Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/vWJLAavisGnvhwxTkz0rUdN8vRk.roa
File: vWJLAavisGnvhwxTkz0rUdN8vRk.roa (raw, json)
Hash identifier: PaSEIlxVfzaTaDJKIGVf+sKfxvBtBnPjnV0Ki5k5RsU=
Subject key identifier: BD:62:4B:01:AB:E2:B0:69:EF:87:0C:53:93:3D:2B:51:D3:7C:BD:19
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 147C
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/vWJLAavisGnvhwxTkz0rUdN8vRk.roa
Signing time: Mon 10 Feb 2025 14:34:58 +0000
ROA not before: Mon 10 Feb 2025 14:34:58 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9680
IP address blocks: 202.39.80.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5244 (0x147c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:34:58 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=BD624B01ABE2B069EF870C53933D2B51D37CBD19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:7a:b2:ba:b1:54:e4:9f:10:17:9a:05:0a:6c:
9f:9e:5d:03:ac:4d:e7:5b:ac:e6:bc:81:bd:2e:02:
0c:c1:06:4d:72:be:d4:d6:1c:35:e3:00:39:40:c2:
6a:bc:9b:86:dc:8b:8c:d1:4e:29:79:9d:75:6a:a8:
8f:5e:69:d4:fb:46:f2:4b:cf:ed:e8:44:cc:8b:ca:
c6:0e:d8:c4:20:ab:a4:b8:b1:03:33:ed:28:08:c6:
53:f9:3c:2d:ce:87:e4:20:3a:d4:48:67:8b:ec:70:
57:02:18:95:82:8f:08:3e:b2:8d:b2:19:c8:1f:d2:
78:bd:3c:7e:b0:2a:51:88:78:0b:92:db:52:f4:5b:
d9:47:e0:6e:a7:d5:4b:26:ff:97:1d:b2:2c:c2:a9:
ee:7b:c8:ad:7b:b7:3a:7a:1e:01:4f:2c:b6:d4:32:
ab:bf:31:b1:8c:e1:bd:b8:a6:d8:c2:b2:52:18:9e:
bf:86:cd:01:60:92:d0:7a:af:b1:0b:82:a1:9e:4a:
3f:76:18:2f:7d:e6:b4:ca:1f:6c:02:c9:cc:4e:5d:
d4:6e:04:33:d3:1e:6c:fd:52:bb:75:35:50:53:8f:
0a:49:50:73:01:33:4a:0a:77:01:bb:01:16:27:ea:
36:de:88:93:27:7f:e1:74:2b:63:da:a2:02:68:12:
d2:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:62:4B:01:AB:E2:B0:69:EF:87:0C:53:93:3D:2B:51:D3:7C:BD:19
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/vWJLAavisGnvhwxTkz0rUdN8vRk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.39.80.0/20
Signature Algorithm: sha256WithRSAEncryption
26:1f:fb:a1:8e:ee:9e:43:54:24:25:31:55:da:ae:69:97:94:
e3:c0:02:2e:89:ce:d5:c9:1b:fa:4e:d1:8a:05:d5:96:ab:35:
34:42:36:0f:60:a3:86:17:af:ab:3f:6c:11:0a:eb:94:71:eb:
b9:d6:a7:20:46:6d:9b:ee:f8:b2:aa:50:d9:de:e2:cf:b1:29:
a9:ce:45:6b:62:10:6d:67:08:89:7c:c1:e8:ae:2c:c5:be:4c:
42:a0:4e:13:ce:ea:16:ac:4e:a5:b2:7f:ff:33:bf:cf:d3:c5:
2a:b8:df:15:69:7e:61:ae:7b:c6:16:48:d0:74:ae:f6:93:08:
41:8f:f4:c3:c3:71:60:ee:8b:9b:13:54:a5:6b:e6:2f:6b:bb:
1f:fe:a9:e0:93:4e:d3:6d:4f:c1:03:1d:6c:78:ea:e8:1e:89:
51:b6:10:b8:4b:d5:59:de:12:12:e1:0d:7e:4f:ae:ee:3f:9a:
1d:07:b7:4a:74:8e:6c:ba:0e:5b:3e:d3:a6:1b:38:fc:35:81:
56:06:ee:1e:78:f7:8e:58:56:b9:d5:d9:7b:14:23:ea:76:e0:
da:c7:c9:79:3e:8a:d8:e9:08:d9:d7:02:12:ec:ed:00:ff:80:
31:47:3b:28:e7:14:2d:f0:df:00:7e:ba:8e:c4:5c:04:c2:27:
20:21:5d:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 12 03:38:01 2025 by rpki-client on console.sobornost.net