Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/TGwL9ImD2NKhsNRMCAODCM8knTc.roa
File: TGwL9ImD2NKhsNRMCAODCM8knTc.roa (raw, json)
Hash identifier: PDsdqKC7+G8gCYqlc4Q+axDc2Xjk1ur0aQ5+DbzfeYA=
Subject key identifier: 4C:6C:0B:F4:89:83:D8:D2:A1:B0:D4:4C:08:03:83:08:CF:24:9D:37
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1776
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/TGwL9ImD2NKhsNRMCAODCM8knTc.roa
Signing time: Wed 12 Feb 2025 01:36:44 +0000
ROA not before: Wed 12 Feb 2025 01:36:44 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 800
IP address blocks: 175.111.239.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6006 (0x1776)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 12 01:36:44 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=4C6C0BF48983D8D2A1B0D44C08038308CF249D37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:5d:de:8d:58:3c:df:c8:e2:91:de:0b:a5:7d:
c8:f1:93:ec:75:a6:d9:22:3e:b5:67:77:7f:ce:d1:
c7:b9:12:95:cb:dc:e3:ac:61:fc:7f:78:52:7a:90:
dd:c0:a7:16:66:ec:e1:63:a6:65:a8:5e:e8:f5:90:
b1:ad:c7:49:3a:4c:81:c6:18:9f:01:d7:ba:da:3c:
63:33:52:5f:5f:4e:20:e5:cc:d7:fe:56:88:29:46:
95:c7:34:65:b6:68:d7:71:53:39:4e:7b:d8:ee:ce:
46:61:de:40:99:0f:bf:23:40:bb:4d:70:10:3f:f9:
f6:83:22:49:e8:99:55:30:ee:4a:1f:ab:91:a5:6b:
f3:11:44:35:db:e7:24:dd:77:91:9e:0c:1b:fe:85:
16:9b:2f:cd:91:85:24:ce:c5:bd:f1:98:b9:77:07:
dd:79:44:1c:8c:c3:0c:67:fa:2e:8f:06:d9:b4:01:
11:ea:e3:c0:95:b9:de:30:24:ea:4b:b8:23:3f:d0:
cb:82:95:ea:63:bd:19:35:0b:5f:ba:e4:2d:d0:cc:
dc:af:af:f8:d7:1b:d4:6b:1d:7e:d9:9e:8c:f1:96:
8f:a0:e1:31:c1:bf:3e:57:a0:1c:60:87:03:c1:0d:
04:16:32:5f:a3:86:d5:7b:7d:c0:e6:33:9b:a5:5c:
6d:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:6C:0B:F4:89:83:D8:D2:A1:B0:D4:4C:08:03:83:08:CF:24:9D:37
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/TGwL9ImD2NKhsNRMCAODCM8knTc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.111.239.0/24
Signature Algorithm: sha256WithRSAEncryption
87:f5:8f:a4:c1:0f:5f:d3:53:81:97:ba:6d:9b:cf:20:b9:fd:
03:e1:1f:ce:b9:40:13:d9:d3:41:6d:75:43:11:c8:e4:09:dc:
cc:6a:1e:43:e6:1c:73:16:95:53:54:41:f3:7b:f8:44:73:59:
7d:99:fa:4c:95:68:ac:27:df:a4:56:53:5c:67:4f:99:6a:4a:
e6:98:da:99:51:b5:f6:23:74:3c:66:be:e5:ce:55:f1:33:0c:
49:6a:bc:ae:42:74:66:b3:79:ca:30:53:64:22:73:f4:14:77:
57:b4:9b:6a:00:0b:78:24:45:a6:c3:7a:44:c9:df:6a:aa:6b:
cd:24:e6:e6:0e:5a:c8:ee:27:f6:3d:6c:5b:02:44:d6:c8:97:
03:2e:5d:57:45:b1:8c:60:70:ec:7f:85:ea:9b:89:6c:a1:4e:
82:a8:32:13:4c:c1:93:01:1b:81:91:bb:2b:ab:8b:16:e7:64:
e7:97:e9:81:00:c3:99:07:ca:bb:d3:e9:46:1a:d1:bc:fc:25:
d2:de:ff:c1:01:e2:5c:d6:22:ff:52:e3:19:5c:3c:d1:ca:b1:
3e:25:c5:66:2d:0c:e5:49:d8:7c:dd:4c:7d:69:5c:99:85:c0:
d6:9f:20:ca:a4:af:bd:e6:06:94:64:ce:2f:c6:39:12:c9:fd:
5a:2d:b2:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 22:24:09 2025 by rpki-client