Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/hnAsb5OXDN_P8uSf0PPxCsDjFOg.roa
File: hnAsb5OXDN_P8uSf0PPxCsDjFOg.roa (raw, json)
Hash identifier: 3rq+4a7xwvL+Qt2wJGGIPfvahIQbtHD9MxpqV5cQct0=
Subject key identifier: 86:70:2C:6F:93:97:0C:DF:CF:F2:E4:9F:D0:F3:F1:0A:C0:E3:14:E8
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1432
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/hnAsb5OXDN_P8uSf0PPxCsDjFOg.roa
Signing time: Mon 10 Feb 2025 14:34:42 +0000
ROA not before: Mon 10 Feb 2025 14:34:42 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9505
IP address blocks: 203.160.224.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5170 (0x1432)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:34:42 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=86702C6F93970CDFCFF2E49FD0F3F10AC0E314E8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:26:53:7b:ad:7d:ca:e2:f6:90:a2:75:40:b5:
82:1b:06:e2:1c:de:f8:7b:73:55:e6:98:cf:dd:94:
b3:23:bd:09:1c:f8:3e:2c:b4:49:61:c4:5d:a9:fc:
8a:67:e3:32:a0:c0:4d:b1:a0:ed:aa:95:fa:70:4d:
af:21:af:98:9e:b2:ed:10:75:0e:30:2b:ae:84:92:
1a:c4:2d:40:5f:f1:3f:bb:84:80:92:bd:bf:e8:9f:
9a:42:59:bb:f6:8e:6e:6a:d5:e3:dc:3d:93:99:2d:
b1:4c:8a:d0:47:8d:f9:b6:08:b2:22:0a:94:25:65:
10:82:fb:55:cd:fa:a2:e3:d5:15:10:29:36:eb:dc:
d6:be:48:2d:6a:1a:70:c9:f0:c1:7f:7c:66:90:60:
9c:90:36:dd:e6:12:c1:88:c6:9c:7c:44:ff:21:f7:
cb:26:e6:70:9d:84:0b:a4:77:28:bc:b8:57:12:f1:
ab:13:8a:89:62:0a:9f:7b:ae:26:6b:1f:d0:86:10:
04:e1:f5:e6:dc:28:17:fa:fa:24:8d:73:2f:9a:31:
c9:e0:37:f2:49:da:c2:90:18:cb:92:b8:a0:78:4b:
53:db:96:8f:67:53:5f:42:b2:e4:2e:c6:88:d3:e1:
b6:15:1a:79:d3:04:b4:12:76:90:ed:50:ea:82:18:
cf:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:70:2C:6F:93:97:0C:DF:CF:F2:E4:9F:D0:F3:F1:0A:C0:E3:14:E8
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/hnAsb5OXDN_P8uSf0PPxCsDjFOg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.160.224.0/20
Signature Algorithm: sha256WithRSAEncryption
a0:e0:9b:50:9a:1d:f5:8f:15:02:04:19:dd:c9:6c:78:95:df:
f0:88:00:ae:93:1f:9d:e6:f6:98:85:ea:2f:26:fe:d5:eb:bf:
56:ce:22:e2:28:c1:98:49:58:ff:1a:1a:48:0d:f5:44:71:c8:
30:4e:0f:34:36:82:fd:5b:c9:25:58:cc:73:fe:da:99:dc:05:
c7:15:5c:77:10:3d:8a:40:f2:c1:a1:08:5f:d8:26:93:84:f3:
8b:f1:ce:a2:ca:b5:e8:cc:25:d1:81:12:b2:56:3d:de:8a:96:
c4:f9:b0:64:bd:20:a7:9d:d4:dc:06:cb:ab:64:f7:2d:61:44:
51:b7:dd:c2:1a:0f:ab:a3:54:cc:4d:a7:d9:26:9a:38:62:f7:
07:e5:59:7f:07:32:d7:93:26:88:d9:fa:6e:04:c5:a2:47:5e:
2c:43:b5:f5:a9:ea:df:9d:5c:cb:cb:a3:3b:27:2d:5a:75:71:
31:bd:0e:37:46:8e:15:5a:f0:9f:78:38:ec:82:92:0e:d9:b1:
74:4b:d1:56:f7:83:ae:39:b4:b8:86:32:d4:7d:ec:ff:02:34:
3e:5d:14:0d:e4:d2:a9:3e:2c:c0:5d:a3:f2:c0:9d:33:37:af:
27:ac:22:6e:36:ac:35:d1:86:78:cc:7e:a6:c8:16:ac:d5:b4:
c5:da:8a:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 12 03:38:01 2025 by rpki-client on console.sobornost.net