Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/_KU78caTcN7hQSQxXH7I-RtWoeA.roa
File: _KU78caTcN7hQSQxXH7I-RtWoeA.roa (raw, json)
Hash identifier: L3rFqqgP3M4yTHuf2M13tczQirtaV/ZV0td1NlkPX/g=
Subject key identifier: FC:A5:3B:F1:C6:93:70:DE:E1:41:24:31:5C:7E:C8:F9:1B:56:A1:E0
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 14B6
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/_KU78caTcN7hQSQxXH7I-RtWoeA.roa
Signing time: Mon 10 Feb 2025 14:35:12 +0000
ROA not before: Mon 10 Feb 2025 14:35:12 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9505
IP address blocks: 175.111.239.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5302 (0x14b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:35:12 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=FCA53BF1C69370DEE14124315C7EC8F91B56A1E0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:44:ec:11:43:9d:24:71:2e:c3:bb:38:fd:90:
04:db:40:bf:3f:f0:71:2d:a3:cd:0d:87:13:91:41:
32:37:cd:01:cc:0f:bd:ad:bd:23:b3:a0:39:cd:90:
1e:05:5a:ee:90:a5:24:45:b4:e1:b5:65:4f:8d:ae:
dc:68:c2:75:a5:7e:0f:b5:96:8a:4d:37:e4:11:85:
80:2b:fb:b5:48:8c:3f:e8:76:a8:fc:33:56:65:8d:
7e:d3:76:f4:9e:59:8d:2e:7c:67:b3:05:54:7d:0f:
72:92:97:aa:c3:d6:30:0f:a2:72:cf:93:e5:9e:b5:
ab:e2:81:82:74:01:72:e1:2f:29:ce:98:4d:41:92:
ab:13:bf:12:cb:ab:ef:2c:5f:91:df:48:19:45:b5:
ef:c6:98:fb:55:19:95:62:af:5c:0d:bd:84:d2:63:
03:79:d6:a4:97:70:43:0e:bc:ff:9f:a0:ae:a5:80:
26:31:00:88:e2:0d:35:2c:e0:af:22:59:ba:f5:fd:
73:97:ea:0a:8a:7e:6d:da:57:cb:9e:b7:c0:12:9b:
a2:8d:e8:4c:b3:60:07:38:86:a9:cd:24:98:98:56:
20:ce:8f:a4:93:6e:c5:cf:a4:73:cb:61:a1:07:18:
02:07:3f:fd:12:f7:bb:0b:1b:ac:8c:f8:e2:88:75:
a9:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:A5:3B:F1:C6:93:70:DE:E1:41:24:31:5C:7E:C8:F9:1B:56:A1:E0
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/_KU78caTcN7hQSQxXH7I-RtWoeA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.111.239.0/24
Signature Algorithm: sha256WithRSAEncryption
49:69:a5:03:82:96:68:fe:83:c8:be:e6:ae:86:dd:29:11:99:
2f:19:48:0d:07:e7:23:1a:8d:6a:5c:18:39:eb:5b:77:3e:36:
a5:07:ef:c0:89:dd:38:dc:1f:a6:05:96:b5:f2:75:e3:de:2d:
c1:f3:b7:c0:8c:68:8a:91:a9:44:4b:f6:e0:11:70:f3:2e:2d:
a9:17:b4:fd:3a:f0:71:5f:ab:90:c4:a3:2e:7e:4e:54:b5:0e:
40:3b:28:e3:93:38:df:45:9b:c3:c0:70:b9:04:ef:ea:00:6e:
01:f7:68:f1:6e:0f:4d:be:a2:57:0e:34:d7:77:d6:d1:fe:b2:
2e:b7:07:46:3c:0c:9f:ac:e2:35:f8:fa:09:9c:b8:3c:95:16:
27:54:80:66:0e:f2:6d:7e:8c:f7:a2:78:d0:e4:db:49:07:d1:
d9:16:91:82:c6:08:89:ba:04:b8:93:0e:da:10:6a:b2:be:6e:
69:a4:bd:7e:34:0b:76:ca:36:6c:34:ec:ef:f1:b8:f5:19:70:
05:24:04:97:74:c9:2e:7e:52:a7:99:3f:e2:71:71:9b:d3:bb:
eb:02:5d:85:40:c8:84:cf:c2:5b:d6:ae:79:98:cd:b3:55:42:
f7:f7:86:1a:3e:a3:69:9d:73:b2:d0:be:f8:fd:ed:d0:ef:9b:
d4:c3:eb:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 12 03:38:01 2025 by rpki-client on console.sobornost.net