Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/CmOZcGtxQEqJjI6ilVYc1ztKB4U.roa
File: CmOZcGtxQEqJjI6ilVYc1ztKB4U.roa (raw, json)
Hash identifier: /Rk576H8c1mdpxX7jhPjS/0YvFvppb6V8TxapF2AkRo=
Subject key identifier: 0A:63:99:70:6B:71:40:4A:89:8C:8E:A2:95:56:1C:D7:3B:4A:07:85
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 107C
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/CmOZcGtxQEqJjI6ilVYc1ztKB4U.roa
Signing time: Wed 08 May 2024 02:23:38 +0000
ROA not before: Wed 08 May 2024 02:23:38 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 198949
IP address blocks: 203.74.176.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4220 (0x107c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: May 8 02:23:38 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=0A6399706B71404A898C8EA295561CD73B4A0785
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:d1:3b:e4:57:dd:a4:5d:ee:82:34:ad:83:b2:
24:47:36:54:32:fe:8b:81:f3:57:a5:7a:f1:27:2a:
c0:de:90:92:7d:ff:6b:01:8c:55:f7:f0:1b:fd:48:
f8:80:2a:2b:1b:f0:ea:e5:89:61:ac:94:d9:35:f0:
6f:3f:4c:0d:0f:cf:1c:ea:e9:7f:a0:bc:01:53:f2:
08:71:53:81:9c:1b:c1:3d:20:9e:f8:38:a8:8f:f6:
8c:cd:15:4d:54:9e:bb:27:8f:d1:11:55:2b:bf:62:
fe:d2:1a:5b:08:70:68:b2:c0:33:05:27:17:76:cd:
6c:62:00:3d:44:f7:b5:83:5c:40:3f:4f:06:08:e9:
ce:cf:9c:9a:90:62:3b:37:8a:8c:47:18:98:7c:c1:
fc:2c:3d:22:f2:47:3e:f9:a3:de:c7:ca:89:b9:a0:
d5:af:5f:49:7c:a2:10:d6:bd:5d:3d:5f:96:7b:30:
ae:37:01:5b:00:c4:ae:74:da:62:43:81:91:48:70:
41:40:ee:9e:bd:69:64:18:66:0e:d8:cb:45:ad:9b:
bb:53:2f:52:06:26:5e:94:3a:e1:cb:ea:d0:46:aa:
fc:9f:12:bd:c2:93:ca:b6:04:76:8e:00:87:2c:5d:
df:e3:2a:01:63:d0:d0:2e:9b:26:0e:17:ad:60:6e:
47:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:63:99:70:6B:71:40:4A:89:8C:8E:A2:95:56:1C:D7:3B:4A:07:85
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/CmOZcGtxQEqJjI6ilVYc1ztKB4U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.74.176.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:36:d4:84:52:71:88:2e:99:27:7a:75:c5:14:7b:48:50:0e:
3f:d2:24:61:91:e0:57:f4:52:0d:3e:d5:2e:a3:9c:b7:33:ea:
28:ac:f0:6a:e1:c9:4d:6f:06:c5:cd:86:78:de:69:bb:11:75:
28:e0:76:c1:7b:bd:b0:14:d2:66:0f:bd:6c:4e:ae:96:47:2b:
d7:63:73:f4:5c:c9:83:6c:2f:3b:9d:90:21:12:e3:71:50:41:
ae:ab:3a:fb:31:58:ce:19:6e:4b:1a:7b:ef:d2:21:d3:98:f1:
d1:7b:be:5c:84:44:f6:77:13:70:3d:6b:5f:73:bf:53:f5:aa:
b3:f4:bb:e5:e6:39:84:f1:e2:8e:13:48:7d:a2:b8:12:45:6f:
8b:d5:f5:57:ce:0b:25:7d:63:6d:7e:4f:57:86:87:de:bf:c3:
7a:56:9d:9a:b0:93:79:ec:2e:6e:1d:27:56:a7:88:98:3a:b1:
cf:65:94:62:40:25:81:af:03:55:4b:45:c3:9f:ba:ad:b2:ea:
d2:da:b0:ff:7e:ab:80:24:dc:71:b8:da:70:97:d4:50:3b:f1:
cb:c0:a6:20:d4:cc:96:56:ba:9a:01:23:d3:4a:71:61:2a:3a:
b1:52:c3:47:9f:3c:6a:85:f7:69:ce:9b:db:d8:d8:28:88:ad:
21:91:26:51
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICEHwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNDA1MDgw
MjIzMzhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDBBNjM5OTcwNkI3MTQw
NEE4OThDOEVBMjk1NTYxQ0Q3M0I0QTA3ODUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDO0TvkV92kXe6CNK2DsiRHNlQy/ouB81elevEnKsDekJJ9/2sB
jFX38Bv9SPiAKisb8OrliWGslNk18G8/TA0Pzxzq6X+gvAFT8ghxU4GcG8E9IJ74
OKiP9ozNFU1Unrsnj9ERVSu/Yv7SGlsIcGiywDMFJxd2zWxiAD1E97WDXEA/TwYI
6c7PnJqQYjs3ioxHGJh8wfwsPSLyRz75o97Hyom5oNWvX0l8ohDWvV09X5Z7MK43
AVsAxK502mJDgZFIcEFA7p69aWQYZg7Yy0Wtm7tTL1IGJl6UOuHL6tBGqvyfEr3C
k8q2BHaOAIcsXd/jKgFj0NAumyYOF61gbkfXAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUCmOZcGtxQEqJjI6ilVYc1ztKB4UwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9DbU9aY0d0eFFFcUpqSTZpbFZZ
YzF6dEtCNFUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy0qw
MA0GCSqGSIb3DQEBCwUAA4IBAQANNtSEUnGILpknenXFFHtIUA4/0iRhkeBX9FIN
PtUuo5y3M+oorPBq4clNbwbFzYZ43mm7EXUo4HbBe72wFNJmD71sTq6WRyvXY3P0
XMmDbC87nZAhEuNxUEGuqzr7MVjOGW5LGnvv0iHTmPHRe75chET2dxNwPWtfc79T
9aqz9Lvl5jmE8eKOE0h9orgSRW+L1fVXzgslfWNtfk9Xhofev8N6Vp2asJN57C5u
HSdWp4iYOrHPZZRiQCWBrwNVS0XDn7qtsurS2rD/fquAJNxxuNpwl9RQO/HLwKYg
1MyWVrqaASPTSnFhKjqxUsNHnzxqhfdpzpvb2NgoiK0hkSZR
-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:13 2024 by rpki-client on console-ams.rpki-client.org