Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/5hS_HDnuznlIl83p7ZKSZtJGpgY.roa
File: 5hS_HDnuznlIl83p7ZKSZtJGpgY.roa (raw, json)
Hash identifier: d3WXWy0Qs8cM4PYl4iYNeboP9H1BYA3t3lza+dmSeuM=
Subject key identifier: E6:14:BF:1C:39:EE:CE:79:48:97:CD:E9:ED:92:92:66:D2:46:A6:06
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1714
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/5hS_HDnuznlIl83p7ZKSZtJGpgY.roa
Signing time: Wed 12 Feb 2025 01:36:23 +0000
ROA not before: Wed 12 Feb 2025 01:36:23 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 118.168.0.0/14 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5908 (0x1714)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 12 01:36:23 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=E614BF1C39EECE794897CDE9ED929266D246A606
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:d2:72:8c:94:a5:86:35:78:e6:0a:ff:54:10:
8a:73:b9:58:33:64:fc:a9:31:05:7e:66:12:0a:02:
e3:46:db:05:ff:de:b7:a5:94:6b:21:e9:75:ff:17:
64:5d:9a:e8:ba:e0:49:92:7e:5c:dc:d0:86:cf:d9:
78:4d:b6:1c:a1:13:0f:96:24:88:85:c8:62:8b:22:
46:62:ef:1c:f5:55:94:62:f9:dd:4d:f7:c7:8a:22:
d5:b0:7b:46:a9:92:f9:fd:42:b2:ef:cb:bc:8f:39:
66:b3:9c:7d:c7:11:e2:01:c1:c0:1f:13:35:50:87:
f7:50:e1:b4:e0:b6:51:0c:13:3e:ea:94:a1:f2:6b:
3c:5d:e5:92:a0:ff:5c:95:4f:f6:10:07:91:a2:b6:
6e:f2:37:4d:fb:d2:4e:ed:ea:e3:5a:ef:e6:f6:c0:
81:0a:ec:b8:e1:0b:91:1f:b2:bd:b7:68:7b:3f:ef:
af:37:50:32:c7:a6:95:35:8e:18:5f:20:e6:94:7c:
52:d2:6a:e9:ef:e6:4b:8e:99:08:ec:71:d9:a7:f9:
3f:1d:9b:49:67:fa:26:f2:6c:af:99:65:b4:ff:0b:
32:07:d8:72:39:ed:b9:ad:26:75:5f:79:0d:32:97:
e5:4a:fa:74:ad:41:70:73:eb:0f:5f:e2:c6:ec:35:
f3:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:14:BF:1C:39:EE:CE:79:48:97:CD:E9:ED:92:92:66:D2:46:A6:06
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/5hS_HDnuznlIl83p7ZKSZtJGpgY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.168.0.0/14
Signature Algorithm: sha256WithRSAEncryption
7f:89:59:d2:1c:92:6b:58:6c:8e:62:20:38:6f:64:3f:87:7b:
ca:a7:5d:0e:e2:db:15:7f:d6:25:a7:e1:03:5c:5c:f6:49:5b:
d9:5c:c6:22:69:c2:2d:e6:c3:a6:4e:f0:75:2f:fd:5e:0c:4c:
1a:e5:32:5b:84:5d:18:75:bf:dc:a8:56:d3:66:ab:b1:61:06:
bd:2f:8c:62:9f:21:db:54:85:e8:4e:72:ae:e7:19:44:09:4d:
4a:8b:21:c5:9c:fc:f9:43:1f:75:4a:ca:34:29:4d:4c:f9:b7:
dc:20:9d:24:c3:58:16:ed:d0:b7:2b:d9:a5:ad:29:eb:e9:e5:
9f:2d:5e:48:79:e6:14:3a:03:bc:a9:fb:3e:7f:af:f2:6e:1f:
21:89:3d:bf:cb:1d:06:87:64:0e:e5:98:47:4d:0c:c7:af:7f:
c3:10:37:61:4e:a2:8f:2f:70:eb:30:13:59:17:5b:d5:73:59:
17:e7:63:21:97:58:2e:c1:ef:85:52:27:f9:77:39:32:df:51:
51:56:c6:3c:4a:97:0f:a5:3f:aa:2e:c9:59:06:ad:a4:a4:20:
1b:3c:b1:e0:8c:a3:18:26:f4:e5:60:41:ad:80:40:b9:7a:4a:
c2:42:c3:1f:7a:ad:1a:4f:a5:e0:38:9a:9c:c4:ad:34:4a:a6:
c5:0b:ce:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 02:07:57 2025 by rpki-client