Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/8w0sd8BpZIyOBbX8CgZM9d59P1U.roa
File: 8w0sd8BpZIyOBbX8CgZM9d59P1U.roa (raw, json)
Hash identifier: Ax1CQQ6qm51jHOl8HDii+f0QoESf69arPoDuBTVlcTs=
Subject key identifier: F3:0D:2C:77:C0:69:64:8C:8E:05:B5:FC:0A:06:4C:F5:DE:7D:3F:55
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1217
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/8w0sd8BpZIyOBbX8CgZM9d59P1U.roa
Signing time: Mon 26 Aug 2024 05:18:14 +0000
ROA not before: Mon 26 Aug 2024 05:18:14 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17421
IP address blocks: 2001:b400::/32 maxlen: 64
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4631 (0x1217)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Aug 26 05:18:14 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=F30D2C77C069648C8E05B5FC0A064CF5DE7D3F55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:fb:34:83:22:25:7a:d1:f0:92:ab:d3:56:22:
e9:bc:d5:cc:e7:ed:d1:c6:45:4c:4c:34:20:67:60:
5f:97:ab:7a:82:7d:56:8b:d2:03:65:49:c6:ba:3b:
90:49:f2:8b:9a:fd:a2:39:56:2b:ff:c2:60:66:9f:
c8:5d:e0:2d:7c:27:cd:79:e3:b8:04:60:05:ee:aa:
29:0f:cb:c2:50:47:29:a8:f2:b9:60:fa:8d:29:95:
9c:2b:00:06:2d:bf:49:e9:60:89:df:34:a7:6d:ee:
d5:42:e6:79:cd:b2:fa:87:90:48:79:e3:7a:cb:df:
d5:58:51:55:4d:7c:c1:e5:a4:98:e9:48:42:35:2d:
0e:7f:ac:28:56:c5:a3:00:d2:03:d3:a1:ed:8a:60:
80:4c:4a:21:90:77:0d:83:1c:0c:b0:c4:a6:13:99:
b3:ef:e5:31:c4:27:2e:39:4b:06:eb:bc:c8:fc:0d:
27:6f:a6:56:22:1f:a6:05:72:30:05:e8:08:d6:b6:
0b:a8:dd:6f:f0:3f:8d:75:76:9c:86:0e:74:22:ab:
3d:fa:22:2c:63:50:9b:09:d1:71:cd:02:c8:eb:0e:
97:c7:83:eb:bd:17:da:8e:7a:ea:1a:30:c1:e4:f7:
b6:cd:71:62:60:c9:72:70:33:7b:59:6d:8d:31:03:
27:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:0D:2C:77:C0:69:64:8C:8E:05:B5:FC:0A:06:4C:F5:DE:7D:3F:55
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/8w0sd8BpZIyOBbX8CgZM9d59P1U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:b400::/32
Signature Algorithm: sha256WithRSAEncryption
75:1e:ab:e4:99:1a:a2:04:38:8f:10:b2:42:5c:51:a0:7a:f1:
ce:8a:d7:3c:e0:e7:b4:3a:7b:49:e4:ca:a2:b3:0b:ab:11:3a:
1d:e9:ec:a9:cf:9f:41:1d:9e:42:2a:e9:20:aa:27:f3:f6:b6:
ca:e0:94:0a:d8:14:56:50:63:d2:d6:77:15:28:29:a9:fa:85:
75:5f:16:5c:55:e4:41:c5:23:70:ed:ed:96:43:e7:b6:48:4a:
a7:a6:1a:22:ae:12:6a:ef:b1:f0:ff:5d:82:d6:fb:dd:a5:84:
a3:a0:44:b3:4d:78:19:93:4c:b5:3f:94:74:76:6c:67:c2:57:
f9:70:b7:fc:30:fa:ed:dc:50:a3:e3:54:7a:ec:80:71:3f:d7:
5d:a3:97:75:a8:75:fc:44:c4:2b:7b:77:e6:f5:a6:6a:34:85:
c8:2b:07:b8:77:b8:bc:27:25:ba:b2:5f:a6:6b:be:c3:8a:1f:
c7:45:3b:d7:8b:c7:f2:e1:52:2d:f3:90:4c:82:77:b8:52:c7:
86:34:94:a2:9f:4e:59:77:fa:b2:ec:e6:9e:b7:50:9c:70:5d:
ff:c5:f2:1d:d8:23:d9:0d:93:2b:f8:24:07:ab:78:3a:61:b2:
2d:62:4a:d5:0f:c9:91:e0:6d:5d:41:6f:6e:0b:eb:cd:40:99:
63:0f:27:73
-----BEGIN CERTIFICATE-----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Generated at Fri Sep 20 06:32:04 2024 by rpki-client on console-fra.rpki-client.org