV4.roa (raw, json)
Hash identifier: noT50XuGy6SUePhnuq9jTyh3UY/rWqotAfpiKXWg5J4=
Subject key identifier: 32:0B:A9:D2:2F:CE:4F:96:C5:38:6F:C9:67:B7:3D:E6:38:F7:69:5E
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1499
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/Mgup0i_OT5bFOG_JZ7c95jj3aV4.roa
Signing time: Mon 10 Feb 2025 14:35:05 +0000
ROA not before: Mon 10 Feb 2025 14:35:05 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131621
IP address blocks: 118.168.255.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5273 (0x1499)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:35:05 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=320BA9D22FCE4F96C5386FC967B73DE638F7695E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:e1:3b:a9:bb:65:07:a6:81:7d:c8:4d:6b:db:
5a:c4:20:8d:cc:85:4a:09:9d:49:64:a7:46:f3:2a:
47:34:1b:80:7b:54:b3:03:3a:f0:c2:ae:2b:4d:48:
f6:9c:d0:b7:94:e3:a3:2f:74:d7:6b:a3:f9:42:64:
b8:7a:d8:52:c1:d8:a7:32:e3:32:97:71:01:c5:30:
7e:82:79:b1:05:ad:5b:74:67:05:4e:aa:a4:86:36:
22:59:b5:01:86:d9:68:84:40:6c:fc:a4:44:e1:21:
68:01:68:a5:a1:da:6b:55:ce:2a:d4:07:03:88:71:
60:5a:e7:d7:d5:ed:33:d7:33:2e:ef:27:2e:23:95:
c3:f9:fc:cb:d5:7e:60:f5:ec:31:5b:07:1e:ed:33:
03:5b:b3:0c:db:69:3c:7a:5e:e6:48:00:4f:75:a2:
37:56:4c:b9:8e:77:7c:ae:d1:fc:5e:fe:a2:d3:0c:
85:f9:67:dc:b2:1f:73:2a:c3:7c:b7:04:45:b8:a6:
b8:f5:86:7f:bb:82:ed:d6:64:a0:ba:fa:24:30:e8:
4b:a1:33:5c:d6:0c:af:6c:31:f4:4e:4e:93:f0:e3:
40:02:de:6b:43:93:37:55:a5:94:3f:71:c1:c6:6e:
b7:e1:c8:04:a2:0c:bd:03:db:45:97:78:ba:74:c3:
5c:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:0B:A9:D2:2F:CE:4F:96:C5:38:6F:C9:67:B7:3D:E6:38:F7:69:5E
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/Mgup0i_OT5bFOG_JZ7c95jj3aV4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.168.255.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:34:54:0d:64:a8:7b:dc:c1:44:85:e9:8c:fd:e7:90:a6:98:
a2:9f:4a:e8:b7:27:4d:d7:97:bf:88:a2:5b:2c:63:6e:fc:b6:
43:7c:88:20:d0:be:12:a6:f2:92:68:25:fd:f4:2d:4b:4e:25:
94:6e:d5:8d:2b:64:bb:3f:2b:fc:a9:07:fa:cb:00:93:f6:81:
26:c1:39:30:36:8b:df:a1:d3:cf:17:12:ac:47:c8:95:9d:33:
79:db:04:7a:5a:49:97:90:c4:66:20:1b:59:2b:cb:4c:c7:e6:
5e:d4:68:6c:0d:db:dc:ec:dd:89:4c:56:28:20:7b:01:8c:ee:
93:10:61:dc:3c:60:da:35:08:47:8c:42:64:c0:84:34:6a:b5:
93:d0:cc:36:9b:f5:8e:3a:4e:ec:26:8e:00:5f:67:e7:52:23:
a8:0b:10:9f:3e:f9:61:bd:94:53:8e:62:d1:ba:b0:1b:cf:50:
b4:37:b5:80:0b:99:0e:7e:2d:84:8c:ce:e5:e4:f9:59:72:06:
b3:fd:3f:a4:74:3c:32:d0:5c:99:d5:a3:e4:d9:60:55:70:72:
1d:7a:1c:01:a3:b5:e3:46:db:e7:1f:83:04:11:0e:33:6d:4f:
9d:ed:bb:94:22:fb:40:bb:4e:b3:60:fe:e3:d4:37:3c:81:31:
d5:a3:9a:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 12 03:38:01 2025 by rpki-client on console.sobornost.net