Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/nAfWYNpmhBdvPQJe8s9A0yluL4g.roa
File: nAfWYNpmhBdvPQJe8s9A0yluL4g.roa (raw, json)
Hash identifier: WFnD/ACMvHdrsKnNRsNzqSEy1yy+41fmQzQDMzUGg0g=
Subject key identifier: 9C:07:D6:60:DA:66:84:17:6F:3D:02:5E:F2:CF:40:D3:29:6E:2F:88
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 14DA
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/nAfWYNpmhBdvPQJe8s9A0yluL4g.roa
Signing time: Mon 10 Feb 2025 14:35:20 +0000
ROA not before: Mon 10 Feb 2025 14:35:20 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 220.128.72.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5338 (0x14da)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:35:20 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=9C07D660DA6684176F3D025EF2CF40D3296E2F88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:15:b1:ae:d7:aa:91:32:ca:0c:83:02:c2:84:
7c:a0:a4:5e:06:c8:22:b4:01:f8:6c:b8:c4:e6:41:
49:fa:1f:17:92:fe:bc:b8:0e:53:02:f3:bc:87:98:
74:10:8e:49:77:ed:f9:95:eb:bd:04:db:28:7c:70:
aa:5d:4c:b9:b0:a0:1c:95:6b:e5:42:69:3b:d5:95:
77:ab:01:77:58:e0:06:cc:90:39:3f:3f:f2:64:11:
07:56:17:39:b4:b0:22:12:08:a6:be:f6:79:e5:ff:
41:a3:6a:a6:b2:26:3a:d7:38:49:28:a4:3c:2f:6b:
9c:f8:ee:75:9f:63:4a:fa:7f:da:b3:c0:e2:97:e1:
98:ac:1b:89:4f:31:37:27:0e:97:0f:b4:1b:43:5d:
c2:16:50:50:de:7f:b5:76:55:d2:66:6a:ef:40:4e:
b9:bc:4f:d2:68:d1:82:6d:4a:22:fb:86:94:43:3c:
25:30:2d:59:de:02:92:6d:6b:47:7a:b5:16:c6:56:
c5:55:f4:dd:73:e6:ef:f3:17:1b:9f:1c:a8:7e:24:
1b:76:07:dc:3d:ae:b6:7e:0c:cf:c6:6a:f8:77:db:
9b:81:54:64:67:c6:1b:b0:4f:af:89:43:d8:bd:6e:
ac:d1:0d:bc:37:fd:f5:66:ef:e5:4f:20:3d:a8:b6:
d4:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:07:D6:60:DA:66:84:17:6F:3D:02:5E:F2:CF:40:D3:29:6E:2F:88
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/nAfWYNpmhBdvPQJe8s9A0yluL4g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.128.72.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:29:75:9e:8e:9d:41:a9:d2:05:ce:5c:94:06:9a:2a:09:26:
f3:de:78:47:7c:bd:58:04:dc:00:3d:53:db:a9:46:7c:29:96:
96:47:43:5c:c4:d2:51:0f:b8:1c:5b:06:03:cf:fc:94:ed:a1:
79:5e:f4:fe:cd:37:ab:d6:1a:e8:f8:43:7f:3c:2a:be:17:6e:
70:48:60:f4:9d:e2:0b:01:cb:12:4b:ec:1c:6e:88:55:f4:f1:
07:14:46:09:24:6c:fa:4a:9a:fe:ba:32:8f:a0:3d:9a:c0:32:
c6:be:23:15:df:11:58:95:bb:3d:97:ab:c3:fd:94:06:98:c0:
d3:6e:cb:c0:f2:32:10:4a:14:62:56:62:8e:ea:82:56:2b:6e:
0a:1f:b7:0b:55:d7:3e:f6:1f:e6:64:84:d1:02:e2:96:8a:15:
14:50:d2:db:60:23:4e:04:9c:28:50:4e:17:0b:ea:9e:4a:c9:
20:20:02:cf:0f:b6:96:a7:72:89:1d:e0:09:f6:f1:5f:1d:f1:
19:d5:50:92:5f:59:87:6e:0b:d0:60:49:1f:78:a3:f1:2d:8d:
95:e1:93:a2:b6:64:3c:14:49:4a:21:be:4e:74:bd:df:99:3f:
7c:12:a5:6e:86:4f:83:32:df:e6:8c:7d:8e:41:7b:6f:f7:98:
71:ba:d8:28
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICFNowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTAx
NDM1MjBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDlDMDdENjYwREE2Njg0
MTc2RjNEMDI1RUYyQ0Y0MEQzMjk2RTJGODgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC9FbGu16qRMsoMgwLChHygpF4GyCK0AfhsuMTmQUn6HxeS/ry4
DlMC87yHmHQQjkl37fmV670E2yh8cKpdTLmwoByVa+VCaTvVlXerAXdY4AbMkDk/
P/JkEQdWFzm0sCISCKa+9nnl/0GjaqayJjrXOEkopDwva5z47nWfY0r6f9qzwOKX
4ZisG4lPMTcnDpcPtBtDXcIWUFDef7V2VdJmau9ATrm8T9Jo0YJtSiL7hpRDPCUw
LVneApJta0d6tRbGVsVV9N1z5u/zFxufHKh+JBt2B9w9rrZ+DM/Gavh325uBVGRn
xhuwT6+JQ9i9bqzRDbw3/fVm7+VPID2ottRbAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUnAfWYNpmhBdvPQJe8s9A0yluL4gwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9uQWZXWU5wbWhCZHZQUUplOHM5
QTB5bHVMNGcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA3IBI
MA0GCSqGSIb3DQEBCwUAA4IBAQC1KXWejp1BqdIFzlyUBpoqCSbz3nhHfL1YBNwA
PVPbqUZ8KZaWR0NcxNJRD7gcWwYDz/yU7aF5XvT+zTer1hro+EN/PCq+F25wSGD0
neILAcsSS+wcbohV9PEHFEYJJGz6Spr+ujKPoD2awDLGviMV3xFYlbs9l6vD/ZQG
mMDTbsvA8jIQShRiVmKO6oJWK24KH7cLVdc+9h/mZITRAuKWihUUUNLbYCNOBJwo
UE4XC+qeSskgIALPD7aWp3KJHeAJ9vFfHfEZ1VCSX1mHbgvQYEkfeKPxLY2V4ZOi
tmQ8FElKIb5OdL3fmT98EqVuhk+DMt/mjH2OQXtv95hxutgo
-----END CERTIFICATE-----
Generated at Wed Feb 12 03:38:01 2025 by rpki-client on console.sobornost.net