Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/4WrePGVQEk7yLRPWBNM_YSsN31k.roa
File: 4WrePGVQEk7yLRPWBNM_YSsN31k.roa (raw, json)
Hash identifier: PB/C9D5/+HUxb8X2ajO/ghW5yCDDODECi+bdAryzP4o=
Subject key identifier: E1:6A:DE:3C:65:50:12:4E:F2:2D:13:D6:04:D3:3F:61:2B:0D:DF:59
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 17A2
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/4WrePGVQEk7yLRPWBNM_YSsN31k.roa
Signing time: Wed 12 Feb 2025 01:36:54 +0000
ROA not before: Wed 12 Feb 2025 01:36:54 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 800
IP address blocks: 175.111.238.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6050 (0x17a2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 12 01:36:54 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=E16ADE3C6550124EF22D13D604D33F612B0DDF59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:f2:28:52:ad:30:d2:6d:95:af:c0:4c:41:6d:
44:d3:c6:74:62:b1:06:f9:f6:d7:ab:f4:c8:8f:0d:
81:e6:08:22:e5:b5:49:80:34:91:f6:ad:b9:56:39:
51:a6:86:c6:14:a7:5f:83:c5:6c:ac:1d:70:eb:64:
6b:fa:ec:be:42:8d:63:34:95:4b:81:a1:57:6a:03:
a1:f9:c1:57:7e:39:40:4d:6c:95:dc:4a:a9:59:85:
85:35:ca:ca:ec:73:28:e2:75:1a:a5:3d:4a:db:28:
a1:41:4b:03:9a:bf:67:bd:5c:9b:cc:f5:9a:f1:67:
63:eb:c6:5e:d0:1d:cd:c8:3f:86:ac:dd:b5:3a:c1:
a3:da:df:5f:c6:10:df:a9:4d:93:22:7c:e9:96:c6:
90:5f:d3:46:cf:87:8d:6f:43:b5:f5:d6:5e:2b:f6:
3d:49:b1:cf:e0:e3:07:51:8d:ac:42:b3:c6:89:33:
68:a1:20:44:51:26:c8:7d:67:33:b0:21:ca:ea:03:
d9:11:83:96:76:e1:74:bd:0e:0d:8f:44:46:0c:ec:
e7:20:e3:b9:d3:dc:57:8b:54:64:b8:3f:fd:7d:17:
4c:2a:17:d9:0a:ac:c4:68:87:78:ff:d0:dd:54:58:
ed:28:62:99:83:05:12:62:61:2a:75:db:2c:9a:f3:
9d:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:6A:DE:3C:65:50:12:4E:F2:2D:13:D6:04:D3:3F:61:2B:0D:DF:59
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/4WrePGVQEk7yLRPWBNM_YSsN31k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.111.238.0/24
Signature Algorithm: sha256WithRSAEncryption
44:25:17:0f:c2:13:8e:b6:62:67:f2:fd:94:ae:5c:6f:7d:50:
3a:a5:c9:e6:11:b3:25:7e:e3:10:9b:7e:97:96:23:b6:22:58:
25:9b:e4:fa:74:0f:6d:e0:db:cc:36:38:19:91:21:1d:13:d2:
c8:e2:0a:5d:70:06:c6:07:25:af:0a:e1:a6:ae:6b:a2:ee:5e:
8a:d2:59:6e:98:14:8e:f2:94:0b:06:5e:58:4a:85:9d:28:f1:
14:51:d5:38:81:b5:fb:83:22:49:37:31:ff:54:97:22:5b:3b:
ec:7c:b0:e4:16:a5:79:b1:26:c2:44:85:b6:88:06:5b:0c:88:
88:fb:65:c7:e5:48:97:25:ce:4d:cf:28:73:00:48:81:62:f0:
20:07:0e:e8:09:d1:4e:4d:e5:53:f2:38:7e:0e:d1:4d:67:f8:
4f:8a:34:ca:8d:f1:63:88:f2:a8:28:61:c6:75:fb:27:de:b7:
fe:0e:79:84:26:83:95:68:a9:34:86:72:f9:bb:38:11:fc:3f:
4a:1c:25:e3:70:90:a8:8b:fb:e8:73:ac:66:07:18:ba:74:45:
55:33:53:2a:0e:3e:af:8e:7b:12:9c:31:be:27:d3:ee:00:4e:
46:4b:4e:fa:5a:dc:25:f1:60:e7:97:d2:16:36:cd:a3:85:7c:
03:57:2c:18
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICF6IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTIw
MTM2NTRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEUxNkFERTNDNjU1MDEy
NEVGMjJEMTNENjA0RDMzRjYxMkIwRERGNTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDl8ihSrTDSbZWvwExBbUTTxnRisQb59ter9MiPDYHmCCLltUmA
NJH2rblWOVGmhsYUp1+DxWysHXDrZGv67L5CjWM0lUuBoVdqA6H5wVd+OUBNbJXc
SqlZhYU1ysrscyjidRqlPUrbKKFBSwOav2e9XJvM9ZrxZ2Prxl7QHc3IP4as3bU6
waPa31/GEN+pTZMifOmWxpBf00bPh41vQ7X11l4r9j1Jsc/g4wdRjaxCs8aJM2ih
IERRJsh9ZzOwIcrqA9kRg5Z24XS9Dg2PREYM7Ocg47nT3FeLVGS4P/19F0wqF9kK
rMRoh3j/0N1UWO0oYpmDBRJiYSp12yya850pAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQU4WrePGVQEk7yLRPWBNM/YSsN31kwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC80V3JlUEdWUUVrN3lMUlBXQk5N
X1lTc04zMWsucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAr2/u
MA0GCSqGSIb3DQEBCwUAA4IBAQBEJRcPwhOOtmJn8v2UrlxvfVA6pcnmEbMlfuMQ
m36XliO2Ilglm+T6dA9t4NvMNjgZkSEdE9LI4gpdcAbGByWvCuGmrmui7l6K0llu
mBSO8pQLBl5YSoWdKPEUUdU4gbX7gyJJNzH/VJciWzvsfLDkFqV5sSbCRIW2iAZb
DIiI+2XH5UiXJc5NzyhzAEiBYvAgBw7oCdFOTeVT8jh+DtFNZ/hPijTKjfFjiPKo
KGHGdfsn3rf+DnmEJoOVaKk0hnL5uzgR/D9KHCXjcJCoi/voc6xmBxi6dEVVM1Mq
Dj6vjnsSnDG+J9PuAE5GS076Wtwl8WDnl9IWNs2jhXwDVywY
-----END CERTIFICATE-----
Generated at Sat Apr 5 22:23:37 2025 by rpki-client