Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/q76c0HyhjeqfbibMIU4mmhCZync.roa
File: q76c0HyhjeqfbibMIU4mmhCZync.roa (raw, json)
Hash identifier: YEMnzWAQPG90mm/ALnCZmQFe8jqBhDzvVuHW3HX7EB0=
Subject key identifier: AB:BE:9C:D0:7C:A1:8D:EA:9F:6E:26:CC:21:4E:26:9A:10:99:CA:77
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0F32
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/q76c0HyhjeqfbibMIU4mmhCZync.roa
Signing time: Fri 01 Sep 2023 08:56:44 +0000
ROA not before: Fri 01 Sep 2023 08:56:44 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 3462
IP address blocks: 203.69.47.224/27 maxlen: 27
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3890 (0xf32)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 1 08:56:44 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=ABBE9CD07CA18DEA9F6E26CC214E269A1099CA77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:1f:22:be:3f:08:82:39:83:3c:5d:cc:6a:6f:
65:22:15:54:9d:c0:c8:ad:86:98:5a:74:8a:67:36:
a8:14:83:80:80:ee:52:4f:56:ea:b3:ca:66:1a:de:
a6:a0:d6:ad:aa:a2:56:1a:0b:96:90:1d:20:a8:e1:
4a:42:f8:ac:b5:79:e3:7a:76:61:b8:c7:73:43:6e:
47:dc:54:f9:7a:d5:69:69:9c:78:fa:3a:e8:00:d3:
f3:d7:bf:31:4d:e4:9f:6a:b3:ed:f1:e9:cb:8f:fc:
70:de:30:9b:68:4e:e1:ec:f5:dc:bc:3e:82:83:65:
b0:ee:f3:b8:07:8f:28:f1:20:45:19:cc:b5:78:a9:
6d:e0:64:f8:70:7c:e9:5b:e0:d4:b5:e3:87:ea:cf:
3c:39:fd:6c:8a:ec:94:9a:ef:75:88:dc:5f:6d:24:
80:22:eb:79:34:0c:8b:2f:1e:0f:1d:44:26:3e:fc:
50:61:a9:76:21:3b:30:90:8f:5d:00:a0:6c:4f:2e:
fc:a8:58:5b:11:51:80:cc:e5:d3:af:cf:c6:b7:0a:
35:a4:36:e7:e9:25:0e:3a:81:50:3a:13:86:a3:26:
37:dd:b2:f2:93:69:5c:22:7f:b7:22:bf:81:00:b5:
c0:00:9c:6a:74:ed:04:41:27:fd:28:e4:7f:be:bb:
6b:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:BE:9C:D0:7C:A1:8D:EA:9F:6E:26:CC:21:4E:26:9A:10:99:CA:77
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/q76c0HyhjeqfbibMIU4mmhCZync.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.69.47.224/27
Signature Algorithm: sha256WithRSAEncryption
2b:a8:8b:93:97:e9:05:12:2d:da:12:7f:ee:6b:22:81:5e:e8:
6b:16:da:8d:cd:3c:a8:c0:2b:c5:50:f5:28:98:b7:90:45:7e:
93:b1:a1:2e:eb:c6:d6:12:74:9e:06:f9:50:04:65:1f:af:dd:
65:39:57:dc:17:05:ed:fb:39:7f:5f:cc:7a:fe:1a:32:f5:a6:
d2:30:b8:f3:42:f3:9f:dc:b3:b4:20:97:1e:bb:31:92:b8:4f:
68:f8:ad:a1:4a:11:fa:50:b0:67:b8:75:7a:44:cf:c2:6c:33:
86:b9:b5:9e:0c:5c:26:c2:cc:21:6f:02:01:4d:1d:a7:00:eb:
f5:34:85:2b:04:d3:b7:97:e8:4b:18:bb:2e:01:01:ac:b3:27:
10:89:fc:20:2e:b0:be:1d:34:37:f3:24:6e:e0:49:85:50:c2:
cb:bc:e6:3f:c8:9d:2b:45:02:b8:89:6e:60:f9:cd:cb:2f:71:
30:00:ec:02:22:31:38:6a:6d:bd:2a:f7:e7:b4:1b:70:b5:2e:
b1:64:26:1c:0f:e4:ab:86:36:8d:f9:4a:86:55:3f:79:8a:77:
97:de:03:4b:07:03:ee:d9:51:16:3d:51:52:ce:c4:87:b9:5c:
14:7a:e2:08:b1:7c:66:61:8d:0f:75:ce:5d:b2:42:2d:5a:f4:
8e:6f:d2:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:13 2024 by rpki-client on console-ams.rpki-client.org