Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/485Y_m5I_1xm6zF-q2wFRC4h19s.roa
File: 485Y_m5I_1xm6zF-q2wFRC4h19s.roa (raw, json)
Hash identifier: gNnAGYutLP4LVcAg6vM/21PXbaMD10wsjiA5U/BiTKw=
Subject key identifier: E3:CE:58:FE:6E:48:FF:5C:66:EB:31:7E:AB:6C:05:44:2E:21:D7:DB
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0F9D
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/485Y_m5I_1xm6zF-q2wFRC4h19s.roa
Signing time: Fri 01 Sep 2023 08:57:17 +0000
ROA not before: Fri 01 Sep 2023 08:57:17 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 3462
IP address blocks: 221.120.25.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3997 (0xf9d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 1 08:57:17 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=E3CE58FE6E48FF5C66EB317EAB6C05442E21D7DB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:13:12:f4:8d:71:e9:52:74:cb:1b:a1:15:0e:
c8:36:02:d7:73:db:30:3a:d3:9f:4a:bf:3d:00:fa:
94:c7:7b:ef:37:85:f1:46:fb:d6:23:0d:36:a9:93:
d8:ff:f5:c4:ea:f6:23:ce:e6:39:df:65:3a:f8:ba:
48:33:dd:30:7e:52:4e:13:29:eb:10:27:aa:e4:77:
11:50:c3:93:dd:b5:22:fd:42:d3:17:bc:49:e6:b0:
f6:e1:b2:65:a8:2d:ec:ee:fa:94:63:d0:8a:c5:40:
f7:42:e8:e8:98:82:48:f4:f0:81:be:2d:da:3b:4b:
54:db:41:08:d0:e9:5e:95:42:ae:77:ed:12:db:c4:
f4:15:db:fb:23:87:70:f8:db:f5:0e:5f:8a:93:23:
3e:95:18:53:fb:67:2b:9d:0f:97:c6:e5:89:09:64:
8f:c2:1e:6e:16:b0:bb:fd:44:13:8c:28:c6:11:1f:
b7:9d:d2:47:50:fb:34:a8:33:47:73:12:0e:62:2c:
28:33:d0:be:ab:d4:21:e8:ce:15:5b:66:a2:85:de:
16:46:9b:5b:57:0d:c1:48:4e:6d:ef:7a:d4:d4:87:
3f:c7:a3:ae:b7:74:ab:ad:44:6d:20:94:56:51:a0:
cc:a5:e3:b6:18:f9:0a:d2:21:f8:2a:f1:a0:40:6a:
5e:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:CE:58:FE:6E:48:FF:5C:66:EB:31:7E:AB:6C:05:44:2E:21:D7:DB
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/485Y_m5I_1xm6zF-q2wFRC4h19s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
221.120.25.0/24
Signature Algorithm: sha256WithRSAEncryption
71:b8:56:00:3d:6a:90:85:9d:9f:dd:1a:d2:b1:28:a0:f9:d5:
33:1d:d1:36:13:0c:ce:a9:5d:77:cd:21:02:a3:1e:04:ed:9f:
d4:b7:93:51:24:bb:9a:c0:50:01:01:f2:18:e4:2f:6d:37:e2:
19:85:7e:b9:c1:df:30:2e:16:05:24:54:35:dd:e3:ce:bb:33:
35:80:7b:7d:fb:40:c3:02:6d:89:88:5b:c2:3f:75:ae:e8:0c:
2c:64:69:33:6b:c3:46:1d:58:e1:fc:a5:1c:f8:38:0d:32:78:
b2:c6:eb:30:98:fc:28:a8:d6:1d:bb:52:7b:c4:23:7a:fd:41:
9b:f4:df:5b:24:96:37:a3:14:04:5f:07:ae:4e:c7:dd:2d:b6:
ee:77:1b:75:6b:90:64:a3:d4:75:84:f3:10:8d:17:d0:68:10:
c5:1e:e7:17:a7:61:3e:26:37:12:3b:cc:b9:3b:75:5a:23:e2:
74:84:fc:0b:51:2a:17:67:9e:59:3a:ab:82:b8:ce:f3:3f:2f:
96:47:fb:d4:3c:32:eb:5d:46:59:05:19:be:c8:e0:53:d2:06:
25:2f:4a:34:4b:cf:fa:2c:a5:01:bc:60:95:0c:9e:72:91:58:
56:7d:a7:f1:8a:52:76:b8:c1:56:0e:b7:73:63:5b:07:ef:4b:
db:d0:c5:05
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICD50wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMzA5MDEw
ODU3MTdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEUzQ0U1OEZFNkU0OEZG
NUM2NkVCMzE3RUFCNkMwNTQ0MkUyMUQ3REIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCeExL0jXHpUnTLG6EVDsg2Atdz2zA6059Kvz0A+pTHe+83hfFG
+9YjDTapk9j/9cTq9iPO5jnfZTr4ukgz3TB+Uk4TKesQJ6rkdxFQw5PdtSL9QtMX
vEnmsPbhsmWoLezu+pRj0IrFQPdC6OiYgkj08IG+Ldo7S1TbQQjQ6V6VQq537RLb
xPQV2/sjh3D42/UOX4qTIz6VGFP7ZyudD5fG5YkJZI/CHm4WsLv9RBOMKMYRH7ed
0kdQ+zSoM0dzEg5iLCgz0L6r1CHozhVbZqKF3hZGm1tXDcFITm3vetTUhz/Ho663
dKutRG0glFZRoMyl47YY+QrSIfgq8aBAal5JAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQU485Y/m5I/1xm6zF+q2wFRC4h19swHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC80ODVZX201SV8xeG02ekYtcTJ3
RlJDNGgxOXMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA3XgZ
MA0GCSqGSIb3DQEBCwUAA4IBAQBxuFYAPWqQhZ2f3RrSsSig+dUzHdE2EwzOqV13
zSECox4E7Z/Ut5NRJLuawFABAfIY5C9tN+IZhX65wd8wLhYFJFQ13ePOuzM1gHt9
+0DDAm2JiFvCP3Wu6AwsZGkza8NGHVjh/KUc+DgNMniyxuswmPwoqNYdu1J7xCN6
/UGb9N9bJJY3oxQEXweuTsfdLbbudxt1a5Bko9R1hPMQjRfQaBDFHucXp2E+JjcS
O8y5O3VaI+J0hPwLUSoXZ55ZOquCuM7zPy+WR/vUPDLrXUZZBRm+yOBT0gYlL0o0
S8/6LKUBvGCVDJ5ykVhWfafxilJ2uMFWDrdzY1sH70vb0MUF
-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:20 2024 by rpki-client on console-fra.rpki-client.org