Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/UGxGg7DIIG7FU2y7Ky7UGpcg288.roa
File: UGxGg7DIIG7FU2y7Ky7UGpcg288.roa (raw, json)
Hash identifier: iK0tkWhXYxaAWxnPGQbzEVMYU56pDhO0RKh5IEkB15I=
Subject key identifier: 50:6C:46:83:B0:C8:20:6E:C5:53:6C:BB:2B:2E:D4:1A:97:20:DB:CF
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1464
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/UGxGg7DIIG7FU2y7Ky7UGpcg288.roa
Signing time: Mon 10 Feb 2025 14:34:52 +0000
ROA not before: Mon 10 Feb 2025 14:34:52 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 61.216.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5220 (0x1464)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:34:52 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=506C4683B0C8206EC5536CBB2B2ED41A9720DBCF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:b3:4c:7a:e9:7c:42:94:b3:c6:8d:07:28:32:
3b:62:8d:b9:e5:f5:17:09:7a:69:90:f3:50:d4:b1:
c6:96:f5:64:12:31:0a:7a:0b:e7:03:30:64:e9:5d:
61:f9:0c:d2:47:57:6f:47:31:58:7c:bc:fd:41:c3:
16:d5:84:ba:2c:57:38:79:ce:10:27:24:62:6e:62:
fe:5a:97:1d:53:d2:4f:6e:6c:4d:84:da:2d:1a:cb:
40:dd:13:21:5b:fa:5b:30:b6:c4:09:33:00:71:4a:
ea:69:d1:1e:38:a8:95:46:b0:35:f5:c6:eb:bf:03:
9b:6d:63:74:20:dc:a3:4c:29:f8:14:ec:b0:51:53:
93:8d:76:65:06:3c:75:df:c3:53:51:7c:0c:a2:8f:
b9:97:6b:71:11:9e:4d:65:75:15:f5:0c:9a:a0:b1:
c4:41:1b:4e:6f:f1:a3:b7:da:9c:66:4b:35:dd:db:
38:61:3d:d4:ad:b9:8a:7a:c1:02:99:a4:7b:97:b4:
ce:85:1f:9c:40:cf:5b:6b:68:95:b8:42:5f:81:77:
b9:25:3d:c1:01:50:81:27:fb:b3:b6:12:e8:3f:ad:
32:20:d5:bd:e0:29:5c:9b:1e:a1:b0:64:0b:f2:25:
6e:11:43:83:62:39:c8:fb:a3:50:bf:d7:cb:75:54:
90:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:6C:46:83:B0:C8:20:6E:C5:53:6C:BB:2B:2E:D4:1A:97:20:DB:CF
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/UGxGg7DIIG7FU2y7Ky7UGpcg288.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.216.0.0/16
Signature Algorithm: sha256WithRSAEncryption
6a:6c:e2:7b:8f:f3:68:ec:0f:07:cf:b6:e3:d8:8a:04:63:2b:
de:fa:2a:44:4e:6b:26:17:b8:8b:b3:cd:b9:7a:ac:1e:0a:1a:
c9:5e:29:60:15:dc:82:32:e7:06:40:3a:f3:55:84:ba:e0:3c:
b6:bb:2b:18:f4:14:e2:25:cc:af:52:93:58:26:62:6f:25:e8:
a5:de:2c:e1:7a:a7:ee:59:ff:10:64:b9:fb:51:90:f5:82:42:
d4:a0:ee:9c:5a:55:6f:07:d1:e4:07:95:fe:0a:79:a3:78:b6:
d4:77:f6:ee:b5:16:a6:98:bb:ef:b5:16:17:f7:54:1c:f7:a4:
49:35:65:bb:29:6c:1c:8b:8b:8f:cd:86:a8:ee:c2:9c:c6:36:
c9:52:73:4e:12:0b:e9:03:b8:b8:88:b8:a7:70:87:07:de:b7:
ff:56:56:c1:6c:93:9c:df:2e:98:40:9c:80:fd:e1:3b:75:8a:
be:95:dd:6e:8b:c8:2a:9f:4e:ff:b2:e5:a2:38:ff:bd:6a:2e:
a1:c7:dd:68:af:f0:30:df:df:64:13:fb:60:9f:f5:bd:5e:8a:
b6:6e:79:9e:33:53:c8:88:bb:e0:b6:c2:29:47:84:83:de:6d:
76:8a:1d:1d:d8:01:1b:b1:76:41:b0:40:8b:aa:ee:e7:49:c1:
9a:e7:33:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 12 03:38:01 2025 by rpki-client on console.sobornost.net