Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/xtAoKiWIfnKs5yWK2rVyihu-fWQ.roa
File: xtAoKiWIfnKs5yWK2rVyihu-fWQ.roa (raw, json)
Hash identifier: UcEWbOXK6VIPZdqLEuYjvXFKHWDi5fyG30sCd1kb89E=
Subject key identifier: C6:D0:28:2A:25:88:7E:72:AC:E7:25:8A:DA:B5:72:8A:1B:BE:7D:64
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1452
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xtAoKiWIfnKs5yWK2rVyihu-fWQ.roa
Signing time: Mon 10 Feb 2025 14:34:48 +0000
ROA not before: Mon 10 Feb 2025 14:34:48 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 220.128.80.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5202 (0x1452)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:34:48 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=C6D0282A25887E72ACE7258ADAB5728A1BBE7D64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:66:19:88:e8:44:88:3d:4c:3e:7d:f4:2b:7a:
2a:b9:7c:e1:a5:1b:77:19:10:b2:9a:e7:4b:ba:27:
11:41:b4:e1:a4:24:5d:2d:13:83:02:9e:a9:a8:5c:
b4:95:0c:d7:9f:31:3d:6c:2f:0c:d2:41:56:3b:d7:
e9:0a:8b:34:7d:4b:0f:e6:c7:e8:67:74:24:05:ef:
e7:13:e9:72:da:58:70:c0:34:71:09:42:aa:f3:ac:
e6:13:ff:f4:5d:bb:89:4c:3c:5b:95:59:65:4a:23:
49:cc:d9:32:4d:59:20:82:40:17:fb:2f:ac:03:0f:
7b:32:1c:91:01:4d:87:b1:9b:99:d4:c7:cb:2e:f2:
ad:b1:06:5a:8c:7a:d6:9a:c5:a4:c1:fd:02:51:86:
28:60:94:98:f3:5f:ac:db:8b:ed:53:32:1f:58:ac:
6a:4b:a3:d2:84:f7:e6:84:a7:3a:cf:2b:52:52:6f:
08:1a:82:37:84:39:49:f4:32:aa:f8:2d:25:e4:05:
7b:41:b8:f9:f4:27:79:07:27:2f:4a:11:db:26:b4:
f9:39:a6:db:99:79:af:38:b0:c6:88:84:70:30:20:
b1:c7:56:af:f5:03:d8:49:23:c4:c8:2d:b0:ab:38:
4f:c7:39:91:b8:2a:b3:27:bf:4f:60:12:e3:df:7f:
ba:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:D0:28:2A:25:88:7E:72:AC:E7:25:8A:DA:B5:72:8A:1B:BE:7D:64
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xtAoKiWIfnKs5yWK2rVyihu-fWQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.128.80.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:1e:92:46:37:86:11:00:94:9b:30:5b:14:ec:40:62:ce:16:
fe:f1:d9:bd:5c:0b:80:23:d7:b1:39:e8:cd:9a:2e:22:47:71:
61:d1:07:46:e2:a9:70:22:78:f8:9b:4d:7f:e5:e4:c5:8c:85:
d7:3c:d3:fc:28:59:d8:06:cf:71:b6:c2:5e:93:4e:ad:d0:84:
da:83:36:4f:b7:a9:4f:67:2a:88:e3:6c:c1:a6:43:b3:e2:ae:
9a:ac:d3:2d:ad:f9:37:ed:7c:fd:42:97:49:f1:80:fb:a8:c7:
20:7a:14:3e:7e:b6:24:6e:c3:44:ec:5a:43:13:5d:37:8b:bc:
c2:bf:e5:4d:00:a4:a0:dc:6c:3f:76:8b:6c:89:b0:9f:9b:09:
08:f6:35:ab:5d:be:4f:75:25:cb:e6:51:97:bf:49:c5:64:fe:
65:6f:b6:03:3d:a0:bc:af:fb:e2:32:0b:13:b7:30:05:dd:67:
56:28:42:15:65:8a:38:de:38:32:52:f7:0a:01:0d:ce:e7:fe:
06:d5:fa:52:9f:9e:7d:f0:f2:d6:16:7a:87:ea:60:dd:da:98:
62:6a:73:e6:7e:92:24:cc:04:0e:b5:c3:c8:bb:ac:83:52:67:
ff:82:c1:d2:d0:4d:bc:bb:cf:93:2e:4b:1c:f2:13:9c:7d:f2:
cf:9c:8b:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 12 03:38:02 2025 by rpki-client on console.sobornost.net