Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/ACJ8ekjWC624y7DUHExbv6ZyOcs.roa
File: ACJ8ekjWC624y7DUHExbv6ZyOcs.roa (raw, json)
Hash identifier: vgLa6lQEpYT4XQMxfgklpKavBhor/Kb++GLvze/3pOM=
Subject key identifier: 00:22:7C:7A:48:D6:0B:AD:B8:CB:B0:D4:1C:4C:5B:BF:A6:72:39:CB
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1743
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/ACJ8ekjWC624y7DUHExbv6ZyOcs.roa
Signing time: Wed 12 Feb 2025 01:36:32 +0000
ROA not before: Wed 12 Feb 2025 01:36:32 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 210.59.128.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5955 (0x1743)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 12 01:36:32 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=00227C7A48D60BADB8CBB0D41C4C5BBFA67239CB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:a4:6a:0a:a8:be:35:91:39:24:c9:7f:1c:50:
79:6f:56:e6:e0:c7:e0:dc:03:33:e7:8a:74:2e:7d:
ba:a4:e5:5a:ef:0a:c0:e7:14:d7:fc:84:54:cd:a6:
58:05:e1:ad:33:20:9f:ad:0d:e0:5d:b3:3b:f4:bf:
2b:25:5e:25:53:06:18:9f:63:f7:f3:d3:86:25:06:
58:50:af:7d:ac:bf:70:36:40:62:88:3c:10:bd:4a:
4b:92:2a:e2:85:91:99:4d:4b:98:c0:ed:94:f4:ba:
29:2c:49:47:fb:20:92:03:22:8c:f6:35:3a:97:6b:
80:e7:ff:5a:44:2b:a8:a1:e4:a8:14:33:1d:f1:ff:
44:a5:71:65:ff:02:e6:cf:c0:16:5d:8d:d8:23:eb:
0d:78:af:fe:f0:76:9a:4e:ea:a4:94:55:a3:7c:bd:
54:e8:c6:34:ab:32:33:98:e7:60:ed:00:ee:82:9a:
d2:fb:bf:8d:37:b3:e3:8c:1b:22:4d:b5:fd:c8:5c:
e6:5b:9e:d9:d8:4c:a9:bc:ec:72:10:c9:76:c7:64:
48:de:d0:ca:b4:03:ac:39:10:9b:2c:08:12:b9:94:
70:bd:65:fb:47:d9:67:de:87:c7:44:2e:74:56:82:
db:92:db:8a:b1:70:6f:31:7e:6d:9a:fa:9e:fd:ca:
12:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:22:7C:7A:48:D6:0B:AD:B8:CB:B0:D4:1C:4C:5B:BF:A6:72:39:CB
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/ACJ8ekjWC624y7DUHExbv6ZyOcs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.59.128.0/17
Signature Algorithm: sha256WithRSAEncryption
14:49:fa:c6:9a:82:05:68:b0:8d:a1:cb:9a:0b:f4:0b:72:7b:
a5:1c:40:a3:bc:f5:21:9a:8c:96:9b:7b:ad:33:54:26:a1:9b:
09:a1:12:8e:20:9d:a9:8e:74:c4:85:01:69:89:25:51:2d:16:
f6:23:07:53:43:51:55:1b:e9:39:21:2b:20:e9:ad:fb:28:60:
4b:59:3a:4e:ef:c3:66:56:bb:65:a0:0c:4b:0b:1e:c6:da:d9:
68:22:e4:a6:c4:a4:31:8b:5e:1a:28:09:6b:d6:d5:72:8f:32:
c7:bd:d9:eb:86:e6:76:f9:87:b8:90:04:e7:4c:5f:ce:80:45:
84:18:8f:18:3d:71:76:68:d3:e3:e9:8e:9f:ad:84:a6:38:ce:
4b:c3:2c:bb:24:4b:90:26:43:56:21:d4:f5:1e:8b:89:f3:b0:
4e:74:8d:66:6a:25:47:1b:fe:1b:ab:35:7b:69:15:8a:6e:06:
1c:34:fa:44:5a:78:88:c4:84:79:90:8a:23:47:70:98:bc:f7:
f7:34:a4:fa:28:82:b3:45:b4:3f:76:82:b5:44:d3:66:81:d8:
7a:0d:81:38:0f:3d:63:e3:60:7a:24:98:a5:96:63:d7:a5:6a:
a7:ed:4a:2a:66:76:08:4f:d4:03:80:c9:f5:02:d2:4c:cb:87:
e1:ba:2e:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 05:41:27 2025 by rpki-client