Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/1n8v1I1RvWdLx_MEdoSRGg1xs0I.roa
File: 1n8v1I1RvWdLx_MEdoSRGg1xs0I.roa (raw, json)
Hash identifier: TykanIaLVwSaWML6Ap/MjqFqnUUnmyDoR2l+OKHo/tg=
Subject key identifier: D6:7F:2F:D4:8D:51:BD:67:4B:C7:F3:04:76:84:91:1A:0D:71:B3:42
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1771
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/1n8v1I1RvWdLx_MEdoSRGg1xs0I.roa
Signing time: Wed 12 Feb 2025 01:36:42 +0000
ROA not before: Wed 12 Feb 2025 01:36:42 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 7500
IP address blocks: 202.39.32.0/28 maxlen: 28
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6001 (0x1771)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 12 01:36:42 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=D67F2FD48D51BD674BC7F3047684911A0D71B342
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:33:e2:7a:f9:23:8b:a7:09:e3:3d:86:39:7c:
9c:ee:c8:4b:79:b0:2a:a8:71:1c:25:85:b5:ab:a0:
73:51:cc:de:ab:48:e2:44:3f:ea:aa:4d:27:3d:bb:
8b:01:ec:63:6d:41:ef:35:4f:a7:21:5f:78:46:96:
c0:cf:91:68:8c:76:71:f0:11:18:d2:d9:e1:f9:70:
87:3c:44:05:c4:6d:59:0b:fd:b1:9d:db:70:62:93:
c8:d6:d5:ed:6a:6a:4f:68:54:64:72:99:34:0c:4a:
e8:46:0d:b4:a0:44:a6:4c:e5:8b:0e:46:05:75:34:
a0:26:b1:ee:3e:97:72:ab:61:c3:8a:9d:83:d7:44:
0b:75:af:8f:a3:84:d4:fa:5e:ec:27:8f:c4:a3:cd:
1a:37:41:37:2b:2a:f6:1c:7f:f4:4c:ca:9e:1f:c8:
ac:21:e7:e8:49:e1:03:99:26:42:59:32:69:0a:16:
7b:60:be:af:d3:95:bd:a1:3f:fd:4b:7e:0e:fe:a8:
9b:6f:88:d8:0b:82:58:46:89:0d:59:04:b8:14:43:
48:61:b0:b5:64:fb:a6:59:02:1d:9e:bd:66:80:d7:
37:62:5a:a5:41:c5:6b:4f:26:78:46:cd:3f:19:2b:
b9:ff:30:f9:b4:c9:66:c8:7c:2c:a1:05:43:47:67:
cd:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:7F:2F:D4:8D:51:BD:67:4B:C7:F3:04:76:84:91:1A:0D:71:B3:42
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/1n8v1I1RvWdLx_MEdoSRGg1xs0I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.39.32.0/28
Signature Algorithm: sha256WithRSAEncryption
a9:c3:87:ee:f2:0c:c4:f5:2a:29:1a:b8:56:16:63:6a:1a:ad:
38:f5:63:f7:2d:a3:b2:f2:a6:27:85:2e:86:60:51:b5:1a:96:
86:a0:35:a6:15:f5:89:3a:80:8a:68:cf:fa:0b:c5:6f:c9:d3:
7f:06:8b:ea:d6:1b:1c:31:3c:7f:91:73:ba:30:6e:d9:80:22:
39:bc:13:4b:13:3a:f8:db:a4:4e:44:5c:62:3e:b8:44:56:37:
04:aa:b0:49:a8:fc:4a:88:d0:34:54:72:81:85:ea:31:54:cf:
53:10:c9:b1:6c:f5:64:59:05:f8:74:eb:0a:40:c8:d0:06:47:
d6:da:e8:ab:4d:d5:c1:6a:3a:d1:b9:5c:da:65:6a:9c:ae:c9:
f3:74:8d:03:31:bd:2c:1d:01:11:51:93:37:b6:18:7f:52:e0:
7c:12:8f:6f:65:2f:65:f7:a3:aa:42:73:67:8d:a4:c6:7e:11:
f4:d3:46:a7:3b:12:68:a4:a4:20:52:ee:63:de:10:0f:c9:72:
44:6a:16:1a:f5:3a:67:03:d9:de:55:eb:55:f0:01:3d:52:d5:
ff:0b:ce:e3:58:5b:aa:2e:98:20:c5:d8:de:ee:a7:f3:81:4d:
fc:18:70:98:84:c5:f3:d4:50:c8:fe:34:2e:e7:20:44:ed:99:
11:be:f4:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 17:47:46 2025 by rpki-client