Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/h0ROtEmifgHpk_Vj3VtdEkDM-Mo.roa
File: h0ROtEmifgHpk_Vj3VtdEkDM-Mo.roa (raw, json)
Hash identifier: B2PGTahffTsTCy0wXjVKJr7dLdjjmTXGBAv5b4PzahU=
Subject key identifier: 87:44:4E:B4:49:A2:7E:01:E9:93:F5:63:DD:5B:5D:12:40:CC:F8:CA
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 14BA
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/h0ROtEmifgHpk_Vj3VtdEkDM-Mo.roa
Signing time: Mon 10 Feb 2025 14:35:13 +0000
ROA not before: Mon 10 Feb 2025 14:35:13 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 202.39.64.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5306 (0x14ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:35:13 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=87444EB449A27E01E993F563DD5B5D1240CCF8CA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:4e:d4:3d:30:0d:27:bb:4f:2a:bb:34:dc:fa:
d9:60:8f:85:cf:cb:2c:34:5c:1a:3e:b0:2a:a4:43:
66:49:2c:a6:4d:80:e7:f4:7b:c0:40:b0:0a:52:4b:
e1:3c:76:a3:91:11:64:d7:3b:2d:56:c7:41:9d:2c:
d2:86:02:d7:02:71:3d:b6:b6:56:a4:ed:c6:38:24:
7a:92:78:e6:32:5d:22:6b:4b:48:af:93:7b:b8:9b:
e3:3e:27:e2:0c:5e:c8:5d:0b:c1:7e:03:cd:70:d3:
59:59:fa:c3:68:b8:ad:e3:e1:78:4c:4a:1d:ae:00:
05:54:62:a1:aa:3f:35:0f:65:e7:36:7d:bd:d7:f1:
cb:7a:5a:63:3e:f0:3c:e5:e3:9c:b3:03:fc:42:52:
be:d2:96:b0:5c:d5:a6:d8:fe:35:db:d1:bf:26:79:
27:87:64:12:9a:e4:a7:0e:54:72:8c:34:94:a7:c2:
1c:32:05:1f:80:f4:27:24:98:4a:c4:d0:16:a2:3d:
35:ef:08:0f:2f:0e:ef:94:0e:3b:d5:f2:22:70:07:
4d:95:7e:89:58:65:48:dc:e5:5a:41:bd:2f:1e:38:
ce:f9:2f:47:da:36:8d:cb:e8:e2:3c:1e:cb:64:5e:
6d:ac:e1:73:58:4a:9f:9a:2f:65:07:ac:b2:06:9b:
a3:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:44:4E:B4:49:A2:7E:01:E9:93:F5:63:DD:5B:5D:12:40:CC:F8:CA
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/h0ROtEmifgHpk_Vj3VtdEkDM-Mo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.39.64.0/19
Signature Algorithm: sha256WithRSAEncryption
8c:54:b8:72:37:86:76:d2:8d:93:a0:72:4e:d7:9d:17:df:8d:
78:9f:97:8b:ff:54:0a:4c:72:a2:6e:cc:73:dd:b1:db:ba:bd:
f7:36:d6:68:31:3b:04:1f:ae:82:57:81:b1:53:61:d9:f9:5a:
88:ea:4e:54:e7:f8:a0:8d:d4:d1:c0:e2:df:39:4b:06:4f:99:
ac:b5:31:d1:da:1d:99:6d:fc:1c:86:38:84:7b:07:0f:b4:5b:
d7:d1:8d:1c:c2:d8:53:92:4b:98:58:f0:bc:13:5c:85:76:65:
24:f6:f5:3f:2c:15:18:c9:33:ae:ba:bc:93:ad:d5:6d:c7:8a:
8d:13:6b:75:75:cc:a0:7e:63:ba:8f:eb:7d:1e:3e:db:cb:a8:
e2:6a:68:83:f9:8d:35:4d:41:ab:b6:91:2e:c8:b6:0a:07:f9:
cb:54:78:3c:ea:7b:fe:d2:0a:80:2d:e9:49:2d:b2:20:ae:66:
8a:05:71:1e:9f:4c:2c:e8:95:f3:b0:db:78:12:77:70:cf:c0:
6b:52:f5:5a:95:f3:32:db:a6:e2:7f:f3:0a:3a:e8:1c:00:10:
11:c6:13:9e:e4:2e:09:fb:d0:ca:02:6b:4c:a5:86:71:8b:d8:
76:e9:ae:ad:78:fc:21:2d:6b:3d:95:66:c4:61:66:29:0c:5a:
d9:df:6a:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 12 03:38:01 2025 by rpki-client on console.sobornost.net