Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/aT-PExpA4oHMspUa8N90RuRYgGA.roa
File: aT-PExpA4oHMspUa8N90RuRYgGA.roa (raw, json)
Hash identifier: vlwfAhwxr8BNZXd2EYA1uwfyQeywVFRjzJNOttN8pmY=
Subject key identifier: 69:3F:8F:13:1A:40:E2:81:CC:B2:95:1A:F0:DF:74:46:E4:58:80:60
Certificate issuer: /CN=5876E4B8DFAA224C019D246931FC3CD7A4FEED2A
Certificate serial: 0C2B
Authority key identifier: 58:76:E4:B8:DF:AA:22:4C:01:9D:24:69:31:FC:3C:D7:A4:FE:ED:2A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WHbkuN-qIkwBnSRpMfw816T-7So.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/aT-PExpA4oHMspUa8N90RuRYgGA.roa
Signing time: Fri 01 Sep 2023 08:56:41 +0000
ROA not before: Fri 01 Sep 2023 08:56:41 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9680
IP address blocks: 168.95.245.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3115 (0xc2b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5876E4B8DFAA224C019D246931FC3CD7A4FEED2A
Validity
Not Before: Sep 1 08:56:41 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=693F8F131A40E281CCB2951AF0DF7446E4588060
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:58:dd:a5:78:b4:ad:f9:ed:d9:63:1c:3b:7e:
87:88:14:67:88:7c:66:f4:4f:a3:a6:2c:5a:58:21:
c6:b6:14:92:46:35:86:63:c6:1b:69:06:5f:ff:37:
72:e7:b5:c1:f0:6a:41:7e:59:e9:b1:f8:8d:63:c4:
2e:41:98:3d:e9:e4:8a:af:da:a4:18:da:66:43:27:
f8:03:a6:94:ca:e4:c0:9d:2f:5c:8e:db:a8:83:a1:
18:91:8b:fa:c5:86:a9:d5:1f:24:0f:b2:e7:45:68:
51:cd:70:eb:38:0e:49:2e:10:8f:ef:10:81:99:a7:
7f:f3:88:35:84:34:57:8c:67:8d:a3:6e:f2:6c:25:
76:aa:e0:3a:3d:48:30:cd:2a:57:e8:fb:28:cf:b7:
28:0f:1d:24:d4:64:75:63:9d:de:64:d9:21:91:1f:
a1:f0:5d:a6:35:ee:2a:4d:6a:36:f2:bc:40:7e:b5:
56:e5:96:81:6f:6b:c4:85:52:5e:43:fa:3e:02:25:
95:09:f9:88:a9:6e:1f:b2:24:25:71:85:42:f2:56:
d5:97:3a:e2:46:12:eb:d6:3d:99:24:cc:6d:ee:8f:
55:be:7b:e7:4e:49:8e:2a:8e:3c:76:12:05:05:a3:
6f:6f:f3:fa:5c:96:21:0b:06:fc:b9:1e:51:a6:2d:
41:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:3F:8F:13:1A:40:E2:81:CC:B2:95:1A:F0:DF:74:46:E4:58:80:60
X509v3 Authority Key Identifier:
keyid:58:76:E4:B8:DF:AA:22:4C:01:9D:24:69:31:FC:3C:D7:A4:FE:ED:2A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/WHbkuN-qIkwBnSRpMfw816T-7So.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WHbkuN-qIkwBnSRpMfw816T-7So.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/aT-PExpA4oHMspUa8N90RuRYgGA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
168.95.245.0/24
Signature Algorithm: sha256WithRSAEncryption
00:52:74:95:96:2c:ef:b8:97:83:a0:03:3f:cc:b2:87:b4:c9:
e0:d3:77:40:3b:7c:72:31:f8:40:b7:a6:0c:0a:58:05:94:b6:
ea:ad:03:bd:1b:da:46:74:26:ff:5b:ac:34:59:f0:3f:1f:d4:
6a:e1:16:40:3b:72:62:27:16:1c:8d:f6:9c:4e:67:4a:03:e4:
49:c1:08:94:fd:fd:c4:b2:87:0a:11:e4:ea:13:39:24:82:0d:
81:ba:04:59:0a:a6:13:d0:7f:69:42:49:40:5e:59:4f:7c:68:
f2:e2:80:61:fb:b5:d2:12:41:dd:08:a7:6c:7c:6d:27:be:dd:
39:2e:47:12:21:f9:d4:a7:a9:22:5c:bc:df:1d:3b:6b:0b:85:
29:64:82:00:bf:eb:ea:57:6f:e6:42:9b:63:ed:08:b9:a9:9c:
7c:82:1f:d1:01:fa:94:ef:b2:39:b5:7a:ba:28:9c:d5:07:b6:
90:5a:02:48:72:de:50:8f:46:da:7a:7e:85:ab:53:26:f8:e1:
0c:b4:44:03:1f:d0:ab:18:3b:44:77:26:2c:61:18:a9:e5:f5:
1a:03:93:7d:19:c5:57:56:d6:cd:04:1a:f6:c9:db:bb:20:a5:
d7:d3:6f:0b:60:00:73:ce:0b:47:38:a6:b5:eb:d6:3b:a7:6c:
4f:e9:3f:51
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICDCswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTg3
NkU0QjhERkFBMjI0QzAxOUQyNDY5MzFGQzNDRDdBNEZFRUQyQTAeFw0yMzA5MDEw
ODU2NDFaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDY5M0Y4RjEzMUE0MEUy
ODFDQ0IyOTUxQUYwREY3NDQ2RTQ1ODgwNjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC0WN2leLSt+e3ZYxw7foeIFGeIfGb0T6OmLFpYIca2FJJGNYZj
xhtpBl//N3LntcHwakF+Wemx+I1jxC5BmD3p5Iqv2qQY2mZDJ/gDppTK5MCdL1yO
26iDoRiRi/rFhqnVHyQPsudFaFHNcOs4DkkuEI/vEIGZp3/ziDWENFeMZ42jbvJs
JXaq4Do9SDDNKlfo+yjPtygPHSTUZHVjnd5k2SGRH6HwXaY17ipNajbyvEB+tVbl
loFva8SFUl5D+j4CJZUJ+Yipbh+yJCVxhULyVtWXOuJGEuvWPZkkzG3uj1W+e+dO
SY4qjjx2EgUFo29v8/pcliELBvy5HlGmLUEFAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUaT+PExpA4oHMspUa8N90RuRYgGAwHwYDVR0jBBgwFoAUWHbkuN+qIkwBnSRp
Mfw816T+7SowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
V0hia3VOLXFJa3dCblNScE1mdzgxNlQtN1NvLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9XSGJrdU4tcUlrd0JuU1JwTWZ3ODE2VC03U28uY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9hVC1QRXhwQTRvSE1zcFVhOE45
MFJ1UllnR0Eucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAqF/1
MA0GCSqGSIb3DQEBCwUAA4IBAQAAUnSVlizvuJeDoAM/zLKHtMng03dAO3xyMfhA
t6YMClgFlLbqrQO9G9pGdCb/W6w0WfA/H9Rq4RZAO3JiJxYcjfacTmdKA+RJwQiU
/f3EsocKEeTqEzkkgg2BugRZCqYT0H9pQklAXllPfGjy4oBh+7XSEkHdCKdsfG0n
vt05LkcSIfnUp6kiXLzfHTtrC4UpZIIAv+vqV2/mQptj7Qi5qZx8gh/RAfqU77I5
tXq6KJzVB7aQWgJIct5Qj0baen6Fq1Mm+OEMtEQDH9CrGDtEdyYsYRip5fUaA5N9
GcVXVtbNBBr2ydu7IKXX028LYABzzgtHOKa169Y7p2xP6T9R
-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:13 2024 by rpki-client on console-ams.rpki-client.org