Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/n3n8NvHg3oB_T0YQxjbzCYD_K7Q.roa
File: n3n8NvHg3oB_T0YQxjbzCYD_K7Q.roa (raw, json)
Hash identifier: KYakp5riZUudyOCbunn7g4QVdqV87V4pmdt3UgfogLI=
Subject key identifier: 9F:79:FC:36:F1:E0:DE:80:7F:4F:46:10:C6:36:F3:09:80:FF:2B:B4
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 148C
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/n3n8NvHg3oB_T0YQxjbzCYD_K7Q.roa
Signing time: Mon 10 Feb 2025 14:35:01 +0000
ROA not before: Mon 10 Feb 2025 14:35:01 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 137280
IP address blocks: 203.69.33.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5260 (0x148c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:35:01 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=9F79FC36F1E0DE807F4F4610C636F30980FF2BB4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:40:2c:d4:84:76:67:aa:1d:ee:3f:54:94:c5:
9d:47:0c:8e:65:cf:1a:61:6b:c9:67:93:a1:75:d7:
52:d8:52:38:b8:d7:b1:05:50:a3:55:3f:92:93:59:
8c:92:92:4b:40:b5:7d:83:b8:c6:6b:00:be:7f:de:
3b:b6:08:d9:95:a1:a7:87:42:df:e5:f9:cc:ac:04:
d8:e6:79:ed:c4:e3:b2:56:31:0c:49:07:e5:f5:15:
4f:fe:70:b0:f3:fa:2d:1f:4f:0e:62:d1:ce:18:a1:
5d:9f:94:b7:aa:1e:61:5a:47:12:16:7b:89:b9:07:
fc:1d:3d:82:55:2d:6b:68:1a:77:f2:82:e9:6f:8c:
a9:ad:be:38:fd:25:c8:d8:9e:c7:1f:51:08:60:e8:
e2:80:74:35:a0:81:41:4a:6a:aa:79:61:47:5d:a6:
b1:bb:37:33:2e:4e:3f:9d:18:c7:c9:30:d7:1d:30:
b4:83:eb:05:a7:84:e3:e7:57:ce:90:27:d8:23:7a:
db:74:0d:24:e9:c7:b6:a1:d8:fd:c8:7c:c0:8c:f5:
4b:ea:a4:85:7e:ab:de:f7:14:aa:d9:dd:63:59:e5:
d3:52:17:88:b7:9c:49:8f:e9:80:6b:dd:ea:58:d1:
8c:6a:b6:17:7a:3e:10:52:24:92:b7:ee:27:43:46:
24:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:79:FC:36:F1:E0:DE:80:7F:4F:46:10:C6:36:F3:09:80:FF:2B:B4
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/n3n8NvHg3oB_T0YQxjbzCYD_K7Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.69.33.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:cc:b5:ce:44:6e:ef:1c:6e:cd:86:26:a9:41:fc:8e:e1:58:
b6:4f:2a:69:fa:a1:c2:99:8f:36:b8:98:fe:38:fa:f1:83:84:
08:4f:e9:74:85:62:49:46:97:fd:bd:8b:77:1e:cd:ff:2e:05:
84:41:8b:c2:84:22:3b:00:b6:cf:56:9b:10:81:4d:95:f4:da:
0b:8f:49:82:85:bf:1f:d4:2d:57:6c:b8:6c:46:bd:6e:10:c7:
a6:4c:a9:ce:3b:0c:d9:a2:87:97:e6:93:b7:b6:96:20:a6:50:
71:ea:35:30:bf:b6:fc:41:92:e1:66:6c:07:95:bf:dd:13:df:
e9:3b:89:64:5e:e4:bd:33:a1:b3:59:c4:bb:5b:aa:22:1b:97:
e3:f6:a7:76:8a:53:85:57:80:25:ed:43:8d:e1:e7:e4:77:cf:
85:02:6b:11:2a:2e:db:79:01:39:df:c6:3f:5a:4b:8f:20:b8:
a5:e1:82:1d:cd:60:6a:c5:ac:3b:5f:2a:b2:4d:50:18:49:7a:
36:aa:f4:fe:f6:13:46:27:9a:be:c0:10:03:ce:ca:ac:8d:85:
36:e0:bb:a0:35:67:92:a8:f4:4a:31:f4:5b:8f:bb:37:d5:74:
0e:53:c3:4d:ad:24:e2:62:c5:4b:e0:4c:13:06:58:7e:17:8f:
7f:2d:38:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 12 03:38:01 2025 by rpki-client on console.sobornost.net