Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/hPuzK3UVB7nCse6-JEy-WNJZYKY.roa
File: hPuzK3UVB7nCse6-JEy-WNJZYKY.roa (raw, json)
Hash identifier: 7JoaOwe0RqYKtc/Jb1Zn8JIMRLJ/l2HACwe0bjryWA0=
Subject key identifier: 84:FB:B3:2B:75:15:07:B9:C2:B1:EE:BE:24:4C:BE:58:D2:59:60:A6
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0F3E
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/hPuzK3UVB7nCse6-JEy-WNJZYKY.roa
Signing time: Fri 01 Sep 2023 08:56:48 +0000
ROA not before: Fri 01 Sep 2023 08:56:48 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 3462
IP address blocks: 210.65.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3902 (0xf3e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 1 08:56:48 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=84FBB32B751507B9C2B1EEBE244CBE58D25960A6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:a8:06:5d:e2:ec:92:69:09:b4:e1:fa:4b:b5:
d8:f1:c1:9c:0d:d9:5d:4c:5a:d6:86:3f:fd:66:18:
80:47:ea:5a:6b:5d:11:d0:6b:65:fe:66:a1:0a:b3:
c2:fb:0b:2c:c2:50:cd:2f:3c:8e:a2:da:0b:e2:88:
62:41:a0:da:ba:26:71:9d:5b:0a:40:a2:d2:9a:17:
34:83:5d:2d:56:c1:47:f1:8e:6d:37:24:3f:d3:f7:
b0:ec:eb:73:a7:63:6b:de:7c:46:b5:90:77:0c:5e:
58:1f:09:d9:80:31:4a:eb:1e:3a:f9:ae:1c:72:89:
90:13:77:f2:70:42:77:6b:f2:d0:22:b2:0f:a0:aa:
3c:1b:2a:c7:2b:e1:41:96:16:6f:83:19:a8:81:df:
2f:84:db:35:dc:3a:de:04:c4:cd:f2:0b:a2:24:19:
d9:22:13:78:70:93:19:a1:ad:dd:1a:82:71:0e:4f:
9e:40:f1:7c:bf:1e:4b:cd:0a:be:fa:d5:ea:62:41:
62:66:55:55:7e:29:14:c8:90:01:98:b2:b5:e4:7a:
5a:66:dc:a2:ca:da:0b:73:c0:16:79:92:a4:83:32:
ed:1e:de:c8:44:ed:d1:20:12:ff:f7:31:37:a3:20:
f6:12:9e:04:ce:14:01:dd:c1:b0:40:01:43:13:5d:
ad:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:FB:B3:2B:75:15:07:B9:C2:B1:EE:BE:24:4C:BE:58:D2:59:60:A6
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/hPuzK3UVB7nCse6-JEy-WNJZYKY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.65.0.0/16
Signature Algorithm: sha256WithRSAEncryption
20:ae:4b:3b:60:98:3c:7c:cd:97:d7:e4:80:3b:7f:d2:cb:8d:
93:38:c6:2c:0c:ac:4f:94:62:0a:8e:cc:74:06:34:75:f0:d2:
aa:f6:4b:c2:fa:6b:4f:68:9b:5b:0d:19:c5:15:dd:bd:40:d7:
98:02:35:49:e3:dc:79:9d:c7:5c:5f:76:0b:8f:6c:37:e2:3d:
31:14:98:5b:ef:a9:a0:22:de:30:df:18:cb:4f:93:8b:dc:f2:
b6:4a:e0:53:ef:db:ef:00:74:c9:33:a9:2f:f7:73:bd:20:4a:
cd:84:4b:f8:9d:20:46:ba:19:46:3f:7e:83:e4:6b:a4:17:df:
a4:29:09:8b:d9:a4:6c:1f:40:fc:04:d1:ab:3f:df:00:e1:61:
a4:85:23:bc:ff:2a:94:9a:30:cd:4e:16:9f:aa:f8:4c:66:71:
87:29:99:ac:dd:67:51:05:13:8c:03:50:fd:43:e5:47:82:64:
f3:94:32:80:1b:cd:0f:8d:a4:23:48:a1:67:f3:a6:45:4d:2c:
cf:d9:75:29:0c:26:8d:5e:c9:c8:00:0e:a8:c2:76:93:6b:8a:
fe:45:05:8e:10:7f:86:fa:7d:9f:65:2b:31:5d:bb:90:70:f5:
3d:1c:47:a8:7d:7b:a5:b7:b4:fa:04:c0:2b:a1:14:d1:f1:b3:
45:23:1a:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:13 2024 by rpki-client on console-ams.rpki-client.org