Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/YkBxP0Zevph0AmmQIcUUZGzaKvQ.roa
File: YkBxP0Zevph0AmmQIcUUZGzaKvQ.roa (raw, json)
Hash identifier: lRi4iQ6qsmJa3oK+iGOptvC6mYcS6nnBZtlfnM+qFO4=
Subject key identifier: 62:40:71:3F:46:5E:BE:98:74:02:69:90:21:C5:14:64:6C:DA:2A:F4
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0FBB
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/YkBxP0Zevph0AmmQIcUUZGzaKvQ.roa
Signing time: Fri 01 Sep 2023 08:57:25 +0000
ROA not before: Fri 01 Sep 2023 08:57:25 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 142005
IP address blocks: 210.242.186.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4027 (0xfbb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 1 08:57:25 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=6240713F465EBE987402699021C514646CDA2AF4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:0a:71:c7:29:ab:3f:8f:cd:3f:16:a8:9a:4b:
da:43:85:0c:d1:e0:28:7c:ce:43:b3:90:c7:24:7c:
39:db:bd:3a:4f:8e:71:d1:52:06:36:a9:f0:6e:89:
bb:9c:73:3f:99:4d:4c:0b:09:fa:b0:30:34:23:a4:
c3:1a:68:a8:ee:d7:8e:62:c4:26:40:7b:35:ef:88:
77:ad:dc:1e:57:87:10:a2:80:41:55:4c:5c:2a:32:
57:4d:e7:69:f1:a1:c5:db:b2:45:76:22:fd:31:20:
cf:15:4b:66:55:25:45:cd:c5:4f:e8:0e:79:de:ac:
e8:cc:ec:85:90:cb:85:85:36:a7:bf:ce:76:94:62:
ea:a0:0b:e1:cb:87:b6:d6:91:8b:21:c9:0d:15:6c:
8d:f0:97:d6:c2:a7:03:dc:0f:7d:92:fc:d8:85:c4:
bd:0f:5a:66:4a:b5:bc:81:b6:cf:c7:8c:3a:7a:b0:
d6:b8:f9:d4:6c:1f:3b:9d:5c:2f:39:bc:b3:db:64:
65:7f:06:ea:dd:43:03:78:ea:18:56:40:70:7e:a5:
0a:7d:53:ba:0c:81:42:a6:14:f9:0f:5b:1b:82:c6:
03:36:26:b1:ab:38:89:8a:65:eb:cf:52:89:e7:09:
44:73:41:0f:86:5f:15:9d:12:b9:e9:fe:5f:53:f2:
ab:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:40:71:3F:46:5E:BE:98:74:02:69:90:21:C5:14:64:6C:DA:2A:F4
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/YkBxP0Zevph0AmmQIcUUZGzaKvQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.242.186.0/24
Signature Algorithm: sha256WithRSAEncryption
06:e4:03:bd:7a:a9:e0:ac:ce:f8:04:ae:d7:70:32:aa:61:b4:
d0:2e:51:45:31:28:27:5d:7f:3d:e4:eb:6b:de:ca:74:da:e5:
da:16:e9:12:7a:75:ea:03:9a:70:71:7b:c5:c1:37:03:60:11:
bc:e4:30:0a:7d:cc:3a:86:2d:54:bd:6d:4e:b5:8c:1d:f3:6f:
e3:03:fe:93:98:4f:9c:2e:7a:37:4e:1b:dc:24:a8:0d:9f:b4:
6d:a0:b2:e2:29:3d:ab:de:25:69:90:5b:7f:b0:28:d2:2c:d7:
97:66:39:7a:ae:64:c0:b8:22:3b:58:0b:11:f9:fa:01:6c:ab:
4a:f0:e3:f4:ba:10:1c:da:41:ae:3e:1b:90:77:1b:27:87:53:
00:67:c4:ec:84:17:fd:92:cd:4f:77:97:77:16:66:cf:0e:9c:
a7:37:d8:2c:e5:11:bc:c7:71:3e:03:eb:36:a9:55:26:5b:3a:
2e:43:9d:59:05:6f:a6:1d:e6:9e:cd:0c:d7:cd:56:bc:35:13:
bc:77:4b:d1:68:cb:fd:43:b1:73:32:ff:da:58:92:94:e4:4a:
7a:b9:9b:fe:ce:d9:6b:d4:56:52:53:9e:34:0e:03:39:ce:7f:
72:6a:14:e6:c1:83:1e:5d:f5:87:de:9f:7f:10:0d:90:59:17:
93:1c:95:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:13 2024 by rpki-client on console-ams.rpki-client.org