Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/4aDBXKkY9_cPBw8hj6fJNUvOHCQ.roa
File: 4aDBXKkY9_cPBw8hj6fJNUvOHCQ.roa (raw, json)
Hash identifier: xSMo7RIFNH5AzC9cYxqNHujU6hTqKrHC+wicW1V7yfY=
Subject key identifier: E1:A0:C1:5C:A9:18:F7:F7:0F:07:0F:21:8F:A7:C9:35:4B:CE:1C:24
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0F43
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/4aDBXKkY9_cPBw8hj6fJNUvOHCQ.roa
Signing time: Fri 01 Sep 2023 08:56:49 +0000
ROA not before: Fri 01 Sep 2023 08:56:49 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17421
IP address blocks: 42.64.0.0/12 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3907 (0xf43)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 1 08:56:49 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=E1A0C15CA918F7F70F070F218FA7C9354BCE1C24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:16:1c:00:62:8d:19:bd:fa:5d:a7:1c:1e:85:
a3:77:d8:f4:62:bf:c4:59:05:19:af:fb:cf:26:fd:
2c:1e:82:8a:22:ef:3c:ae:bd:a5:4c:e4:f5:3d:f7:
59:59:7e:d8:17:b1:59:0e:23:c1:dd:51:1e:f8:45:
b7:63:47:35:06:f7:a8:16:fb:58:b5:a0:df:40:43:
21:b1:70:73:b9:e1:37:67:da:82:f4:f2:68:bd:78:
5d:67:85:ab:48:bf:83:c3:e2:58:40:44:ac:2c:c2:
5a:43:9f:71:88:a1:c0:be:e4:fd:21:7a:97:83:a7:
ca:a5:ac:dd:02:ab:0a:02:43:71:7e:98:1a:21:81:
2f:73:68:6e:da:ec:2e:22:2f:27:9b:57:12:bc:6b:
72:bc:a7:9f:5f:11:f8:39:d7:58:ce:49:f9:c5:57:
e4:e3:eb:55:3d:89:33:f4:e4:67:05:02:6f:08:02:
00:b5:62:36:68:43:77:8f:86:ed:aa:54:77:e4:b6:
c1:2a:22:78:d5:75:eb:4e:3d:20:e2:c1:2d:5b:a2:
b0:87:dd:0d:4d:63:53:b4:c7:a6:0f:a7:86:74:9b:
54:5f:d8:2f:ae:38:89:43:3e:5c:42:ba:4f:9d:2c:
aa:7b:6e:f6:7e:3e:01:e5:b9:68:6b:08:44:02:ef:
2b:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:A0:C1:5C:A9:18:F7:F7:0F:07:0F:21:8F:A7:C9:35:4B:CE:1C:24
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/4aDBXKkY9_cPBw8hj6fJNUvOHCQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
42.64.0.0/12
Signature Algorithm: sha256WithRSAEncryption
3b:23:a4:7d:e1:fe:b4:cc:78:d1:18:81:49:68:67:97:a5:f5:
54:72:91:d9:25:75:df:42:f8:b5:38:ea:3c:0c:5e:ee:73:e0:
ca:68:e5:05:f8:d8:c2:72:b2:e2:53:28:51:a5:2a:e5:28:9e:
e0:10:57:05:48:dc:5d:66:85:ec:6c:5b:41:b6:75:45:37:a9:
93:92:2f:ca:2b:17:30:1f:0c:d6:16:cc:5b:02:3a:30:ba:f9:
33:71:ed:77:cf:94:43:8d:12:c7:ab:a5:f4:55:29:83:40:2b:
1c:b8:96:ae:3f:5d:35:fe:39:a3:04:17:de:88:31:e9:10:df:
41:9f:ea:35:d5:82:a2:12:45:25:9a:cf:b5:f8:8f:7c:e3:c6:
50:6b:88:19:2d:5f:18:6f:2e:0b:a4:f0:71:fe:96:f2:91:91:
cc:1c:ae:0c:01:d4:2d:23:88:bd:81:ac:e9:48:48:2f:48:6b:
b6:01:f3:d8:e0:5f:2a:71:05:1d:e9:59:8f:94:ae:26:15:33:
23:2d:0a:c6:6a:c0:6e:a4:2c:61:70:42:a3:c8:1c:d2:a6:ef:
66:4d:09:42:83:e5:6d:d6:3b:81:fa:45:41:54:6a:1d:f0:86:
a6:55:42:ff:20:04:1e:d9:e6:28:9a:79:c2:17:57:c1:f9:b9:
1e:7d:be:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:20 2024 by rpki-client on console-fra.rpki-client.org