Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/iQC80RP2rTMdzqljnXtgMLUJ_PI.roa
File: iQC80RP2rTMdzqljnXtgMLUJ_PI.roa (raw, json)
Hash identifier: 2KOyTOpWtWsYVnmoChc9bP0VfJeZQrZpmpEK66JiYq0=
Subject key identifier: 89:00:BC:D1:13:F6:AD:33:1D:CE:A9:63:9D:7B:60:30:B5:09:FC:F2
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 17AF
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/iQC80RP2rTMdzqljnXtgMLUJ_PI.roa
Signing time: Wed 12 Feb 2025 01:36:57 +0000
ROA not before: Wed 12 Feb 2025 01:36:57 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 15133
IP address blocks: 2001:b032:c101::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6063 (0x17af)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 12 01:36:57 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=8900BCD113F6AD331DCEA9639D7B6030B509FCF2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:a0:dd:2d:8a:e3:bf:4f:f9:33:b1:bf:75:76:
71:71:19:46:24:dd:9f:f1:b1:8f:b5:2b:ae:ac:c0:
fc:b6:15:60:4d:ab:57:57:06:ce:07:eb:40:61:85:
89:84:fb:ee:0d:c8:f2:5b:b7:4b:40:ec:1b:9e:e0:
50:01:c4:68:3d:8c:bc:02:c9:58:3e:22:40:18:64:
b1:23:7e:82:c0:78:b9:3d:9e:e8:a2:2f:1b:59:b5:
97:e5:6a:b7:dc:1a:6f:ed:2c:bb:22:b6:08:3e:f2:
12:97:eb:d0:9b:58:4b:ca:35:78:da:d8:27:20:2d:
2d:6e:73:38:69:16:c7:d5:fa:50:39:ab:3f:ab:1f:
9c:bc:ef:44:61:4e:a1:cf:f0:8a:96:48:d3:a2:ad:
fb:0c:a9:c8:f7:4b:cd:6c:61:b1:44:d6:61:ca:c7:
cb:f4:19:5f:0f:ff:2f:33:9f:84:7a:29:d4:62:9c:
33:b4:32:1d:98:57:6f:78:7e:b6:a0:ea:02:29:c2:
2d:9d:6d:5b:99:c1:4e:9b:90:f7:05:b8:f6:22:a9:
93:45:e2:4a:a4:f7:95:be:b1:5f:ca:c3:75:99:97:
14:d9:97:df:4e:00:8c:fc:95:52:63:45:ec:3c:28:
50:85:58:b0:d9:17:fa:b6:d7:62:64:fe:a1:9b:a1:
2a:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:00:BC:D1:13:F6:AD:33:1D:CE:A9:63:9D:7B:60:30:B5:09:FC:F2
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/iQC80RP2rTMdzqljnXtgMLUJ_PI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:b032:c101::/48
Signature Algorithm: sha256WithRSAEncryption
33:32:8e:09:e5:fb:60:fd:70:b8:8d:e3:67:d7:5e:07:05:6a:
bb:63:3a:5f:ce:a9:e5:bb:a4:63:67:00:79:02:54:58:b0:e1:
67:cb:e2:87:94:e3:bc:00:50:f4:5c:e6:72:72:c4:fd:ca:c7:
2c:94:c0:9d:2a:3b:49:6e:ab:83:b1:31:17:15:54:d6:e0:28:
88:f4:5d:37:94:02:96:bc:33:b8:c0:24:9f:9f:72:99:6b:15:
5c:da:4f:a8:1d:cb:bd:77:e8:33:f3:3c:b8:05:75:db:01:34:
0c:52:fc:55:f6:e1:24:3b:52:fd:bc:60:68:e2:ae:42:92:7c:
1f:ba:82:86:4d:66:83:c0:66:c4:79:f6:ae:76:cd:b6:fb:32:
3c:43:40:c7:6b:e0:06:00:be:0c:f1:05:a4:40:65:83:71:ee:
86:29:c7:4a:cf:24:11:4b:27:ca:da:1f:a2:e7:a6:61:3a:e9:
97:5d:14:79:bd:90:c3:bf:3d:62:19:29:b6:31:2d:83:57:f3:
8d:65:aa:c4:62:2d:9b:1d:0e:d4:ae:25:50:45:e9:4f:c5:a4:
ea:cc:97:bb:5a:f9:d4:88:7a:05:62:2c:4e:31:0e:3f:ca:a0:
b6:5d:7c:36:2b:18:21:1b:21:e1:80:a2:c1:24:ea:2b:f5:06:
1b:d5:be:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:42:01 2025 by rpki-client