Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/1yaR7MTj8ucj9O_LIIHC9HymFwg.roa
File: 1yaR7MTj8ucj9O_LIIHC9HymFwg.roa (raw, json)
Hash identifier: LA59Yo2OFnUV1rxQEdsj7cUE0QqrBlBCRhuXtdKpHl4=
Subject key identifier: D7:26:91:EC:C4:E3:F2:E7:23:F4:EF:CB:20:81:C2:F4:7C:A6:17:08
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 174B
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/1yaR7MTj8ucj9O_LIIHC9HymFwg.roa
Signing time: Wed 12 Feb 2025 01:36:34 +0000
ROA not before: Wed 12 Feb 2025 01:36:34 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17714
IP address blocks: 203.160.237.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5963 (0x174b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 12 01:36:34 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=D72691ECC4E3F2E723F4EFCB2081C2F47CA61708
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:77:b9:f4:cf:b5:96:ab:0b:d7:f4:b9:f3:7a:
05:7d:bb:73:8e:d4:36:f1:5e:ad:34:22:d6:36:83:
2e:ff:ab:23:6d:a3:82:ea:78:33:77:c9:fc:19:0e:
4f:2a:8b:d6:2b:5f:5e:4b:7c:e7:bd:01:06:b2:f4:
af:bd:95:c9:f7:91:96:b8:08:eb:25:ff:53:ff:ec:
fd:74:82:0d:be:11:80:37:c7:8a:4e:3e:d8:4f:c3:
7e:8c:a0:d5:f5:94:fa:e2:f7:ef:64:b7:73:2d:e0:
15:7d:3f:75:d7:ca:c9:f7:c6:a7:91:4a:51:0b:77:
b2:8d:f8:53:b7:98:c0:db:46:9e:94:dd:1b:20:61:
05:3e:be:0f:e0:ef:49:c7:17:cc:f6:11:a6:a1:44:
e8:de:cb:37:d1:bd:3c:70:88:31:90:91:17:e2:19:
5b:12:73:07:28:2a:19:98:2e:3a:9c:85:fe:94:08:
74:d8:a5:7f:f8:ee:6f:4a:8b:b1:15:08:5b:40:2a:
f4:7f:42:91:43:ef:6a:cf:c7:df:9f:af:0a:28:64:
fb:58:9e:f8:d6:c7:87:4f:a9:72:25:20:60:8a:0d:
c7:0c:8d:ed:de:6d:f1:18:da:d0:51:63:07:19:ec:
cc:82:fe:f9:d1:27:77:dc:83:33:b3:75:f1:fd:c8:
dd:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:26:91:EC:C4:E3:F2:E7:23:F4:EF:CB:20:81:C2:F4:7C:A6:17:08
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/1yaR7MTj8ucj9O_LIIHC9HymFwg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.160.237.0/24
Signature Algorithm: sha256WithRSAEncryption
50:ce:aa:d7:a4:25:d6:6a:b4:e2:04:ff:ab:ac:ae:cd:f1:a9:
d1:33:3a:49:51:b5:eb:50:06:2b:d5:da:b0:80:f9:31:bc:40:
a6:6a:83:b0:97:28:68:07:0e:a2:f1:fa:5e:41:ab:61:4a:14:
10:ef:73:ff:47:4f:f3:53:17:e3:0c:90:32:03:d4:e7:53:33:
58:c5:2c:aa:08:d7:b1:e8:ce:31:a1:a1:25:69:df:16:f9:92:
01:ba:26:4e:85:f2:2c:10:b9:02:31:0e:4c:39:e9:fb:fb:07:
0d:44:cf:2c:50:5a:76:16:da:c2:e9:8d:8d:11:db:de:6d:8e:
50:c9:42:62:59:06:39:7c:71:92:0b:6e:7b:e4:08:e5:66:2b:
e9:6a:ad:f6:59:bb:87:50:03:45:4d:31:fd:bd:66:49:8f:d6:
3b:bc:89:c0:63:b3:bf:3c:be:9f:c4:6b:fd:62:31:1d:48:cd:
60:45:3b:04:1f:bc:8a:8a:24:bc:82:28:78:2a:05:19:c3:fe:
ca:8e:0c:a8:e4:7a:e3:77:7d:2a:10:bf:fc:1b:80:3e:75:d5:
4c:e8:ce:ab:21:be:71:08:11:f1:82:29:0c:99:c9:97:bb:9d:
c4:59:e2:b4:a3:58:23:3b:78:37:f0:01:39:44:ed:9f:41:07:
93:aa:67:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 17:44:23 2025 by rpki-client