Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/kTQ-J-A8CNQyaLyRiJ6OQ-hPNuw.roa
File: kTQ-J-A8CNQyaLyRiJ6OQ-hPNuw.roa (raw, json)
Hash identifier: Be8jIGTBwFnTxHj2d9VCujMmsEashCKdjqHbsKaOKHQ=
Subject key identifier: 91:34:3E:27:E0:3C:08:D4:32:68:BC:91:88:9E:8E:43:E8:4F:36:EC
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1450
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/kTQ-J-A8CNQyaLyRiJ6OQ-hPNuw.roa
Signing time: Mon 10 Feb 2025 14:34:48 +0000
ROA not before: Mon 10 Feb 2025 14:34:48 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 210.62.248.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5200 (0x1450)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:34:48 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=91343E27E03C08D43268BC91889E8E43E84F36EC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:92:60:45:2f:56:9e:62:2f:92:d8:c0:71:1a:
91:db:17:9f:21:31:c2:3f:bb:5f:66:5b:56:7e:7b:
33:e1:9f:db:8e:ed:b1:98:1e:6e:28:ee:73:2d:91:
6a:76:ca:ff:21:97:80:ff:e0:59:49:62:25:58:a2:
c3:95:30:eb:71:55:f7:0b:78:2b:29:f6:4b:8b:a5:
d9:a5:d5:f8:a0:6e:97:52:d9:d2:c2:ce:d7:11:3a:
13:67:8e:38:f2:ac:58:4f:ee:13:d2:ec:b4:72:42:
68:e0:96:d9:76:9d:ff:f5:2c:1e:90:41:b5:92:f4:
09:25:2e:1a:82:d8:14:97:7d:a8:5d:ad:7f:57:01:
e3:49:2a:12:94:cd:79:4d:d2:f1:73:28:cc:a3:23:
94:39:86:d3:03:c3:a0:cf:d8:9c:8a:22:2d:a8:29:
60:29:05:8a:35:3e:4f:56:90:b7:04:bf:05:f0:4a:
01:ce:32:bf:c2:cc:5c:ce:60:83:45:a7:a4:52:4f:
b2:73:59:1a:c9:18:ea:d0:17:28:d5:ba:88:25:31:
9a:d0:1f:37:68:71:55:f1:70:b2:d4:20:d0:4a:6e:
f6:5a:ba:1a:b5:d5:29:21:bb:01:27:4f:54:27:11:
61:10:f1:eb:2c:9b:ee:75:30:49:e7:d7:a7:d1:45:
50:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:34:3E:27:E0:3C:08:D4:32:68:BC:91:88:9E:8E:43:E8:4F:36:EC
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/kTQ-J-A8CNQyaLyRiJ6OQ-hPNuw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.62.248.0/21
Signature Algorithm: sha256WithRSAEncryption
76:dc:c9:d1:05:d5:4d:84:29:65:dc:85:5e:e8:49:2a:fe:54:
b0:dd:8f:fe:fd:a4:d7:56:57:7a:c0:bd:a5:f7:a8:a6:5a:a1:
d2:ed:79:57:ae:1e:37:c4:45:b5:4b:db:36:e7:37:11:22:de:
cc:a1:47:3d:2a:4e:a7:e8:55:a8:d5:1c:54:57:66:ee:59:6a:
09:e2:d0:ba:e7:5b:80:93:5a:8e:6f:89:e6:2a:ad:97:32:95:
19:3a:3e:19:26:dd:e4:1e:43:dc:8e:50:87:a9:f5:9b:43:20:
40:f7:9e:53:a4:32:23:44:37:69:27:31:f3:00:88:44:f3:1d:
ec:81:d5:cf:38:fe:f2:af:d4:44:be:88:a3:8e:77:ba:cf:f4:
2d:02:e9:6b:c3:b2:bf:4f:07:73:68:3c:4d:3a:ef:8f:cb:a5:
0f:71:02:4e:5c:56:a8:e2:16:99:09:9b:ac:90:cd:05:61:a1:
9c:9c:1a:4c:ae:ec:06:8a:93:62:1a:36:11:86:25:72:3e:00:
a7:c6:7d:01:d8:3c:4c:a8:c4:65:b1:90:37:52:6e:f8:2a:87:
9f:01:02:a8:ce:95:71:96:b5:61:7b:3a:3c:45:02:13:d1:08:
80:51:a0:b2:14:fa:e2:b0:39:c9:13:86:47:19:a9:50:da:8a:
5f:6a:e8:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 12 03:38:01 2025 by rpki-client on console.sobornost.net