Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/nBno2xqDpALKmMyxG545wOaE8i8.roa
File: nBno2xqDpALKmMyxG545wOaE8i8.roa (raw, json)
Hash identifier: 1rXPyjILXP0soKbvPxs3fm+u1gkz4c2IxxlRvTLqjDI=
Subject key identifier: 9C:19:E8:DB:1A:83:A4:02:CA:98:CC:B1:1B:9E:39:C0:E6:84:F2:2F
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 146C
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/nBno2xqDpALKmMyxG545wOaE8i8.roa
Signing time: Mon 10 Feb 2025 14:34:54 +0000
ROA not before: Mon 10 Feb 2025 14:34:54 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 211.20.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5228 (0x146c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:34:54 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=9C19E8DB1A83A402CA98CCB11B9E39C0E684F22F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:06:b4:fc:40:77:33:2b:2a:f4:d9:b1:23:6e:
c5:1a:df:fa:31:8b:47:b0:30:0c:4b:bf:f2:1d:53:
6b:0d:8d:f8:a1:08:a5:81:31:54:96:5d:21:8e:94:
67:94:c3:65:01:41:42:48:68:f2:96:7a:8a:83:a7:
e9:07:53:d7:38:a2:14:28:b9:bb:8b:11:81:22:a9:
a9:6f:48:d3:42:cf:92:06:f3:39:a7:1e:48:4d:b2:
fb:c5:d5:9c:6c:55:24:88:a4:46:7c:e0:d1:80:8e:
da:b0:15:1d:6b:b3:4d:8b:45:57:91:11:cd:e3:1e:
15:7d:69:1c:c3:e7:de:1f:a1:2f:8d:76:9c:f9:47:
13:0d:e5:50:72:ef:cc:9b:f0:24:9f:8c:40:36:d4:
66:4f:b1:10:b6:9a:04:c1:a9:28:22:a9:a0:cd:80:
2f:31:3a:18:a7:4f:0c:77:61:15:ca:96:43:cf:f5:
1f:45:46:fe:e7:ff:cf:6c:c4:40:76:8b:b6:1d:00:
39:c8:c0:0f:68:95:85:53:32:fa:22:00:7b:7a:fa:
bc:80:af:28:b5:3f:d8:e3:89:2b:ae:83:13:e7:0b:
e4:12:d9:81:7b:79:ee:79:c1:48:98:47:d8:e8:2a:
7b:88:3f:bb:26:35:83:c5:74:3e:a9:ed:bf:f8:a2:
24:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:19:E8:DB:1A:83:A4:02:CA:98:CC:B1:1B:9E:39:C0:E6:84:F2:2F
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/nBno2xqDpALKmMyxG545wOaE8i8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.20.0.0/16
Signature Algorithm: sha256WithRSAEncryption
81:f4:c7:3b:8d:55:4f:37:83:b6:78:91:41:f6:a0:1a:cf:80:
d2:ec:3c:43:30:96:dc:09:17:5d:d2:5c:25:f0:06:52:28:95:
3e:1c:71:33:ef:ac:4b:fe:36:73:82:8f:96:de:a6:3a:be:23:
d3:c1:02:e8:b2:a3:cb:b7:63:08:5b:ca:b1:e6:93:d4:42:5d:
ba:cd:36:76:cb:4d:08:16:8c:62:f8:fe:ad:d1:62:42:8f:2d:
d5:e1:bf:fd:ec:f0:4b:30:f2:64:23:60:12:cb:f5:b5:80:34:
cf:51:bf:ca:cc:07:c8:90:6f:67:21:62:e3:c7:e3:3e:62:3d:
45:f2:01:e2:4d:e9:7e:b8:20:57:e4:5c:52:97:54:18:4d:d2:
94:43:cb:eb:31:51:f8:37:de:f7:6e:e9:6e:27:ca:7e:24:43:
47:5c:b8:bb:40:34:78:b7:50:62:2a:fa:68:44:d7:d4:d4:56:
92:d7:fe:2e:90:79:78:43:fa:39:e9:7e:f4:85:dc:10:92:4c:
00:6b:ca:83:63:91:78:b7:ad:03:b8:81:b8:6e:b6:61:3d:c6:
fc:f5:a8:ed:9a:31:f7:48:3b:85:4f:2a:63:7f:84:7a:10:20:
df:02:04:3e:c1:ba:e1:ba:cb:e6:7c:58:74:af:9c:78:c6:d6:
21:2d:fe:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 12 03:38:01 2025 by rpki-client on console.sobornost.net