Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/-85_oU-3I5bmZT-0tOkTf3yr-xA.roa
File: -85_oU-3I5bmZT-0tOkTf3yr-xA.roa (raw, json)
Hash identifier: 471dg5QrsO1NMhmFe71NW5ajHu4OHfSs59zJDBW1N8I=
Subject key identifier: FB:CE:7F:A1:4F:B7:23:96:E6:65:3F:B4:B4:E9:13:7F:7C:AB:FB:10
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1785
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/-85_oU-3I5bmZT-0tOkTf3yr-xA.roa
Signing time: Wed 12 Feb 2025 01:36:47 +0000
ROA not before: Wed 12 Feb 2025 01:36:47 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 118.160.0.0/13 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6021 (0x1785)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 12 01:36:47 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=FBCE7FA14FB72396E6653FB4B4E9137F7CABFB10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:c4:3b:56:7c:b3:bb:91:01:00:bc:db:98:0b:
4b:49:95:db:e4:b1:8c:cd:da:7c:8c:9d:0c:89:3a:
f2:ac:a5:d0:ae:cf:ce:f8:76:7a:cf:5e:4c:da:5b:
00:c5:53:1b:6c:c4:af:6c:31:ea:b2:e5:b4:a8:f8:
a2:e2:8e:7d:8e:cd:4b:15:83:b8:90:65:df:15:d6:
b7:81:76:5d:82:ae:f0:12:d0:a8:f4:e7:9d:fe:ab:
71:3c:33:ea:f2:62:c1:f6:42:84:ae:d0:cb:81:3a:
72:de:f4:06:95:93:8c:a3:fd:ae:43:f2:ab:c6:b0:
18:5a:1d:f2:e3:d7:8a:b4:36:40:ab:b5:a7:5c:5f:
29:a3:67:e9:6b:60:40:24:83:83:ee:f1:08:c8:55:
f6:34:c3:d4:ec:e4:60:f5:2d:eb:9f:cf:5e:92:22:
1f:51:75:31:36:4e:1e:0e:6b:23:6d:10:9c:00:f2:
39:39:1e:cc:9e:d0:b6:9b:d5:82:bc:da:15:33:da:
66:6d:cf:7e:d6:b9:5b:fd:8b:99:9d:09:ba:b8:7d:
a0:64:3d:b8:3a:6b:23:ff:5d:33:ba:a9:ca:e9:2c:
60:f5:f9:80:6d:c0:24:a5:0c:cf:b3:3c:06:ac:ef:
a4:35:34:7f:61:df:a0:e0:2e:a1:77:5d:28:d7:5b:
35:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:CE:7F:A1:4F:B7:23:96:E6:65:3F:B4:B4:E9:13:7F:7C:AB:FB:10
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/-85_oU-3I5bmZT-0tOkTf3yr-xA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.160.0.0/13
Signature Algorithm: sha256WithRSAEncryption
b2:a2:ca:fa:0b:2e:f2:f3:5a:8f:5d:d2:ad:82:0e:45:ee:f3:
3d:52:e8:26:39:ad:52:b7:77:31:4c:b8:51:93:eb:34:47:50:
ac:76:51:7b:77:8b:bb:f5:6c:f4:4f:75:5d:9e:bc:6b:85:ed:
bc:ed:19:f2:80:67:c1:ac:f4:f4:c5:00:c5:3b:f1:ca:05:83:
4e:c4:27:0e:80:9b:61:6c:ef:4b:ff:1c:ee:35:5e:12:d7:06:
5d:6a:91:c6:df:9e:be:fa:2a:11:af:91:96:ab:25:20:b2:39:
a8:5c:c7:65:f7:f2:df:4f:64:5e:04:51:2c:37:e0:50:6c:21:
51:1a:29:d9:94:e5:6a:05:03:4d:0b:64:2d:7e:d9:d5:3f:1f:
f2:c4:e2:58:62:cb:9b:36:d1:91:44:aa:b5:92:0f:16:07:eb:
bb:9d:bd:9e:ad:c6:05:6e:5c:b3:6e:b7:b2:67:64:c1:aa:81:
73:e8:b7:9c:7d:cd:6e:a3:9e:fc:89:45:b2:20:d7:9e:f2:84:
4d:85:09:65:39:e7:b0:6e:ff:c0:0b:3f:4e:67:58:3e:92:3f:
15:7d:af:e9:f9:fe:5b:ef:b5:78:2a:25:14:b5:5e:8d:dd:f0:
93:1a:fd:29:17:73:7e:5e:34:8c:57:26:14:aa:bb:83:e2:34:
67:7d:b1:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 02:05:25 2025 by rpki-client