Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/7ewdx7enBfGu20ORVUYJr9HXv9c.roa
File: 7ewdx7enBfGu20ORVUYJr9HXv9c.roa (raw, json)
Hash identifier: nqIZ5l6JZGhWEmrWnZ5pS88s0HSzecldgfvXC+nThL8=
Subject key identifier: ED:EC:1D:C7:B7:A7:05:F1:AE:DB:43:91:55:46:09:AF:D1:D7:BF:D7
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0F6F
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/7ewdx7enBfGu20ORVUYJr9HXv9c.roa
Signing time: Fri 01 Sep 2023 08:57:04 +0000
ROA not before: Fri 01 Sep 2023 08:57:04 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 142005
IP address blocks: 210.242.118.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3951 (0xf6f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 1 08:57:04 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=EDEC1DC7B7A705F1AEDB4391554609AFD1D7BFD7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:7f:0a:ec:b2:fd:74:c5:e7:5b:78:19:4e:b5:
24:5c:cc:ba:fd:00:83:17:2f:97:36:2a:f5:6a:21:
81:42:04:e6:98:40:0d:1c:34:1a:e8:44:60:2b:69:
2d:c9:0d:83:bb:88:70:b2:61:50:aa:c3:c2:df:ba:
61:ea:ce:2b:75:ff:8d:af:ce:27:e1:c2:42:b5:56:
b7:e8:ec:dd:c2:d2:ed:87:5f:d0:7d:aa:6d:bc:eb:
84:be:ea:29:4c:11:56:88:1f:00:41:65:3f:96:33:
11:7b:82:a8:01:38:57:7a:71:d2:97:8c:b0:b7:a7:
2e:bc:dc:a7:75:65:b7:01:e9:f2:2b:2a:39:46:2e:
4d:d0:e4:2e:0a:0e:2f:08:e6:9e:4d:cd:76:c1:71:
19:3f:7a:d5:ec:d9:67:3b:b2:8b:e7:e8:5a:21:c9:
f2:b7:1f:38:0e:02:ae:2b:f8:27:28:5a:6b:a8:2d:
9d:46:4a:13:74:cd:08:d5:d1:e6:cb:31:8e:e0:1a:
84:4d:81:50:28:6f:85:09:c0:46:aa:2a:d0:e5:64:
f8:b2:00:a6:47:6e:0e:1d:24:6e:c2:b4:7a:b5:f1:
1f:9b:17:31:87:52:dc:55:59:44:2f:eb:d8:b3:c0:
04:b9:89:91:99:50:69:00:30:2a:e4:37:3d:b8:43:
67:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:EC:1D:C7:B7:A7:05:F1:AE:DB:43:91:55:46:09:AF:D1:D7:BF:D7
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/7ewdx7enBfGu20ORVUYJr9HXv9c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.242.118.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:8f:f5:c2:2e:bd:61:1c:0b:d2:a5:98:fe:17:83:44:34:45:
90:08:b7:f4:bf:2b:d6:7b:d0:12:73:97:b1:b1:62:39:53:29:
9c:42:c6:98:ac:b0:cf:2b:33:5c:89:06:cd:a5:69:02:30:47:
d7:22:a3:2f:55:00:99:17:07:00:47:57:79:67:35:e7:87:7f:
17:75:e2:47:2a:54:00:52:19:9c:e8:91:87:53:7c:3f:35:5a:
d9:00:f8:f6:77:43:42:cc:d7:f3:a8:ad:ff:ca:e2:52:0b:04:
f1:00:00:98:f6:6f:a6:82:ca:4e:a3:6a:21:9c:ea:fd:ff:2e:
be:18:a2:dc:4e:4b:d0:9c:87:c3:70:b2:8b:a1:cb:ae:f3:af:
93:d2:ce:38:d0:15:1c:b5:94:90:fb:24:ca:24:e6:ec:f3:cf:
45:3f:07:f3:82:8c:87:be:8a:41:35:d9:48:d1:08:23:88:38:
51:6b:bd:99:16:bc:10:9b:a8:63:d3:f5:81:bc:4a:08:1b:93:
af:ef:45:83:02:1c:00:4f:e1:b0:02:fe:f4:6f:47:86:e5:a9:
28:0c:61:38:4d:af:20:5b:31:a6:3e:ae:a3:55:93:77:48:08:
7e:55:2d:33:a1:f7:ce:a6:cd:f8:4f:a1:3c:a6:76:9d:95:36:
f7:32:a3:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:13 2024 by rpki-client on console-ams.rpki-client.org