Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/q9_lMRaoLVqXArr-yg0w92KSri4.roa
File: q9_lMRaoLVqXArr-yg0w92KSri4.roa (raw, json)
Hash identifier: EEWdIB/jKMBYw8XNsOjILRu4MUxR+ghpJC169eehvVY=
Subject key identifier: AB:DF:E5:31:16:A8:2D:5A:97:02:BA:FE:CA:0D:30:F7:62:92:AE:2E
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 14BD
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/q9_lMRaoLVqXArr-yg0w92KSri4.roa
Signing time: Mon 10 Feb 2025 14:35:15 +0000
ROA not before: Mon 10 Feb 2025 14:35:15 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9505
IP address blocks: 2001:b200::/32 maxlen: 64
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5309 (0x14bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:35:15 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=ABDFE53116A82D5A9702BAFECA0D30F76292AE2E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:bf:e2:24:31:df:78:97:cf:11:d8:e9:d2:b7:
d5:52:b9:ff:f8:f0:44:3a:c6:ce:3a:f7:58:56:b4:
f6:54:ab:8b:a3:00:7c:46:b6:53:3e:5b:3e:1d:86:
df:94:02:4d:f8:96:f1:f8:59:87:d8:d2:fd:25:44:
e4:8f:c6:d0:a6:ef:d1:3f:f4:66:74:d7:d1:83:41:
f3:3f:ed:a2:2f:0e:25:f7:36:8b:5c:1b:48:da:ba:
53:17:7f:a7:dc:70:a5:f3:b7:48:d4:7e:c4:c9:e2:
99:df:f9:c3:b0:c4:54:97:4f:17:7b:18:7f:c9:0d:
c9:4a:23:a3:38:cf:ad:76:70:7e:5b:9c:0a:5e:22:
f4:5b:36:1a:67:cd:69:28:4a:e3:9c:5f:73:8f:29:
91:35:22:dc:08:c4:94:1c:36:ec:2b:de:7a:17:ca:
f8:18:25:82:ce:5b:85:96:38:48:78:ef:95:2d:74:
a7:29:31:37:84:b3:1c:1a:33:dd:ea:b9:08:08:ef:
43:47:35:35:e5:63:6c:fd:6f:ee:95:e3:42:ed:5b:
70:08:06:66:1f:93:9a:0d:06:8b:3a:98:61:93:c3:
50:4d:f3:82:75:c6:ce:e3:fd:be:dd:2e:ba:de:9c:
0a:74:91:26:ae:2b:00:d1:8b:1c:69:de:9e:d8:99:
62:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:DF:E5:31:16:A8:2D:5A:97:02:BA:FE:CA:0D:30:F7:62:92:AE:2E
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/q9_lMRaoLVqXArr-yg0w92KSri4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:b200::/32
Signature Algorithm: sha256WithRSAEncryption
c2:a1:d7:da:9f:9a:26:ad:93:50:6a:71:8f:68:82:32:ec:22:
cd:4b:b9:9d:ac:71:b4:8a:f7:59:ed:c6:b9:45:2e:37:f7:b9:
8b:00:49:4e:8d:2f:cd:50:b6:63:7f:29:a2:77:12:45:b1:33:
87:4f:1b:43:b2:46:a7:38:30:e4:97:eb:b7:d9:f5:5a:57:10:
cb:69:6f:14:2e:b7:d2:7f:fb:da:3f:67:6c:0c:f6:0b:71:bb:
35:49:9c:f2:57:59:92:24:6a:0e:75:8d:77:46:93:d8:76:c9:
60:19:cc:70:9b:c7:69:61:d8:1c:e1:95:4a:7a:8f:96:ca:d0:
68:bb:07:cd:df:27:f1:c3:04:6a:59:b1:0a:23:70:8d:2a:29:
76:b3:c0:0d:ce:c2:69:c6:b6:4c:e5:72:d1:3c:37:0e:1b:ca:
79:53:d6:ce:79:93:1d:89:23:c8:07:d3:7f:ee:c6:5f:a2:25:
21:a5:f5:0b:d6:92:d6:a2:bf:dd:bf:95:7c:05:80:af:2a:09:
47:da:04:d3:a1:02:a9:0f:c2:a4:1f:13:b9:54:26:79:01:b8:
e3:ed:5b:26:38:5b:dd:5e:16:c4:e5:b3:72:56:81:af:4b:30:
58:56:47:a8:19:29:f8:26:d1:0b:32:30:fa:bf:60:ab:04:80:
b8:8d:0d:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 12 03:38:01 2025 by rpki-client on console.sobornost.net