Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/7ldcf4mMtMdmhsKPDp_2g9WYdfk.roa
File: 7ldcf4mMtMdmhsKPDp_2g9WYdfk.roa (raw, json)
Hash identifier: pmhoYHhDb1PaD6gRd93Be0D3i6UqQ44SLx9XOl+rpV0=
Subject key identifier: EE:57:5C:7F:89:8C:B4:C7:66:86:C2:8F:0E:9F:F6:83:D5:98:75:F9
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0F73
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/7ldcf4mMtMdmhsKPDp_2g9WYdfk.roa
Signing time: Fri 01 Sep 2023 08:57:06 +0000
ROA not before: Fri 01 Sep 2023 08:57:06 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17421
IP address blocks: 221.120.64.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3955 (0xf73)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 1 08:57:06 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=EE575C7F898CB4C76686C28F0E9FF683D59875F9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:eb:7d:b5:7b:df:46:e7:ff:30:46:b4:eb:3e:
16:c9:c8:33:f2:be:4f:1d:b6:56:b2:43:c9:38:a6:
12:9b:e3:00:46:39:35:2f:0d:a3:b7:68:66:fa:cd:
8f:fd:a8:d7:58:2d:93:4b:3c:fb:fb:93:29:3f:26:
1f:64:21:19:8a:45:43:38:41:fd:d0:45:ad:42:78:
b9:de:ee:27:a2:97:88:e6:05:ee:b8:2d:e6:73:b5:
b2:35:99:65:a4:bf:ab:e7:98:65:b4:64:bf:c7:b4:
de:da:b4:38:c2:1f:d3:5a:62:8a:66:a3:be:18:59:
2e:bc:d2:40:bc:a3:b4:5d:23:63:51:5f:e7:ab:68:
02:79:a8:68:45:1b:b8:d5:2a:1b:40:75:2d:2d:b1:
54:18:02:87:7d:b1:2a:6a:64:c8:59:94:06:fb:e0:
b5:fc:85:f7:15:68:5b:56:ae:60:06:0b:c8:85:84:
b1:7f:90:5b:63:fa:99:db:b3:bd:03:63:75:63:4f:
70:c7:f2:3a:00:7c:06:d2:02:b0:de:b1:e4:b5:f4:
a0:22:25:f8:ea:db:9f:0b:58:e2:30:fd:2c:91:30:
e9:f7:07:6e:8e:1b:72:34:1f:51:a2:bc:f0:22:cc:
bc:29:75:a6:09:2f:69:35:03:6f:f8:f1:18:98:fd:
71:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:57:5C:7F:89:8C:B4:C7:66:86:C2:8F:0E:9F:F6:83:D5:98:75:F9
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/7ldcf4mMtMdmhsKPDp_2g9WYdfk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
221.120.64.0/19
Signature Algorithm: sha256WithRSAEncryption
7f:5f:b3:8b:ca:11:bd:25:28:7a:0d:6b:0f:a8:fe:02:6e:4b:
4c:56:df:60:bb:ef:ca:41:dd:03:29:4b:dc:e4:1e:1a:cc:4f:
76:10:d1:bb:d1:1a:ea:01:ad:c7:e7:ac:29:04:7f:c4:68:3a:
c7:35:b2:3e:58:ae:f0:18:52:5d:20:9f:2c:0b:d4:61:af:20:
02:e0:14:45:ef:90:7a:e2:ce:20:99:31:ab:bf:51:0d:d7:08:
7a:23:ad:f2:0b:ca:fc:6c:db:f7:27:ec:dd:3c:2b:73:12:a4:
35:6e:2c:15:e5:b9:74:d7:16:ea:28:62:fd:fe:b2:d3:7a:8f:
14:8c:75:17:c3:10:c5:fa:3d:1c:82:a7:e7:17:92:56:2b:3a:
79:3b:c6:23:a4:1c:64:36:76:42:8e:f4:93:d5:0f:0d:f1:89:
f9:26:b3:ed:9b:92:ac:b6:ef:ec:28:85:44:6d:ab:0f:0b:e6:
7c:f5:54:cc:e4:ee:f2:31:d0:b9:c3:7c:24:40:fe:e7:1b:d3:
9d:c3:c0:37:ac:b4:00:b9:db:3c:64:b1:21:34:e4:e7:55:72:
58:fc:32:6d:91:6f:e8:05:8e:ef:22:d5:0a:02:58:df:22:63:
0a:7f:ed:1a:41:83:87:49:77:e8:18:36:89:7e:14:1b:ed:53:
de:83:11:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:13 2024 by rpki-client on console-ams.rpki-client.org