Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/5u4rxklc7Z5oX6mhSsi_1evEwus.roa
File: 5u4rxklc7Z5oX6mhSsi_1evEwus.roa (raw, json)
Hash identifier: GY8GZEbcNjn4P8Dq7XUL64L7ZPZpkiMepfFV1PxI6PU=
Subject key identifier: E6:EE:2B:C6:49:5C:ED:9E:68:5F:A9:A1:4A:C8:BF:D5:EB:C4:C2:EB
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1765
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/5u4rxklc7Z5oX6mhSsi_1evEwus.roa
Signing time: Wed 12 Feb 2025 01:36:39 +0000
ROA not before: Wed 12 Feb 2025 01:36:39 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 2001:b000::/21 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5989 (0x1765)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 12 01:36:39 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=E6EE2BC6495CED9E685FA9A14AC8BFD5EBC4C2EB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:93:34:3c:b5:35:78:29:4f:46:be:29:1d:e5:
af:f1:43:93:4a:c7:cb:df:80:e8:c8:50:79:8a:87:
de:7f:22:df:fe:17:2e:0b:be:72:fa:6d:d7:fe:56:
05:cf:5a:9f:64:2b:2e:79:26:c6:c2:7f:b9:58:12:
57:33:bf:a5:d8:2d:66:fd:55:12:09:0c:e6:68:f4:
56:b8:2d:0c:1a:49:2a:40:0d:1d:53:58:e1:1a:51:
9c:25:73:3d:88:16:35:a6:ce:d5:86:d4:bf:0e:8d:
7a:e6:2e:32:43:59:bb:6d:95:3a:95:58:d6:d8:18:
0d:b0:7b:0c:90:63:09:35:1b:f0:93:fa:fa:b4:2e:
86:fe:69:61:bf:4e:be:b3:33:47:f2:43:31:90:55:
8b:0c:1c:18:48:09:31:ee:97:c5:1f:56:6c:44:7a:
4f:33:25:83:a0:b1:e7:d1:af:2b:dc:96:df:2f:a7:
9a:19:0e:7d:93:bf:55:4d:78:66:d4:49:ce:a3:09:
3e:96:5d:fa:96:57:f4:b8:8d:4c:62:f1:4a:0f:bd:
5b:22:42:54:bb:2e:da:c3:47:2f:75:8b:e7:14:77:
09:73:d2:48:02:f9:e6:16:da:10:68:36:fa:e3:0f:
37:6e:04:c3:c2:da:93:9e:ef:bb:ae:b8:3b:72:29:
0c:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:EE:2B:C6:49:5C:ED:9E:68:5F:A9:A1:4A:C8:BF:D5:EB:C4:C2:EB
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/5u4rxklc7Z5oX6mhSsi_1evEwus.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:b000::/21
Signature Algorithm: sha256WithRSAEncryption
77:8e:99:bf:d8:c3:25:ac:30:8f:a8:59:af:da:61:80:f9:74:
77:fd:cb:f6:07:24:97:ed:63:b9:04:86:ea:12:40:45:7f:93:
02:9e:0a:0c:4a:cc:a5:99:e9:86:5a:d9:c4:11:9c:00:c7:00:
eb:bb:75:5d:c2:94:1e:b9:52:5b:13:c9:7d:74:48:ba:10:63:
32:1c:a5:68:d8:10:77:5d:2f:15:3e:98:87:01:38:38:49:db:
10:d7:b8:78:40:0b:39:48:3d:3a:59:50:1f:7c:29:bf:ad:e4:
d4:29:b1:d1:74:7d:b5:65:1b:a5:2b:25:ce:f9:e5:b6:55:58:
89:59:8d:f5:f7:a4:5c:ce:de:f2:74:ea:32:37:c8:71:8f:95:
0a:d3:6f:23:51:d3:bd:dd:ae:3a:e5:1f:f9:5e:c3:43:a9:72:
e4:96:f4:ef:ce:3f:f2:a8:10:73:27:cc:37:48:64:10:b8:50:
0d:ae:b4:df:ed:1a:f5:cc:6d:da:b6:8f:8b:68:47:c4:f2:96:
c2:97:97:cd:8c:6a:99:87:e6:03:29:8a:86:a5:fe:01:b9:2f:
11:09:d1:6a:5b:74:03:2e:10:de:4d:8a:27:e4:a6:c9:bb:a7:
3d:3c:d9:b8:f8:b2:58:fc:66:8e:32:ce:fd:b0:5a:f2:24:8a:
3f:1f:6b:42
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICF2UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTIw
MTM2MzlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEU2RUUyQkM2NDk1Q0VE
OUU2ODVGQTlBMTRBQzhCRkQ1RUJDNEMyRUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCRkzQ8tTV4KU9Gvikd5a/xQ5NKx8vfgOjIUHmKh95/It/+Fy4L
vnL6bdf+VgXPWp9kKy55JsbCf7lYElczv6XYLWb9VRIJDOZo9Fa4LQwaSSpADR1T
WOEaUZwlcz2IFjWmztWG1L8OjXrmLjJDWbttlTqVWNbYGA2wewyQYwk1G/CT+vq0
Lob+aWG/Tr6zM0fyQzGQVYsMHBhICTHul8UfVmxEek8zJYOgsefRryvclt8vp5oZ
Dn2Tv1VNeGbUSc6jCT6WXfqWV/S4jUxi8UoPvVsiQlS7LtrDRy91i+cUdwlz0kgC
+eYW2hBoNvrjDzduBMPC2pOe77uuuDtyKQxPAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQU5u4rxklc7Z5oX6mhSsi/1evEwuswHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC81dTRyeGtsYzdaNW9YNm1oU3Np
XzFldkV3dXMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAAjAGAwQDIAGw
MA0GCSqGSIb3DQEBCwUAA4IBAQB3jpm/2MMlrDCPqFmv2mGA+XR3/cv2BySX7WO5
BIbqEkBFf5MCngoMSsylmemGWtnEEZwAxwDru3VdwpQeuVJbE8l9dEi6EGMyHKVo
2BB3XS8VPpiHATg4SdsQ17h4QAs5SD06WVAffCm/reTUKbHRdH21ZRulKyXO+eW2
VViJWY3196Rczt7ydOoyN8hxj5UK028jUdO93a465R/5XsNDqXLklvTvzj/yqBBz
J8w3SGQQuFANrrTf7Rr1zG3ato+LaEfE8pbCl5fNjGqZh+YDKYqGpf4BuS8RCdFq
W3QDLhDeTYon5KbJu6c9PNm4+LJY/GaOMs79sFryJIo/H2tC
-----END CERTIFICATE-----
Generated at Mon Apr 7 02:05:21 2025 by rpki-client