Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/S1NeGi64cp2X86KF9nRJUSuHnl4.roa
File: S1NeGi64cp2X86KF9nRJUSuHnl4.roa (raw, json)
Hash identifier: qyZfc5GtRBa9e9BrGrG1p5c6TfkjtT+s7ZCdIQO5OLw=
Subject key identifier: 4B:53:5E:1A:2E:B8:72:9D:97:F3:A2:85:F6:74:49:51:2B:87:9E:5E
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 14A6
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/S1NeGi64cp2X86KF9nRJUSuHnl4.roa
Signing time: Mon 10 Feb 2025 14:35:08 +0000
ROA not before: Mon 10 Feb 2025 14:35:08 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 203.66.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5286 (0x14a6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:35:08 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=4B535E1A2EB8729D97F3A285F67449512B879E5E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:49:ce:c5:02:37:5b:d4:37:39:db:df:93:5a:
52:a0:46:64:c9:30:7c:70:af:1c:88:0f:c4:3a:09:
21:cf:0f:b8:bb:fe:e6:c7:47:0f:64:fa:98:93:c5:
aa:dc:dd:a6:55:a0:fb:ef:07:7b:98:f0:19:a1:77:
80:8a:d9:9e:ec:be:cb:29:f4:bc:33:89:c8:56:79:
bf:2b:a6:4e:3c:31:98:97:26:f8:e5:d3:ff:89:65:
26:34:ef:fe:a8:04:8c:e1:9e:fa:b6:35:f9:09:1b:
f5:eb:c6:66:d1:d7:68:b3:53:29:1f:6c:8f:11:0b:
ab:7f:ad:9e:31:18:f7:3b:54:08:62:6a:88:db:bc:
06:64:6b:96:91:34:e6:5d:6c:06:c5:77:06:ef:1c:
ca:9a:92:60:66:44:78:a4:cd:11:e1:f8:61:25:72:
a3:91:f5:ba:98:3c:25:f7:36:e3:11:f4:74:ce:1e:
da:01:f6:00:c7:05:1b:9d:ac:d3:38:39:d2:48:f5:
32:11:2e:9b:af:86:45:64:e3:01:70:d0:49:ba:0e:
28:bb:66:4d:9f:31:60:e6:89:2d:71:fc:f2:9f:4e:
03:b5:5e:0d:97:f9:3b:13:9f:1b:b5:c3:72:7e:b1:
0c:c9:0b:67:d0:58:db:7b:43:7e:ed:17:c5:18:1d:
6c:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:53:5E:1A:2E:B8:72:9D:97:F3:A2:85:F6:74:49:51:2B:87:9E:5E
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/S1NeGi64cp2X86KF9nRJUSuHnl4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.66.0.0/16
Signature Algorithm: sha256WithRSAEncryption
62:b7:48:b1:6e:72:a6:54:30:30:ed:14:eb:60:7b:7c:5c:b7:
97:a7:80:92:0c:ea:32:ed:12:93:c3:53:6d:e6:df:de:6e:dd:
21:20:10:6d:33:69:88:27:f6:c0:ac:fe:e7:a0:89:e6:78:79:
9a:86:c7:7f:9e:af:38:8e:85:b3:ab:33:35:6d:9f:0e:78:2e:
e9:f8:d8:dc:6f:32:a4:95:63:03:0a:a4:ad:58:68:07:00:11:
95:1f:c1:a0:55:85:49:5a:25:c4:6e:33:67:88:3e:cf:54:ff:
6a:70:2e:55:22:d9:19:60:03:bd:e7:fe:bd:fc:f7:02:e0:4c:
3e:74:95:4b:6d:8d:dc:05:6c:34:cf:cf:c7:52:21:0c:d0:91:
db:fc:a9:d6:e3:93:ae:72:c0:29:05:fc:60:08:a3:82:ea:b1:
df:04:23:f1:dc:60:04:78:9a:a9:83:af:52:5d:fa:1d:d4:15:
eb:d2:62:d5:0b:0a:60:42:c1:a2:93:ba:00:aa:5e:69:ae:ba:
19:00:01:93:ff:bd:31:39:c7:87:8b:d5:2a:a6:a5:f1:3f:60:
4a:86:09:f0:a5:12:63:d0:dc:d3:d3:a8:5e:7c:30:e1:84:52:
e2:11:e4:1c:aa:38:04:10:6c:32:23:7e:c0:c0:e6:07:07:10:
cf:e7:5a:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 12 03:38:01 2025 by rpki-client on console.sobornost.net