Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/b2Nop4FVebEV9_HemCIU3ZtId-8.roa
File: b2Nop4FVebEV9_HemCIU3ZtId-8.roa (raw, json)
Hash identifier: c9txeITcJjGtJ/VwFSRltHs20995/W9P+6313h/HK+o=
Subject key identifier: 6F:63:68:A7:81:55:79:B1:15:F7:F1:DE:98:22:14:DD:9B:48:77:EF
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1482
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/b2Nop4FVebEV9_HemCIU3ZtId-8.roa
Signing time: Mon 10 Feb 2025 14:34:59 +0000
ROA not before: Mon 10 Feb 2025 14:34:59 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 220.128.128.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5250 (0x1482)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:34:59 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=6F6368A7815579B115F7F1DE982214DD9B4877EF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:84:d5:d0:2f:81:72:0f:63:00:7b:34:9d:bb:
0b:87:7d:e4:c9:0c:cb:5d:b3:37:e3:52:ce:c4:60:
68:e5:f4:1a:23:6d:a9:27:ea:a7:3b:8b:6e:be:51:
b0:88:3e:2a:e7:7e:b5:8b:0d:0b:fa:6f:05:88:2f:
be:de:8f:a7:7d:3e:e8:30:25:de:d4:ff:76:d4:7c:
b5:8e:77:46:79:5e:21:5f:cd:06:8e:8d:b0:c8:f0:
8e:1a:5b:68:5e:59:03:d2:f7:a5:cb:b7:a8:b8:ea:
37:df:84:02:27:8a:fd:94:bc:68:4b:1d:48:f7:a5:
74:8a:33:b5:ca:d4:83:70:53:23:e4:af:1b:d9:08:
a6:50:0c:7a:51:ab:a6:b6:f7:b8:0a:22:de:51:81:
95:40:e6:4e:64:19:d8:56:99:a8:19:97:bb:60:4c:
e0:7f:7c:55:d6:aa:9a:17:73:79:19:c9:63:6a:51:
7d:d0:92:4e:fd:f0:a6:42:f4:2d:24:fb:dc:11:ee:
f3:42:46:3d:38:79:4c:92:e3:64:b4:ff:60:b7:a9:
54:a6:3b:7f:70:4d:2f:3d:5b:1a:78:a0:21:22:6d:
ba:36:64:6c:e5:b5:17:65:12:51:cf:57:32:2a:ee:
3b:a0:d0:43:d8:22:4c:e0:8c:83:22:57:89:e8:f1:
d2:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:63:68:A7:81:55:79:B1:15:F7:F1:DE:98:22:14:DD:9B:48:77:EF
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/b2Nop4FVebEV9_HemCIU3ZtId-8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.128.128.0/17
Signature Algorithm: sha256WithRSAEncryption
1d:fa:a1:10:65:9f:f6:82:38:bf:0f:93:41:8e:cb:ed:37:2a:
8e:b3:c3:5e:05:c2:09:c2:84:2c:69:6a:ca:f4:03:40:a1:85:
1f:df:94:d8:4e:1b:b9:c7:17:b3:0c:23:a6:52:90:2a:e8:94:
3c:4c:6e:56:11:2c:2e:cb:ac:8f:5b:05:a5:b7:14:b6:cb:9a:
83:b0:a5:c3:7a:5e:4e:28:3c:69:ac:fb:cb:59:8c:ca:07:61:
78:5d:3f:d5:1f:93:3f:ba:0c:92:9b:dc:06:6b:98:dc:62:d4:
ff:50:1b:c9:9f:3d:2b:7f:35:cc:58:ab:c4:68:50:6e:e4:92:
1f:cc:19:f5:2c:6b:64:ff:d4:4c:7b:53:a8:43:d8:9c:0b:13:
9f:85:b5:8c:8a:9e:73:d0:8c:db:91:db:c2:fc:4b:b2:74:1f:
c3:03:1e:f6:83:40:32:9c:4a:8a:e2:42:1c:ed:29:f8:b3:5f:
58:9d:de:5a:e0:96:65:b5:6c:6a:ea:74:b8:3f:1a:34:90:01:
57:f4:07:11:fb:c5:1b:e5:c3:63:3d:22:7d:9e:46:50:66:11:
77:1f:55:9c:69:72:5d:b8:f4:d9:6c:f2:e8:94:7a:8b:8e:70:
d2:d5:e0:24:87:d6:9c:2c:13:e3:d6:3d:eb:9f:51:4c:c1:5d:
49:8e:99:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 12 03:38:01 2025 by rpki-client on console.sobornost.net