Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/htCKMPc4Rbh12g8reUX6HgT4SIY.roa
File: htCKMPc4Rbh12g8reUX6HgT4SIY.roa (raw, json)
Hash identifier: yKZTjwTacbXm9JpfVSXyeAYjDkm0zRcm9ENm6ssOffI=
Subject key identifier: 86:D0:8A:30:F7:38:45:B8:75:DA:0F:2B:79:45:FA:1E:04:F8:48:86
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0FBD
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/htCKMPc4Rbh12g8reUX6HgT4SIY.roa
Signing time: Fri 01 Sep 2023 08:57:26 +0000
ROA not before: Fri 01 Sep 2023 08:57:26 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17714
IP address blocks: 114.30.35.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4029 (0xfbd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 1 08:57:26 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=86D08A30F73845B875DA0F2B7945FA1E04F84886
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:8d:0d:a1:8c:7a:1e:89:b6:74:a4:dc:2e:c4:
6e:b2:f3:a1:07:b4:2c:aa:a8:85:92:2b:99:6d:4c:
52:cb:98:72:c5:fd:03:91:a3:fa:90:17:f7:cc:7e:
c1:cf:98:27:2c:83:28:01:06:b5:be:94:9d:c2:f3:
ff:7f:e7:84:d2:05:db:77:55:07:1c:2d:56:04:72:
93:d0:c4:04:f6:bf:29:b5:a4:be:f4:a0:3f:a8:78:
d8:75:05:48:a5:6d:87:8f:24:43:8a:4e:88:3a:1b:
f5:8f:05:09:8b:ba:72:55:87:e2:b1:d9:84:d9:22:
74:ee:f8:44:2e:77:71:81:bb:c6:d9:42:a0:14:5d:
6c:a3:4a:06:19:80:83:b4:4b:63:05:5b:58:a4:fa:
69:d0:3f:5c:b2:41:34:58:4d:46:19:3d:ee:cb:27:
af:8a:d2:18:fb:23:d1:1f:01:30:2c:ac:9a:3c:b5:
1c:9c:a2:86:83:c7:c7:dd:1a:e0:4b:a1:0f:b4:b7:
be:1b:b7:c6:ca:8f:7f:84:e9:61:db:a1:13:06:ab:
54:06:38:e2:55:da:06:dd:ce:24:1b:1e:62:93:7b:
81:61:78:5a:2b:13:15:c6:7e:41:e2:80:58:12:ba:
9f:c0:df:37:b1:e9:53:99:88:ae:e9:60:2f:37:d8:
a6:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:D0:8A:30:F7:38:45:B8:75:DA:0F:2B:79:45:FA:1E:04:F8:48:86
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/htCKMPc4Rbh12g8reUX6HgT4SIY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
114.30.35.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:82:cd:54:3a:78:c9:a1:95:54:92:ef:d0:e8:d5:66:8f:d2:
66:42:56:33:64:a7:cd:5d:27:d8:b2:84:ae:1b:0c:ca:7e:9a:
8d:c1:5a:c8:de:09:cd:8f:9a:7f:64:7e:c7:35:1c:7b:f9:d1:
35:c5:06:22:cc:0e:0b:36:c8:c5:28:af:6f:0d:4e:31:97:65:
e3:47:5a:e0:d7:5e:a4:d3:ee:97:9a:26:96:b2:c1:3b:f0:d7:
aa:62:2b:2d:1c:1f:6a:8b:99:e2:c1:73:25:62:ae:2d:4f:4b:
c2:9b:af:37:86:a6:08:0e:18:09:8c:4b:08:13:4a:1e:07:b0:
1e:36:59:fa:d9:fa:e5:f0:a3:03:f0:cc:c2:d6:58:4a:bf:97:
17:8c:d6:41:79:68:07:e2:9f:70:07:a0:16:65:e8:92:19:f6:
c4:50:ff:9c:a8:ef:77:b4:08:ca:0f:d6:7b:bf:b0:db:35:12:
f9:e2:f3:76:ea:76:02:e2:24:3e:fd:64:e3:6a:78:ba:5d:bb:
1e:69:da:2b:45:cd:a0:33:1a:ca:2f:16:f4:a5:60:15:23:6d:
c6:5c:b9:13:0b:ab:2b:b0:fa:60:a0:76:7a:5a:9f:c0:26:91:
20:38:e3:8f:28:06:e5:85:4e:d7:d1:1d:09:30:d0:1b:79:cc:
8f:40:eb:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:13 2024 by rpki-client on console-ams.rpki-client.org