Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/RF0Djmk9cBSFLKiR58RDdGt3WZM.roa
File: RF0Djmk9cBSFLKiR58RDdGt3WZM.roa (raw, json)
Hash identifier: 6SUWYlInSimB7QV0wHOni2630EX38hqx63vGZawPBVY=
Subject key identifier: 44:5D:03:8E:69:3D:70:14:85:2C:A8:91:E7:C4:43:74:6B:77:59:93
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 143D
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/RF0Djmk9cBSFLKiR58RDdGt3WZM.roa
Signing time: Mon 10 Feb 2025 14:34:44 +0000
ROA not before: Mon 10 Feb 2025 14:34:44 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 203.69.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5181 (0x143d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:34:44 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=445D038E693D7014852CA891E7C443746B775993
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:3d:7e:32:e1:12:53:5d:94:4c:be:41:ca:fd:
2a:09:31:aa:bf:f1:ae:3b:0a:6b:d7:38:ff:f7:2b:
7d:f8:ed:12:30:d5:c5:d4:e5:dc:59:f8:7c:85:95:
1c:4e:25:ac:35:84:aa:d8:b0:d2:cd:38:4b:28:ee:
fa:df:79:1d:ec:62:a3:9c:72:d4:c7:60:82:95:59:
81:f6:c3:11:9b:3f:d8:17:b5:e7:0c:1e:e2:f8:f9:
d1:31:8a:4d:15:5c:64:86:53:1e:f1:92:71:f7:1d:
a6:c3:3e:51:53:e3:65:e7:8c:9e:b7:23:50:29:ab:
b8:4e:11:a6:6d:ea:b9:c7:be:bc:91:30:9c:a0:55:
10:b4:57:ec:c8:06:3c:e3:9e:e1:12:31:8e:3c:f8:
b5:03:cb:5a:4f:65:a3:f2:0f:32:85:72:37:62:a0:
a0:cd:d1:69:99:0c:39:93:0d:d2:fe:fb:75:80:35:
f8:ea:e0:e2:72:29:f6:e2:78:52:89:87:f1:6f:51:
c9:31:95:73:d9:29:03:f5:9a:bf:84:b1:63:69:f2:
23:b7:af:04:17:77:bd:ad:04:d9:69:fc:82:8a:46:
64:65:e1:f7:aa:04:72:15:6f:01:bc:d5:4a:de:b1:
b1:16:20:69:51:09:ae:6a:ea:53:0a:f2:87:30:62:
d0:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:5D:03:8E:69:3D:70:14:85:2C:A8:91:E7:C4:43:74:6B:77:59:93
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/RF0Djmk9cBSFLKiR58RDdGt3WZM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.69.0.0/16
Signature Algorithm: sha256WithRSAEncryption
09:c9:d8:f7:f3:ce:2b:46:6e:ec:1c:e8:10:fc:9f:bf:86:31:
1f:53:76:ca:bc:d8:67:4c:fd:5d:bd:8f:85:dc:be:7f:9f:88:
d8:19:88:18:b7:c5:07:22:2f:5f:61:f3:7c:31:ca:b8:5e:4f:
01:aa:86:1a:5d:e9:0b:d8:87:f5:d2:5e:0e:91:1f:4b:40:90:
4c:ca:d4:8f:22:8e:c5:d0:84:94:64:73:73:d4:ae:ab:aa:eb:
24:31:e6:17:ea:ab:73:5b:30:9b:6c:a4:9d:20:30:3b:5a:1b:
fe:1c:5c:db:4f:bd:4c:bd:76:f1:59:54:96:d1:1e:2c:93:82:
a8:2d:df:4d:23:c4:54:95:48:85:16:4b:85:a2:27:f5:28:c2:
37:fc:d5:9b:e9:da:84:4d:69:53:a0:a5:8e:85:21:70:5a:8d:
d0:38:57:68:3d:28:e2:e8:ae:8e:ec:e5:f3:1d:94:38:43:60:
bf:28:1f:29:0f:5f:a0:df:4e:a6:b1:a6:32:aa:e8:c6:f4:ff:
90:fb:8d:63:23:00:73:0c:85:60:8d:9b:34:19:f4:a4:0a:b3:
12:ff:26:d9:cd:d9:e5:ef:ed:c4:0e:f5:b3:18:1b:94:ea:6c:
cc:5d:67:b0:52:1b:7f:1e:70:42:33:2b:83:ac:b6:ba:f9:1f:
5f:56:d3:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 12 03:38:01 2025 by rpki-client on console.sobornost.net