Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/3PgMU0J9bMYquj331ZKgJnvJqEQ.roa
File: 3PgMU0J9bMYquj331ZKgJnvJqEQ.roa (raw, json)
Hash identifier: LPaHchVSksKNivMq6BI+8bGjeMV1a0RhHB5NxmwIHwY=
Subject key identifier: DC:F8:0C:53:42:7D:6C:C6:2A:BA:3D:F7:D5:92:A0:26:7B:C9:A8:44
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 17B8
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/3PgMU0J9bMYquj331ZKgJnvJqEQ.roa
Signing time: Wed 12 Feb 2025 01:37:00 +0000
ROA not before: Wed 12 Feb 2025 01:37:00 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 1.34.0.0/15 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6072 (0x17b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 12 01:37:00 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=DCF80C53427D6CC62ABA3DF7D592A0267BC9A844
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:e1:16:8b:05:a0:b8:23:da:d4:a9:98:4e:a6:
5b:50:86:9e:0d:ba:67:5c:a9:58:25:67:02:be:01:
64:6a:94:26:fc:77:3e:75:d1:fe:b2:5e:5e:42:fb:
97:e8:97:a1:a2:34:23:0c:87:ea:9b:75:60:81:5f:
ec:4e:9b:cf:1e:72:46:76:20:07:27:dd:2b:3d:77:
67:4f:5e:f9:03:37:bb:b9:ba:1d:fa:b7:d5:d7:cd:
68:a9:9c:24:73:12:ab:99:c8:73:aa:a3:cb:f1:6d:
6b:f4:0d:e6:53:1c:c9:73:e8:a0:9f:1e:39:c1:09:
04:2b:fa:58:c6:61:b6:bc:bf:c3:66:19:5d:61:b5:
ab:8b:0a:66:56:79:b0:1a:38:ce:22:31:53:67:64:
bf:b4:69:1a:3a:83:54:91:8c:b9:99:0a:65:34:3f:
d9:12:fe:b0:d5:29:c4:31:c3:8d:0e:12:7b:3f:fc:
19:72:b9:0d:e0:c1:6d:8e:b2:b0:aa:32:cb:a9:ee:
66:31:46:54:0d:b8:52:b4:32:04:fd:03:25:b8:2d:
24:f9:4d:24:f9:16:46:79:0d:8f:a2:15:6f:8c:8b:
04:75:f7:19:9d:e0:09:ea:49:b5:2a:65:cb:7b:98:
83:30:06:71:7c:2e:e1:c3:41:02:c1:dc:b3:3f:76:
2b:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:F8:0C:53:42:7D:6C:C6:2A:BA:3D:F7:D5:92:A0:26:7B:C9:A8:44
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/3PgMU0J9bMYquj331ZKgJnvJqEQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
1.34.0.0/15
Signature Algorithm: sha256WithRSAEncryption
31:51:4f:4c:9d:ab:33:95:7d:ff:84:c6:f9:2d:7d:13:66:63:
25:b4:c1:e6:41:b5:60:19:9c:88:44:7c:2d:bd:b8:eb:57:ae:
43:90:ec:60:56:eb:df:9a:f3:97:4c:77:73:5f:ea:c5:8d:ce:
09:67:62:fc:87:d7:36:89:3b:c2:08:9b:13:02:48:59:d5:5d:
d9:b5:08:98:79:77:5c:68:d7:07:cb:b5:d2:b4:05:37:40:5e:
99:12:d4:d4:ac:d7:70:b3:67:3d:e0:7d:af:6a:ac:b4:8e:2d:
8a:ba:bf:a9:0d:f1:a1:e5:b0:57:6b:62:ff:86:75:a3:71:ce:
06:02:60:6b:e8:e3:e2:9e:15:d2:4b:0f:0d:80:37:7c:1a:42:
2e:b8:ad:ba:c4:b5:9c:ae:f2:3c:3e:81:18:6f:fe:67:85:6d:
e4:6f:4b:ae:d9:9c:fc:7e:78:73:c2:9d:b8:f2:bf:44:2b:93:
94:56:36:85:24:d8:5b:69:f1:e3:72:52:f9:0a:87:5a:e4:93:
f7:00:78:a5:b6:02:e9:00:00:97:17:2a:30:c5:be:e6:c6:8b:
17:fb:b3:66:a8:d9:8f:ac:30:15:19:65:fa:c8:c3:bf:b1:d7:
c7:10:41:85:22:f0:00:00:b3:bb:b6:23:ba:21:50:4e:f3:61:
70:09:b6:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 02:05:25 2025 by rpki-client