Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/PI0mjrIzlLu6eYVEQCE4OUU-EOw.roa
File: PI0mjrIzlLu6eYVEQCE4OUU-EOw.roa (raw, json)
Hash identifier: 1ctCY7ENtYqf85w6GHFKjyMJgZK7qUnqW7ghmcHoDQc=
Subject key identifier: 3C:8D:26:8E:B2:33:94:BB:BA:79:85:44:40:21:38:39:45:3E:10:EC
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0F99
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/PI0mjrIzlLu6eYVEQCE4OUU-EOw.roa
Signing time: Fri 01 Sep 2023 08:57:16 +0000
ROA not before: Fri 01 Sep 2023 08:57:16 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 3462
IP address blocks: 114.24.0.0/14 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3993 (0xf99)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 1 08:57:16 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=3C8D268EB23394BBBA79854440213839453E10EC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:31:50:0e:93:5a:47:ca:6c:03:a5:c8:68:67:
45:94:db:6f:74:c3:04:d7:31:a2:3b:3a:8d:11:ef:
7f:9b:ce:35:0b:d7:4f:6c:81:fd:8b:4d:0e:83:f1:
47:8c:84:96:30:64:b9:ab:94:68:7c:c1:dd:54:d3:
f5:e8:71:d9:52:b1:57:6e:6e:52:fa:d8:86:0b:e0:
00:29:ad:20:9b:4b:1a:90:f0:01:f7:1f:a5:bf:41:
1c:36:78:9c:41:5d:dc:1c:19:dc:90:45:6e:6d:a2:
45:84:7a:2b:b1:32:01:fd:03:72:5e:2f:6e:e7:9e:
11:54:11:fc:5c:12:a1:db:9d:19:9d:b7:94:8c:04:
0a:d3:71:68:9b:ff:c5:bd:2e:2b:1e:83:ef:9b:6a:
69:ec:58:b5:91:0d:f5:1e:13:6f:bc:69:0f:2f:3e:
45:86:3d:da:ff:ee:5c:19:46:6c:94:4d:33:27:55:
b7:a4:c1:5f:aa:2f:10:78:ff:fd:aa:87:19:35:f1:
db:1a:74:8f:05:da:c3:ce:d7:e0:fd:8e:fc:21:10:
83:12:f8:96:b8:93:14:25:d2:bb:9d:6f:2b:c0:26:
3f:c6:36:8c:26:29:5f:3c:58:26:d8:5c:e5:e7:b6:
54:36:7d:51:55:c9:e0:fc:11:2d:a3:d8:a4:f5:e4:
0e:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:8D:26:8E:B2:33:94:BB:BA:79:85:44:40:21:38:39:45:3E:10:EC
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/PI0mjrIzlLu6eYVEQCE4OUU-EOw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
114.24.0.0/14
Signature Algorithm: sha256WithRSAEncryption
a3:af:47:7a:2e:62:01:c4:10:d7:77:79:58:16:ea:07:a7:44:
6a:57:13:47:2a:f2:2f:55:33:e4:c7:eb:ad:22:1d:bc:e0:27:
52:7b:ad:37:d6:65:80:4b:dc:bb:d6:e2:b3:6c:fa:6b:72:05:
77:de:ac:bb:62:b0:fe:9e:13:f1:cb:b2:1a:49:bd:40:76:59:
fe:25:60:4f:72:60:eb:95:df:87:89:4f:9e:7e:4f:14:40:69:
58:41:9f:dc:31:11:cf:f8:f8:34:85:08:8c:cd:22:d5:c7:86:
f9:c8:b5:b6:24:34:51:35:73:ef:0b:8c:07:46:6a:61:99:14:
c6:72:b6:6b:8e:a7:08:6d:bf:53:d4:78:6c:a3:c4:5b:1a:44:
b7:1b:6f:d4:78:8c:f3:6b:f2:d7:70:15:39:a5:b7:39:83:74:
98:77:a7:71:05:9a:30:ae:e9:52:d5:c9:4c:a3:d5:3f:5c:91:
75:35:aa:f0:a9:54:ca:5f:38:09:e3:e1:c5:49:c0:8c:8e:da:
2b:cc:df:00:4e:68:db:33:1d:1b:63:b0:f2:e4:c1:e2:15:bc:
d8:ee:03:73:dd:5e:c2:ae:d6:94:3e:d3:d6:86:4e:78:be:50:
ec:e3:c4:47:b4:09:a6:b3:e2:03:a0:66:fb:10:b0:e1:9b:37:
0e:c6:05:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:13 2024 by rpki-client on console-ams.rpki-client.org