Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/H1jfif5ohkhr7qqM6y4OsWVQWbc.roa
File: H1jfif5ohkhr7qqM6y4OsWVQWbc.roa (raw, json)
Hash identifier: nIwJmXM3S2BiCXYmnzSkZg1TAU41ezaLa5ltvPS9uIk=
Subject key identifier: 1F:58:DF:89:FE:68:86:48:6B:EE:AA:8C:EB:2E:0E:B1:65:50:59:B7
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 177E
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/H1jfif5ohkhr7qqM6y4OsWVQWbc.roa
Signing time: Wed 12 Feb 2025 01:36:45 +0000
ROA not before: Wed 12 Feb 2025 01:36:45 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 21859
IP address blocks: 210.61.104.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6014 (0x177e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 12 01:36:45 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=1F58DF89FE6886486BEEAA8CEB2E0EB1655059B7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:f5:fd:7b:a6:0b:dc:c2:41:3f:fa:b2:d6:52:
8c:a7:20:a8:5e:9f:1c:f7:03:16:fb:01:b6:41:77:
b6:19:fd:99:3c:a3:53:df:f2:9c:47:1d:96:ed:7d:
b9:ae:ac:30:6f:18:8e:dc:4c:73:96:24:ce:5c:73:
b2:d6:9f:8a:3e:c4:b1:20:83:8b:d4:9a:73:c4:81:
e5:7e:cb:e4:c7:79:39:15:f7:16:0b:75:50:f3:f3:
22:9e:4c:db:42:6a:ac:e2:4e:b8:fd:f7:f2:fb:8a:
19:4d:8f:58:a7:cc:fb:e0:9c:6b:da:d6:31:01:67:
10:98:a5:b6:08:77:ef:10:62:91:a6:cb:e4:e4:b8:
e9:db:f4:8a:e1:a0:3c:e3:61:12:48:84:6b:02:6b:
fc:d9:ea:c2:8b:fc:21:5e:70:3c:24:6f:fb:37:d5:
f3:71:82:44:09:03:0e:51:3c:94:ea:f6:18:21:c2:
dc:ac:e0:34:2d:55:00:94:9b:29:33:df:31:f1:a9:
b6:d7:a4:c6:6c:64:b2:03:cc:f7:b3:8c:2f:86:67:
79:0e:ae:08:34:7d:4e:9b:9f:98:ef:c2:de:2c:f4:
c5:e7:3d:5c:5f:43:df:d9:85:1c:e2:ba:f1:9a:16:
de:91:52:30:8b:c3:7c:4b:d5:c5:e1:f2:41:3a:7b:
27:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:58:DF:89:FE:68:86:48:6B:EE:AA:8C:EB:2E:0E:B1:65:50:59:B7
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/H1jfif5ohkhr7qqM6y4OsWVQWbc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.61.104.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:14:5a:a2:1c:38:6a:3b:ec:6b:32:e9:2c:da:a8:b5:e9:bc:
bf:c6:d7:6b:93:98:16:71:06:c4:4b:41:11:57:32:b7:27:4c:
e3:48:e8:3a:a4:5a:b1:c8:91:a9:e2:5d:95:a8:7e:1c:09:86:
3d:b1:f8:e1:4d:a4:71:3b:ae:5d:73:ec:fc:63:58:06:f0:45:
42:57:da:d9:01:b1:67:8b:87:ff:87:ca:9a:df:ec:bf:86:dc:
66:0b:a2:ca:8d:e7:ac:3a:85:d4:ce:71:c9:b6:db:0d:15:de:
89:90:86:8d:41:9d:4d:af:fa:ea:ae:c6:06:5e:f0:a3:f5:01:
bc:5b:b6:15:69:0c:31:6a:bf:24:44:40:1a:94:5f:3e:ea:71:
fb:8e:4e:aa:76:a9:35:79:03:32:69:0f:c6:e9:49:e9:0c:bf:
43:7f:76:39:a6:23:70:f6:ec:19:1c:2f:23:7a:65:ac:bc:b0:
aa:f0:bb:58:e1:0c:5e:f9:47:94:97:7f:40:ce:e4:ae:1e:08:
56:49:b3:5d:d9:fe:7c:5f:0b:da:68:03:d3:96:b7:27:10:20:
53:96:95:a8:4f:30:a9:62:30:08:42:85:30:4c:62:f5:18:9c:
9b:bc:61:4c:4f:d5:2e:ca:55:c6:13:25:bd:28:92:40:06:d8:
b6:2f:75:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 13:59:39 2025 by rpki-client