Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/RFsOH1Xf8C-nnLZpj-KmvHAxMdE.roa
File: RFsOH1Xf8C-nnLZpj-KmvHAxMdE.roa (raw, json)
Hash identifier: 8YW32B4qByTIqyaQI9syq+mdE0J6jFlqMUwXowOBKCw=
Subject key identifier: 44:5B:0E:1F:55:DF:F0:2F:A7:9C:B6:69:8F:E2:A6:BC:70:31:31:D1
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1468
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/RFsOH1Xf8C-nnLZpj-KmvHAxMdE.roa
Signing time: Mon 10 Feb 2025 14:34:53 +0000
ROA not before: Mon 10 Feb 2025 14:34:53 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 7500
IP address blocks: 202.39.32.0/28 maxlen: 28
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5224 (0x1468)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:34:53 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=445B0E1F55DFF02FA79CB6698FE2A6BC703131D1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:66:19:5f:ec:81:c7:c8:44:cb:91:00:eb:78:
77:04:40:c7:97:eb:2a:87:87:6b:a0:db:1e:07:a3:
cc:ee:3a:66:f6:b4:11:59:e2:6a:2f:1b:1a:0a:14:
9d:56:19:a2:94:9a:4e:09:20:f2:b7:c1:51:b8:17:
94:ef:4d:59:4d:cd:34:23:b2:e0:b5:d2:ae:0f:35:
bd:03:1c:08:60:9c:cd:25:1d:bf:d4:cb:48:ee:c1:
48:a5:23:8e:f9:46:9c:c0:99:c3:e8:39:3c:26:47:
fb:d0:6f:34:62:ca:e8:11:96:24:f7:a1:3a:5e:32:
ae:12:52:3d:5f:a0:34:8b:52:3c:82:d4:04:0e:eb:
7f:0d:5a:da:5b:d5:cd:4c:ba:19:b6:94:bf:42:6b:
a8:ac:c3:c7:d0:5e:d9:7c:ec:f0:1f:98:51:96:26:
92:37:55:e2:a3:b9:19:17:e6:51:80:b1:57:6c:fe:
67:1e:c2:d1:bb:06:00:08:cf:65:a7:a3:50:0c:3f:
7e:ba:de:07:61:66:cb:b4:78:ac:e3:63:e7:6c:dc:
7d:4a:d0:90:cd:f6:65:43:05:2b:68:94:61:a5:0d:
2c:2f:32:52:35:22:08:4e:72:14:f6:ad:0d:61:55:
38:52:fc:c1:85:3f:6d:88:e5:7c:27:64:22:b1:31:
2d:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:5B:0E:1F:55:DF:F0:2F:A7:9C:B6:69:8F:E2:A6:BC:70:31:31:D1
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/RFsOH1Xf8C-nnLZpj-KmvHAxMdE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.39.32.0/28
Signature Algorithm: sha256WithRSAEncryption
5b:5f:0d:60:cf:ea:4c:61:bb:4d:2c:81:0e:af:69:94:4b:38:
3b:54:d8:88:99:b6:df:9b:c3:1e:70:ed:3c:b5:d5:5a:3b:0a:
83:ef:cb:0c:d8:19:7b:f4:22:05:b1:0e:f7:a2:15:4b:cd:fe:
aa:15:5d:f8:6e:f2:2e:ce:94:48:dc:52:98:dc:23:fe:e0:18:
9b:2e:ff:a3:4a:b5:fb:7d:9d:c9:b6:54:3f:4a:5c:79:b7:9f:
ca:9a:fd:ad:d3:82:bb:bc:7b:8b:ca:c4:d9:15:5c:08:ab:0f:
11:b4:06:2a:55:f1:e1:5c:97:6a:f1:f6:4c:73:63:9f:82:6e:
b7:77:c3:28:f9:af:d6:23:a1:60:73:ca:c8:7d:42:7d:bc:d1:
e1:9b:a0:5e:83:86:b5:6c:43:c1:56:b1:3c:1d:c0:0e:e2:a1:
b1:4e:28:43:5e:80:c7:3b:a8:57:b9:f6:12:89:e7:92:6d:9a:
56:5f:55:27:8b:5f:d0:d1:01:5c:47:60:c4:f3:4e:fb:11:37:
ae:5d:b3:66:af:1e:1b:b4:16:26:83:59:c3:3f:87:7d:55:25:
4c:f7:80:11:8e:be:20:26:21:cc:fa:17:16:f1:eb:c8:fd:6a:
66:89:aa:a4:63:dd:c1:ec:5d:35:d6:62:91:41:42:ea:17:54:
53:82:8d:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 12 03:38:01 2025 by rpki-client on console.sobornost.net