Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/PN5eQ3VLxtGS6HsJJHZoMuRm5jU.roa
File: PN5eQ3VLxtGS6HsJJHZoMuRm5jU.roa (raw, json)
Hash identifier: nG41jQQffcZKifFdPOgfY0hkqZKeYSHmc3PlTIO3klk=
Subject key identifier: 3C:DE:5E:43:75:4B:C6:D1:92:E8:7B:09:24:76:68:32:E4:66:E6:35
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1436
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/PN5eQ3VLxtGS6HsJJHZoMuRm5jU.roa
Signing time: Mon 10 Feb 2025 14:34:42 +0000
ROA not before: Mon 10 Feb 2025 14:34:42 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 220.132.0.0/14 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5174 (0x1436)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:34:42 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=3CDE5E43754BC6D192E87B0924766832E466E635
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:ac:39:e0:f9:49:dd:90:d7:9d:03:58:d8:fc:
5f:81:48:0f:be:91:aa:5e:b8:0d:44:fe:be:31:63:
38:70:fe:23:d5:8b:f1:ac:91:af:88:52:6c:a3:3e:
ac:43:e8:c7:35:7f:a1:f3:02:14:4f:bb:11:c9:39:
1c:61:6e:6d:57:a1:58:53:fd:38:2e:3c:e4:04:5c:
03:9c:24:7d:72:b8:42:02:59:4f:6e:04:be:10:20:
8a:21:24:d0:6f:ee:bf:39:87:6c:76:f6:fa:84:77:
16:11:39:48:44:ee:bf:18:27:fd:29:7b:2d:49:26:
ac:b4:31:4f:52:00:68:a2:58:2c:da:55:cc:03:23:
d8:0d:18:19:fb:80:bf:7e:1b:9e:69:52:db:f3:df:
4a:74:f5:bc:99:ab:ab:a3:1f:96:60:a2:82:ee:40:
0e:b3:1e:d3:38:24:ef:8c:1f:7a:9b:67:17:c4:1f:
24:bd:8b:88:f1:1d:f9:ef:e9:c3:da:c6:f9:a0:87:
40:bd:31:28:be:76:00:39:4c:bc:b9:36:9d:e5:71:
64:cb:ad:0f:d9:ca:35:28:89:75:b8:23:f1:68:92:
97:b3:c4:a7:0b:c7:89:fa:51:c4:80:c7:9b:d6:bd:
79:55:86:83:82:97:76:17:ce:c1:90:9c:46:81:cc:
30:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:DE:5E:43:75:4B:C6:D1:92:E8:7B:09:24:76:68:32:E4:66:E6:35
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/PN5eQ3VLxtGS6HsJJHZoMuRm5jU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.132.0.0/14
Signature Algorithm: sha256WithRSAEncryption
3f:45:80:0d:5d:c9:5e:a1:cb:aa:7c:46:ac:4d:75:6b:29:d1:
56:c0:cb:88:cb:dd:11:14:49:89:a7:32:7a:10:ab:c0:a3:6a:
53:0a:25:24:1c:f8:c9:1e:af:ed:2c:4f:a6:5a:4d:42:79:98:
a8:0a:3d:70:ce:7b:d4:23:c0:e1:b7:dc:5b:24:23:c4:6e:81:
32:eb:f5:2a:ca:75:59:d1:bc:ec:68:65:02:e6:91:c0:12:9e:
1a:5d:7a:4e:5b:ec:14:ca:09:40:db:a2:10:e4:16:25:31:6f:
a1:53:00:1e:d7:88:43:b9:2c:e2:d4:11:63:98:a4:b6:7a:31:
6a:69:ca:52:c5:25:59:00:c5:48:c6:a8:62:9b:af:ea:9c:c7:
d0:6f:c7:b1:af:2d:14:c0:4a:c1:2d:6b:cf:c5:14:5b:24:1e:
a8:5e:27:11:78:fd:81:0a:70:fe:1f:2b:4a:79:7c:6b:a1:73:
be:28:01:2d:2a:ba:d5:98:5e:59:5e:37:d3:10:d2:9a:99:e0:
d3:ac:5b:14:57:6e:11:c2:00:30:cd:7e:98:3d:d8:0f:3a:f5:
5a:6a:db:a5:29:f2:34:6c:9f:b9:83:46:5d:68:6b:24:75:19:
41:ab:6f:fe:84:ed:f3:83:47:db:ca:ce:ce:97:2c:21:45:e0:
44:cf:a5:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 12 03:38:01 2025 by rpki-client on console.sobornost.net