Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/Tn2LoXlaADbhJmK4eWQrFePX8C4.roa
File: Tn2LoXlaADbhJmK4eWQrFePX8C4.roa (raw, json)
Hash identifier: PK+yCio9cbYHMIfF3jPm9hNFZYF9+89F8Fi2k3gSHbk=
Subject key identifier: 4E:7D:8B:A1:79:5A:00:36:E1:26:62:B8:79:64:2B:15:E3:D7:F0:2E
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0F86
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/Tn2LoXlaADbhJmK4eWQrFePX8C4.roa
Signing time: Fri 01 Sep 2023 08:57:10 +0000
ROA not before: Fri 01 Sep 2023 08:57:10 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 3462
IP address blocks: 210.241.224.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3974 (0xf86)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 1 08:57:10 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=4E7D8BA1795A0036E12662B879642B15E3D7F02E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:01:0a:ba:c4:20:9f:ff:eb:17:64:b4:a0:d0:
b7:e4:83:00:58:d6:65:f1:77:2a:b8:c7:44:9e:67:
89:d4:b0:77:7b:fb:93:d5:4f:cc:ec:be:24:a4:91:
5f:a6:a6:df:64:61:18:2c:24:2a:5e:66:7c:5d:b6:
77:ed:ad:c1:a4:43:66:cf:0d:e6:4b:cb:76:aa:76:
58:cd:38:07:b1:1a:d7:ea:e6:25:88:10:2c:4a:d9:
88:3d:41:c7:76:b5:71:7f:49:d3:6e:5b:1f:e0:8f:
cd:02:b8:e9:ba:7b:8e:58:ef:53:79:c3:94:db:00:
8b:ba:72:b2:17:71:e2:c4:66:59:7b:45:85:44:9d:
4d:f3:50:e3:ed:9d:1f:61:3e:b4:62:c9:9b:43:97:
81:55:d9:a3:69:75:97:2a:df:05:10:7e:e8:7d:41:
57:27:7a:50:9b:4e:bf:ec:3b:5b:03:54:a2:c1:ee:
73:84:72:57:6e:45:8c:29:51:14:3d:85:88:39:0d:
97:04:01:f0:da:ca:1a:13:e4:37:b0:0f:0d:bf:ae:
b9:20:32:9d:ed:c3:87:5b:af:0f:96:9f:af:6b:55:
f7:26:61:82:66:d3:ab:57:4e:d1:53:e0:af:76:61:
57:90:42:94:ed:f8:a3:62:8f:eb:a0:16:28:77:42:
d2:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:7D:8B:A1:79:5A:00:36:E1:26:62:B8:79:64:2B:15:E3:D7:F0:2E
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/Tn2LoXlaADbhJmK4eWQrFePX8C4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.241.224.0/19
Signature Algorithm: sha256WithRSAEncryption
53:12:49:74:07:60:60:b5:27:f0:80:72:18:91:ec:e1:2f:88:
1c:1c:e5:e0:fb:7d:1d:0d:58:cd:f5:7c:14:cf:c5:fb:86:b1:
6a:79:2e:4a:60:5d:99:ca:e2:71:1b:d6:e5:00:2f:03:1e:27:
dc:81:e3:81:6e:14:ee:0f:e2:df:1a:f0:11:f0:ce:ea:17:2f:
4e:be:4b:15:30:b9:a2:ea:e5:70:c6:e7:7e:f6:89:99:95:59:
54:2a:22:37:b8:ff:3b:84:da:e1:0d:d5:e0:58:ee:4e:d1:b9:
4c:3b:63:5f:9f:0e:a0:c1:09:23:d7:76:aa:2d:98:2a:bc:2a:
e6:78:a0:58:56:90:f0:f3:81:88:f4:52:b3:ec:bc:74:c3:4c:
b9:75:76:cb:77:b0:a2:d2:a4:1e:74:7c:60:9f:43:30:66:55:
4f:fc:72:b2:f9:e7:13:94:31:f6:c2:0d:c4:81:94:0f:e1:a4:
6a:04:59:20:02:a6:c6:3c:9d:0d:29:96:2e:65:48:54:74:a8:
e0:87:b5:cf:c6:0b:ce:b5:d5:19:60:81:7e:ff:f6:aa:f2:6c:
ba:1c:4f:88:96:4e:64:48:d9:d3:97:d1:c5:75:84:1a:25:ba:
d4:e7:86:c2:0d:15:ea:84:da:27:8c:f9:ef:bf:46:dd:ac:6b:
51:74:15:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:13 2024 by rpki-client on console-ams.rpki-client.org