Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/TsOojg0noUDpmsxuh2-A-PyCk-0.roa
File: TsOojg0noUDpmsxuh2-A-PyCk-0.roa (raw, json)
Hash identifier: R3/5V3KGOOm8HIYjXJS96C8I6+ZZqAyXrjmxYr8a+zU=
Subject key identifier: 4E:C3:A8:8E:0D:27:A1:40:E9:9A:CC:6E:87:6F:80:F8:FC:82:93:ED
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1429
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/TsOojg0noUDpmsxuh2-A-PyCk-0.roa
Signing time: Mon 10 Feb 2025 14:34:40 +0000
ROA not before: Mon 10 Feb 2025 14:34:40 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 220.128.64.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5161 (0x1429)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:34:40 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=4EC3A88E0D27A140E99ACC6E876F80F8FC8293ED
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:56:bc:d2:62:92:36:65:61:69:88:62:5f:88:
17:ac:d2:69:ea:1e:94:6e:61:ac:60:aa:6f:f1:30:
83:9b:4c:4d:6a:ff:90:0b:06:00:9b:f1:4c:47:ce:
8f:e9:5d:48:f6:d4:44:9f:83:90:43:11:3a:60:05:
5a:c5:dd:92:6f:85:fd:ad:39:22:aa:4b:61:dd:72:
ae:94:a3:8b:67:1e:ff:33:9e:47:5d:dc:1d:3a:13:
6f:46:aa:87:2c:02:34:11:c2:7a:69:37:f2:2c:50:
a1:6c:f4:d3:89:bc:cd:99:cc:94:84:33:11:f1:39:
4b:b8:c9:51:86:3a:78:70:73:34:ea:c6:3c:56:87:
ce:f5:7c:3b:3c:dc:45:39:cb:d6:9f:38:c8:1a:72:
c7:a5:30:b5:58:52:3e:64:31:d9:b0:79:1f:a1:d2:
07:67:4b:a3:7c:58:7b:62:39:ff:5b:73:f6:35:26:
e3:f1:b0:7e:b6:32:1f:fc:e3:b6:36:1b:39:79:42:
85:3a:cb:7b:51:c5:fa:e9:bd:4e:9e:6e:d5:df:43:
fd:9e:50:ca:2e:e9:32:7a:4f:51:33:d6:fa:88:cf:
c4:7f:b8:91:13:fc:bc:d3:9d:c5:3b:92:7b:b8:57:
fb:13:fd:d8:6e:b6:2e:93:bf:03:47:ea:27:35:b5:
a7:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:C3:A8:8E:0D:27:A1:40:E9:9A:CC:6E:87:6F:80:F8:FC:82:93:ED
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/TsOojg0noUDpmsxuh2-A-PyCk-0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.128.64.0/18
Signature Algorithm: sha256WithRSAEncryption
41:e7:03:05:3f:39:d1:eb:73:34:98:7e:00:20:d0:0e:6b:fc:
48:8b:6b:8f:ba:16:7c:49:2e:a8:94:19:54:90:65:dc:fb:b0:
06:27:49:7d:46:1d:8c:c0:aa:a8:2d:08:ed:b5:cc:c8:e7:02:
d3:89:66:cb:43:ac:a4:c5:48:cf:d8:e1:7a:1d:d5:6b:84:14:
6e:c3:f8:c0:fa:94:4d:d3:82:6c:3e:d6:99:49:d5:50:3a:f7:
b6:e7:ff:c9:39:85:f7:86:ef:53:5f:8e:f0:06:3d:cf:aa:7f:
f0:df:73:7e:42:75:e7:1b:5b:6c:7c:89:85:c6:41:70:5f:5b:
5b:83:1a:8c:2b:50:dc:5c:55:3c:a5:ac:c8:a7:8e:35:13:5a:
92:be:da:63:f9:81:dd:cf:af:73:7a:60:35:04:d7:e9:ab:da:
97:37:b8:52:7b:f8:40:dd:01:25:d1:fd:fd:6b:84:11:3d:32:
3a:85:0c:40:20:25:78:a3:85:17:bf:a2:a8:d8:b2:1f:f2:32:
80:24:1b:41:3e:5c:8a:18:68:06:83:c4:1a:a1:6a:8a:50:4f:
99:d9:fa:6a:17:b2:a1:9c:58:03:c3:40:77:88:7c:7d:e6:52:
f4:e4:f9:82:d5:3e:dc:68:ad:92:25:49:a8:31:a3:eb:8b:df:
09:df:00:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 12 03:38:01 2025 by rpki-client on console.sobornost.net