Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/-Zi9ndnq1wgijjEJsDZKcWUKSdg.roa
File: -Zi9ndnq1wgijjEJsDZKcWUKSdg.roa (raw, json)
Hash identifier: le/3MBxZRR24YSvPBeB2jVMkRC9CYfgExzFdR24Td5k=
Subject key identifier: F9:98:BD:9D:D9:EA:D7:08:22:8E:31:09:B0:36:4A:71:65:0A:49:D8
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0FC1
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/-Zi9ndnq1wgijjEJsDZKcWUKSdg.roa
Signing time: Fri 01 Sep 2023 08:57:27 +0000
ROA not before: Fri 01 Sep 2023 08:57:27 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 3462
IP address blocks: 60.249.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4033 (0xfc1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 1 08:57:27 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=F998BD9DD9EAD708228E3109B0364A71650A49D8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:23:07:12:30:0e:37:74:b9:64:a5:ee:c3:74:
61:8f:fe:f4:1b:0a:f6:bf:fc:e3:44:59:9b:65:84:
47:99:0d:56:2e:f1:b4:2f:95:14:e0:d0:38:cd:4a:
1b:74:69:73:7a:54:b7:2e:fe:d0:8f:70:8e:82:6a:
67:1d:7e:14:6a:ae:1e:07:29:18:70:04:1c:c2:03:
b1:f0:38:41:f7:4b:ae:af:db:63:85:9b:c4:14:46:
f6:13:28:4b:b7:54:2e:ae:33:4d:6d:a7:55:52:1b:
92:74:db:3c:71:68:e4:c7:39:d7:5a:41:6d:e1:00:
01:23:35:64:0d:35:f6:08:c1:ce:9f:a6:ef:8a:46:
bf:00:b7:9f:48:0d:4a:bc:46:17:b3:31:6e:66:12:
52:75:e0:b3:df:7c:4f:54:ae:35:f4:69:d4:54:1e:
84:9f:3e:fd:57:f0:e4:4e:c1:b8:a2:c9:d4:33:ae:
47:1b:f5:2d:5f:f5:2b:55:6a:f9:1e:5b:fd:11:7d:
d9:59:18:eb:78:8b:66:fc:96:6e:e3:bc:6d:20:14:
e8:78:90:69:a0:17:7f:14:16:8e:f3:7b:bb:f0:31:
15:33:5b:b9:d2:89:5e:ac:30:23:4f:8b:2f:bc:6c:
97:f0:4b:e1:6c:18:0d:da:d1:72:b7:19:c5:f1:93:
24:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:98:BD:9D:D9:EA:D7:08:22:8E:31:09:B0:36:4A:71:65:0A:49:D8
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/-Zi9ndnq1wgijjEJsDZKcWUKSdg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.249.0.0/16
Signature Algorithm: sha256WithRSAEncryption
c3:e5:f1:07:3c:18:33:47:00:1c:ec:42:ab:89:ee:fe:84:ba:
f1:62:27:37:e3:32:71:94:87:11:d8:eb:00:4d:5d:9c:68:73:
f3:53:e3:d9:2a:ee:11:ae:57:fb:1d:bc:54:7f:a8:39:cf:37:
cd:93:6a:c5:ab:3a:17:7c:6c:10:13:9f:9c:56:d5:8a:48:89:
04:c1:20:54:97:8c:73:85:c8:d3:13:b4:17:1f:ee:0d:f3:cd:
94:f4:bc:3f:d1:12:ee:1e:10:69:18:d0:c1:10:b0:92:66:03:
18:50:6a:0a:60:11:b7:95:5a:4d:40:43:5b:a7:ef:3d:cd:8f:
66:65:f2:3a:cb:bf:8f:05:ea:fd:ed:af:22:a1:35:f9:14:3c:
6c:93:3d:04:9d:a1:68:24:14:70:a9:10:ee:24:74:19:1d:57:
78:df:e5:6b:0a:c6:d0:5e:b1:49:d4:3e:dc:66:5f:36:a8:ea:
be:50:de:b1:c8:29:ed:6a:0c:27:d8:f8:7b:27:98:fb:a6:e4:
bf:3f:de:35:6b:c1:fd:d2:12:17:93:e3:4f:6b:78:35:fe:40:
1d:71:75:67:41:f5:d1:51:3d:15:4b:a2:bb:2b:93:ea:5b:e2:
45:ce:ec:94:2b:5b:49:9d:e9:12:2e:fa:9b:93:7d:b7:b0:69:
58:ca:48:aa
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICD8EwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMzA5MDEw
ODU3MjdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEY5OThCRDlERDlFQUQ3
MDgyMjhFMzEwOUIwMzY0QTcxNjUwQTQ5RDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDRIwcSMA43dLlkpe7DdGGP/vQbCva//ONEWZtlhEeZDVYu8bQv
lRTg0DjNSht0aXN6VLcu/tCPcI6CamcdfhRqrh4HKRhwBBzCA7HwOEH3S66v22OF
m8QURvYTKEu3VC6uM01tp1VSG5J02zxxaOTHOddaQW3hAAEjNWQNNfYIwc6fpu+K
Rr8At59IDUq8RhezMW5mElJ14LPffE9UrjX0adRUHoSfPv1X8OROwbiiydQzrkcb
9S1f9StVavkeW/0RfdlZGOt4i2b8lm7jvG0gFOh4kGmgF38UFo7ze7vwMRUzW7nS
iV6sMCNPiy+8bJfwS+FsGA3a0XK3GcXxkySHAgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQU+Zi9ndnq1wgijjEJsDZKcWUKSdgwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC8tWmk5bmRucTF3Z2lqakVKc0Ra
S2NXVUtTZGcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAPPkw
DQYJKoZIhvcNAQELBQADggEBAMPl8Qc8GDNHABzsQquJ7v6EuvFiJzfjMnGUhxHY
6wBNXZxoc/NT49kq7hGuV/sdvFR/qDnPN82TasWrOhd8bBATn5xW1YpIiQTBIFSX
jHOFyNMTtBcf7g3zzZT0vD/REu4eEGkY0MEQsJJmAxhQagpgEbeVWk1AQ1un7z3N
j2Zl8jrLv48F6v3tryKhNfkUPGyTPQSdoWgkFHCpEO4kdBkdV3jf5WsKxtBesUnU
PtxmXzao6r5Q3rHIKe1qDCfY+HsnmPum5L8/3jVrwf3SEheT409reDX+QB1xdWdB
9dFRPRVLorsrk+pb4kXO7JQrW0md6RIu+puTfbewaVjKSKo=
-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:13 2024 by rpki-client on console-ams.rpki-client.org