Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/5L_ruW0C58-2bCd5V6wEm3G8mew.roa
File: 5L_ruW0C58-2bCd5V6wEm3G8mew.roa (raw, json)
Hash identifier: YNsRHSIIlRLOBQIQcnrmJk+yB7QvvKg8jjQLTHRYkck=
Subject key identifier: E4:BF:EB:B9:6D:02:E7:CF:B6:6C:27:79:57:AC:04:9B:71:BC:99:EC
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1766
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/5L_ruW0C58-2bCd5V6wEm3G8mew.roa
Signing time: Wed 12 Feb 2025 01:36:39 +0000
ROA not before: Wed 12 Feb 2025 01:36:39 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 2001:b000::/23 maxlen: 64
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5990 (0x1766)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 12 01:36:39 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=E4BFEBB96D02E7CFB66C277957AC049B71BC99EC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:1c:0e:28:ac:45:14:a7:17:cc:0a:25:45:1f:
b2:78:8b:eb:96:98:d5:21:5b:9a:b6:84:90:f3:1b:
1a:03:56:67:a8:59:88:cf:cd:00:68:f6:90:c7:1b:
f6:57:f2:9b:6b:8a:8c:ef:9a:42:95:66:6e:9a:e1:
fb:8b:fd:34:60:3e:7a:0a:2f:44:dd:dc:96:8c:95:
d5:bd:49:34:58:b1:c5:2f:71:29:21:cb:11:e5:ba:
5d:e1:92:73:04:04:35:3a:36:d6:9b:a6:e6:dd:94:
b5:f2:de:13:7c:c8:62:9c:1b:e6:51:fb:4d:81:18:
16:0e:3f:6b:9c:37:bf:2f:9d:64:0b:d4:f8:df:d4:
71:bd:04:7b:fa:15:a6:2d:a6:c5:29:4c:77:44:b1:
08:e8:8f:45:4c:30:44:e1:9a:a4:ff:c8:35:5c:9b:
54:77:f1:8f:ed:1c:bd:a4:98:31:0d:6e:98:2e:6c:
9e:86:8c:df:c7:3d:0c:5d:f9:b0:15:af:3d:ce:08:
7b:55:3b:4f:e5:72:c3:dd:46:a8:c3:1c:af:35:1b:
2c:3e:21:7e:6d:ea:1d:44:f5:fd:dc:6f:49:a6:6b:
4e:7a:48:02:6b:18:8e:a0:cc:20:0d:32:e8:5f:7e:
ae:a1:74:7f:28:a0:23:10:45:86:79:ed:a4:d1:9e:
72:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:BF:EB:B9:6D:02:E7:CF:B6:6C:27:79:57:AC:04:9B:71:BC:99:EC
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/5L_ruW0C58-2bCd5V6wEm3G8mew.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:b000::/23
Signature Algorithm: sha256WithRSAEncryption
bf:f2:fc:47:e8:fa:43:bf:7f:60:11:f6:e7:05:93:7a:f5:ab:
e1:a8:24:56:31:0c:e6:d0:93:51:a0:2f:c9:5c:f5:be:77:b7:
3b:a3:d8:98:a3:d8:83:b3:64:da:7c:02:e0:5b:d2:58:54:0e:
56:f8:8c:80:fd:f2:1a:65:5c:d5:9a:a7:22:d5:74:9a:08:bf:
f8:a0:b0:36:d1:8e:d1:65:ce:8b:dc:fe:67:45:0f:66:67:9d:
cf:3b:1e:bb:7f:22:b0:bd:0d:71:de:48:be:94:59:5b:ce:65:
ec:2b:81:31:72:31:50:53:7c:f2:44:f6:3b:18:49:67:49:f6:
25:2c:5f:ac:33:aa:5c:cf:4a:91:30:43:e7:5a:54:ae:1a:c8:
0d:0c:dd:2d:b8:02:1c:fa:e3:fb:2b:d5:2c:35:b9:4d:68:d6:
36:23:f1:09:24:4d:bd:f5:94:aa:ed:58:04:b6:ba:bd:bc:c5:
c8:cc:02:8c:ae:d0:23:f7:d1:4b:70:f8:3a:c4:9c:48:10:9e:
bd:0e:4a:f2:87:86:09:d7:69:84:a1:32:f6:53:88:ad:7a:ad:
e3:a8:fd:96:fe:fc:93:de:90:d4:3e:e7:32:b8:23:d3:c7:19:
91:08:c5:20:97:0b:9f:c4:fa:d4:f4:d4:1a:0d:90:0e:57:f8:
77:5f:05:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 01:50:41 2025 by rpki-client