Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/AvW1qUobTPIf0WefgzLvMcwnlv0.roa
File: AvW1qUobTPIf0WefgzLvMcwnlv0.roa (raw, json)
Hash identifier: KM1jOd6rFho3vVSpifCEEPgtE1FsucjVhg1jFl13JoI=
Subject key identifier: 02:F5:B5:A9:4A:1B:4C:F2:1F:D1:67:9F:83:32:EF:31:CC:27:96:FD
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0F83
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/AvW1qUobTPIf0WefgzLvMcwnlv0.roa
Signing time: Fri 01 Sep 2023 08:57:10 +0000
ROA not before: Fri 01 Sep 2023 08:57:10 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 3462
IP address blocks: 61.217.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3971 (0xf83)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 1 08:57:10 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=02F5B5A94A1B4CF21FD1679F8332EF31CC2796FD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:eb:fa:4d:06:5f:03:d4:d6:20:ef:61:63:2a:
5a:7f:76:ff:ad:fa:6b:57:0c:d4:9f:4c:de:44:5a:
5a:e3:f5:bd:7b:16:4f:88:e5:e7:42:ad:fe:c7:49:
74:e5:6a:89:0e:99:93:db:9b:75:f3:d4:e4:28:22:
bf:99:29:41:ec:4a:97:68:88:59:2f:7d:00:84:fb:
c2:77:3a:9a:88:66:2c:c6:0c:dd:f6:61:c2:c6:7d:
fe:51:1c:a7:67:f5:20:20:ed:8c:a1:55:33:df:be:
53:88:43:3f:c2:eb:60:54:af:be:25:c1:64:09:34:
bf:f7:ae:8f:49:13:2b:81:30:4d:d2:9e:28:94:e2:
48:ea:68:04:0d:33:d8:60:03:cd:d2:b5:4a:3c:f7:
ae:a2:1f:ed:66:c5:75:d0:d3:de:0f:81:42:eb:5d:
c1:fe:07:99:92:18:1a:3c:15:93:5c:1f:06:ed:c8:
df:13:98:a7:46:14:04:be:c1:ff:6c:5d:8c:0f:a7:
61:97:83:a2:20:34:ae:ab:06:f1:b7:4a:33:a2:42:
12:e3:82:26:62:6d:1a:59:d6:af:03:65:90:8e:09:
14:92:42:97:b5:a0:10:47:e4:1c:38:73:ff:7b:75:
f6:d0:60:bf:54:17:45:2e:d3:5c:f2:b0:f5:5f:d4:
c3:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:F5:B5:A9:4A:1B:4C:F2:1F:D1:67:9F:83:32:EF:31:CC:27:96:FD
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/AvW1qUobTPIf0WefgzLvMcwnlv0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.217.0.0/16
Signature Algorithm: sha256WithRSAEncryption
12:ea:21:9a:83:27:0a:77:04:31:f1:64:b7:66:53:b3:fe:4f:
23:d1:6f:12:c2:78:ae:15:6b:27:ff:55:81:3c:db:80:21:95:
21:c9:1a:ee:c8:cc:bf:13:85:48:2b:e9:7e:96:de:6b:b3:31:
7e:9d:2c:44:a5:f0:13:e5:1f:92:2f:9b:41:02:aa:68:bd:13:
30:ac:63:59:56:5d:f7:8e:af:a6:ab:c6:f9:41:21:db:5e:6a:
db:57:66:3b:79:f2:14:b0:52:97:33:70:80:02:65:ba:fc:44:
cb:9c:13:a3:bf:c3:11:fc:20:3c:21:e2:ea:20:12:99:b9:1c:
45:f1:e9:1d:93:92:6a:3b:f3:76:26:a2:0d:23:33:cc:3a:0d:
59:c2:91:71:6c:3e:4c:ec:a7:6a:12:a2:41:cb:3d:25:da:53:
2a:9e:14:7b:af:2c:de:9e:7f:18:b2:39:97:d1:bf:7c:49:7a:
45:75:6c:65:3c:ed:72:f5:79:b5:f1:77:67:58:d4:4f:6e:78:
bb:16:d8:b9:75:54:21:75:da:12:f1:c5:ab:71:83:80:3e:8c:
c4:e0:4a:b3:67:eb:65:5d:10:14:c3:75:e7:2e:9a:ca:db:c0:
2c:27:5d:ee:bf:ab:ad:bd:a8:ed:73:f7:86:2b:09:25:96:a2:
15:c9:d8:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:13 2024 by rpki-client on console-ams.rpki-client.org