Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWINS/HGXAICMKlIFztpWd75_3AS8mfj8.roa
File: HGXAICMKlIFztpWd75_3AS8mfj8.roa (raw, json)
Hash identifier: WajPuWwbJkpNEAvkBk2K3kURT+9/Q/s6iGUXHrF5aOg=
Subject key identifier: 1C:65:C0:20:23:0A:94:81:73:B6:95:9D:EF:9F:F7:01:2F:26:7E:3F
Certificate issuer: /CN=615F9BD98CC70E8836D01A9481C19C5C2D45D791
Certificate serial: 0CCD
Authority key identifier: 61:5F:9B:D9:8C:C7:0E:88:36:D0:1A:94:81:C1:9C:5C:2D:45:D7:91
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/HGXAICMKlIFztpWd75_3AS8mfj8.roa
Signing time: Mon 10 Feb 2025 14:05:57 +0000
ROA not before: Mon 10 Feb 2025 14:05:57 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17416
IP address blocks: 2405:4d00::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3277 (0xccd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=615F9BD98CC70E8836D01A9481C19C5C2D45D791
Validity
Not Before: Feb 10 14:05:57 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=1C65C020230A948173B6959DEF9FF7012F267E3F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:ea:6c:94:86:a2:ba:80:b9:09:78:35:ae:3f:
0d:0c:12:03:9e:e1:97:e8:4f:d2:32:8c:d4:12:0d:
27:86:63:2d:21:9f:b4:0c:22:11:51:94:08:41:e0:
e6:af:89:7a:02:9c:e5:3a:b6:1c:ed:3b:37:b2:b0:
bc:a5:ef:d6:8c:00:df:ed:a9:f1:69:a5:e7:0e:88:
1d:4f:80:72:59:a4:7a:22:50:14:26:fc:3c:26:b5:
5f:c3:dd:92:1a:ff:c0:ca:f6:7d:ba:21:f3:da:0e:
2b:5d:36:79:6a:6b:a6:1f:9e:e7:e2:da:71:d1:ea:
85:8f:98:07:82:df:21:65:cf:c4:ba:b8:53:e3:3d:
25:d4:5a:77:9e:54:cc:c4:d4:73:43:86:4e:3a:95:
8a:f3:9a:cc:ee:05:3f:7f:4a:b8:c5:ea:c2:07:67:
f3:c6:06:eb:b9:f9:59:6b:06:e6:7e:b2:42:d9:ab:
f3:c7:88:39:bf:d9:de:02:61:02:b1:4b:89:17:bd:
fa:c2:4c:b0:a6:5a:4d:53:3e:88:0d:49:06:55:f0:
3d:2e:bd:fb:d9:e9:40:f9:a5:fc:cb:6e:42:98:f1:
6a:75:70:cc:d5:68:b9:44:32:0f:74:84:c6:ae:c0:
47:2c:57:c5:c2:4d:ba:2f:b3:04:d1:aa:d4:db:f1:
3e:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:65:C0:20:23:0A:94:81:73:B6:95:9D:EF:9F:F7:01:2F:26:7E:3F
X509v3 Authority Key Identifier:
keyid:61:5F:9B:D9:8C:C7:0E:88:36:D0:1A:94:81:C1:9C:5C:2D:45:D7:91
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/HGXAICMKlIFztpWd75_3AS8mfj8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2405:4d00::/32
Signature Algorithm: sha256WithRSAEncryption
6b:9d:e6:7b:73:c8:63:4e:61:86:32:4a:84:bb:af:00:8d:35:
5c:7f:b2:6b:04:6e:6f:cc:eb:5e:3a:c4:33:d1:c8:a5:85:90:
f2:ec:64:6d:63:44:87:17:6a:02:48:69:08:3d:1c:f1:dd:06:
00:f6:9e:c5:f9:ca:63:25:e8:3c:e6:db:1b:0c:e2:7f:b0:2c:
25:74:f0:c1:be:ed:75:e3:46:66:ff:44:08:58:99:58:0a:86:
e3:ef:ab:ea:2a:c3:1d:8b:9e:e7:c5:40:a8:11:f7:07:a9:59:
4f:86:cd:76:83:b3:da:3b:cd:fa:4e:23:ee:59:71:56:0f:d9:
79:03:53:f1:46:17:78:ad:d2:3f:f5:ec:32:22:a3:9a:a1:16:
e6:5f:eb:1a:ea:c7:82:d3:10:8f:d6:f0:23:35:98:75:01:f6:
08:5e:2b:85:61:43:73:0c:ca:01:a7:21:84:b4:c4:b7:94:8d:
ad:4b:34:f0:e2:20:2a:8e:58:97:49:87:ac:e9:a2:4a:06:c5:
5c:4d:dd:68:2f:06:35:0d:ee:c8:4b:c1:e2:2d:1e:44:70:43:
d3:08:42:76:9d:d1:25:fe:86:c9:25:41:18:63:40:fe:f8:a2:
60:eb:04:b4:b2:98:74:6a:56:d3:26:c8:17:35:e4:3d:f1:9a:
19:00:f4:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 10:03:11 2025 by rpki-client