Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/C0eNzQbOo6VtRBw3y7Ol-Xnwe5E.roa
File: C0eNzQbOo6VtRBw3y7Ol-Xnwe5E.roa (raw, json)
Hash identifier: iFY2RWXDnMqhQEC5RGlQuMGO2O2UG3swtQl64vZkH6I=
Subject key identifier: 0B:47:8D:CD:06:CE:A3:A5:6D:44:1C:37:CB:B3:A5:F9:79:F0:7B:91
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 173E
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/C0eNzQbOo6VtRBw3y7Ol-Xnwe5E.roa
Signing time: Wed 12 Feb 2025 01:36:32 +0000
ROA not before: Wed 12 Feb 2025 01:36:32 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 20940
IP address blocks: 2001:b034:700:580::/64 maxlen: 64
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5950 (0x173e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 12 01:36:32 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=0B478DCD06CEA3A56D441C37CBB3A5F979F07B91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:0e:16:f1:8a:49:dd:9c:f4:6d:e4:02:56:52:
ed:e7:2e:65:fa:64:6e:0e:f9:50:0c:23:0d:40:71:
f4:55:84:fb:de:fc:ae:c0:0e:4c:8d:1b:00:87:e2:
76:c2:f5:9a:1b:2b:ec:b4:75:8d:95:43:f7:1c:22:
1c:7c:6e:be:a5:c6:ed:34:bf:27:66:76:cc:73:cb:
c3:48:e6:3c:f3:20:73:ae:78:47:12:ff:46:72:65:
cd:44:ad:a9:88:6e:04:bc:49:cc:44:5b:89:0e:38:
b7:60:bb:2d:9c:b9:7a:c6:f3:9b:79:a2:d5:77:84:
00:2a:ca:57:5e:98:58:2b:bf:82:bb:1d:a3:ae:50:
cf:55:4d:c4:d6:66:8d:14:f1:a8:d2:ff:58:19:aa:
dd:ac:ac:b0:c1:cc:bf:bf:4c:4d:67:17:bd:87:5e:
47:71:9f:75:dc:1e:19:01:1a:62:39:e3:ed:0c:42:
28:3d:bf:7d:2c:87:7f:93:30:1b:6c:e0:56:c9:98:
a1:c2:04:0d:f4:d4:85:09:9a:30:98:5b:af:65:6d:
0c:7e:f9:f9:74:b1:e9:49:11:9b:19:a0:36:2d:c5:
70:8e:fe:92:52:81:67:79:b6:57:68:4f:e2:e6:6a:
fc:7d:b6:37:d8:3c:40:f0:93:e9:1a:88:45:b3:11:
d8:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:47:8D:CD:06:CE:A3:A5:6D:44:1C:37:CB:B3:A5:F9:79:F0:7B:91
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/C0eNzQbOo6VtRBw3y7Ol-Xnwe5E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:b034:700:580::/64
Signature Algorithm: sha256WithRSAEncryption
a8:fb:0f:b9:b0:a7:c4:60:25:01:04:52:bd:05:51:ca:08:03:
86:68:3f:9b:b1:b1:6d:4e:83:a1:29:5a:31:63:85:1c:6a:7f:
02:3e:0b:55:6b:2e:37:42:bf:68:f6:77:cd:ed:4d:d2:34:e5:
40:25:48:df:3e:d6:09:f4:f8:e4:63:e2:2f:05:47:90:55:e8:
b3:15:f5:17:cb:fd:d0:5d:8b:9e:cf:c3:cc:1b:30:18:78:40:
fc:8b:82:31:3d:73:5c:2a:f5:bf:5b:ff:68:2b:32:2a:3c:74:
3e:bb:f5:7e:88:cd:d6:01:6b:62:bf:a9:cf:a5:dd:81:be:d1:
0a:9f:b6:f8:ba:96:cd:a6:a9:47:7c:86:8f:94:01:64:23:97:
5d:40:67:8b:ad:8a:a9:af:d5:0a:ba:d4:0b:79:b2:3b:7c:6e:
00:90:48:ac:a4:ea:7d:0c:7d:64:ae:44:72:79:34:9b:48:73:
1c:db:ba:5e:e0:62:c7:a4:d6:e2:c4:af:37:64:f0:ff:f8:85:
f7:59:52:5c:6c:49:b8:71:4b:f9:73:71:73:c9:97:3f:cf:4a:
a4:2d:d0:4a:d4:75:90:3f:8e:94:29:b3:21:27:45:ab:e2:36:
dc:46:d3:c8:f6:19:8a:46:70:59:d5:85:df:aa:b7:af:b0:f2:
d8:1f:65:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:05:48 2025 by rpki-client