Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/HDakDkDlnNqOMDDTxkCfd0qZICk.roa
File: HDakDkDlnNqOMDDTxkCfd0qZICk.roa (raw, json)
Hash identifier: ufB+OIERBfqnGBzZ0E6wteIw9TtIVNSsCq495mWe/ik=
Subject key identifier: 1C:36:A4:0E:40:E5:9C:DA:8E:30:30:D3:C6:40:9F:77:4A:99:20:29
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 172A
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/HDakDkDlnNqOMDDTxkCfd0qZICk.roa
Signing time: Wed 12 Feb 2025 01:36:27 +0000
ROA not before: Wed 12 Feb 2025 01:36:27 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 36040
IP address blocks: 2001:b032:c0ff:1::/64 maxlen: 64
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5930 (0x172a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 12 01:36:27 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=1C36A40E40E59CDA8E3030D3C6409F774A992029
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:7e:2d:2d:a3:5a:b9:b3:45:d6:e0:ec:67:16:
e8:be:34:f3:cb:43:0a:d0:b7:d2:35:be:85:53:9e:
ec:1a:7a:d7:d3:a7:1a:32:26:e6:56:fa:da:08:af:
3f:8d:51:51:d9:5f:22:9e:48:9d:8c:b5:09:df:c9:
5d:52:07:bf:97:da:de:fb:98:76:95:6d:4d:a6:ad:
68:e5:8d:7e:1a:95:71:6f:51:5d:f8:a3:03:bd:aa:
b5:5d:90:5c:2a:6d:11:57:48:3e:5f:5a:ac:22:f4:
10:1b:98:1a:43:1a:10:dd:ff:e6:f6:4a:d8:69:90:
6d:17:d7:99:ee:8a:cc:9f:c9:0b:d5:f2:63:0d:4d:
43:08:28:19:c9:58:95:48:48:66:85:5c:b0:4b:0f:
10:68:a2:8e:2e:84:b6:c9:89:21:53:08:20:4c:72:
e2:22:05:26:7c:32:22:01:fd:0d:e2:21:8c:d1:50:
e9:ec:33:e0:3b:39:00:56:df:78:c8:37:8a:bb:d0:
c8:af:7e:14:61:d9:11:e4:b5:88:fe:ae:72:c8:01:
f1:e6:85:fc:d4:29:80:54:8e:23:56:09:0a:ca:fe:
cc:56:90:ac:e0:df:67:ad:e6:60:db:76:15:47:6e:
37:38:47:c2:80:be:5e:08:cb:7c:3b:a7:a2:7b:ff:
aa:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:36:A4:0E:40:E5:9C:DA:8E:30:30:D3:C6:40:9F:77:4A:99:20:29
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/HDakDkDlnNqOMDDTxkCfd0qZICk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:b032:c0ff:1::/64
Signature Algorithm: sha256WithRSAEncryption
5a:24:85:28:72:1f:8c:1d:cd:a6:20:eb:ad:f4:c8:53:29:f5:
3c:13:05:11:ec:fb:f6:36:2d:64:c3:ec:be:d2:22:e7:1a:fe:
ee:c6:e4:08:09:ea:a7:df:74:ce:06:df:7d:fd:eb:41:7d:94:
f0:8e:ca:84:e2:4c:87:f1:e9:28:0d:e3:89:b2:2c:7b:61:9a:
cd:94:51:d0:88:ad:7c:fb:8e:c6:fe:a0:d8:c4:a0:32:a5:6d:
c9:26:0e:d2:a8:d1:b0:c8:54:7f:b7:e6:b2:f8:ef:e5:31:58:
1e:8a:4a:e7:45:35:2c:d1:66:0b:19:af:0c:3d:c3:a5:9c:21:
62:70:4d:14:d1:54:a3:60:d7:25:ca:c6:7d:77:1e:0f:b1:61:
2a:f5:56:71:09:ce:35:af:8c:88:8f:9e:1e:01:81:ec:80:49:
b8:e0:55:54:18:f2:c4:3a:86:b7:14:96:36:c4:41:a6:bb:f2:
95:87:68:73:13:8a:32:ee:44:36:1f:bd:6c:16:5c:b6:69:3a:
51:02:6c:b6:5d:d7:e8:c5:1d:13:c0:a4:9e:31:67:c9:06:ac:
35:cf:98:f5:02:6c:57:ca:de:88:e4:12:bd:d5:6f:6f:cb:b5:
3b:7c:56:f7:6e:70:2c:15:28:99:df:fc:b2:ab:1b:cd:5b:bc:
a0:11:73:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 08:02:43 2025 by rpki-client