Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/JOU4-3iHnXhW2LuK5YKO0G9rZl4.roa
File: JOU4-3iHnXhW2LuK5YKO0G9rZl4.roa (raw, json)
Hash identifier: jfsnr3KQk9hmoloSAJZYIUzyq2oAMpHwlBty4qwcj+Y=
Subject key identifier: 24:E5:38:FB:78:87:9D:78:56:D8:BB:8A:E5:82:8E:D0:6F:6B:66:5E
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1735
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/JOU4-3iHnXhW2LuK5YKO0G9rZl4.roa
Signing time: Wed 12 Feb 2025 01:36:29 +0000
ROA not before: Wed 12 Feb 2025 01:36:29 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 20940
IP address blocks: 2001:b034:700:600::/56 maxlen: 56
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5941 (0x1735)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 12 01:36:29 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=24E538FB78879D7856D8BB8AE5828ED06F6B665E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:f4:48:8f:55:2a:4a:1c:76:8b:7a:8f:70:af:
88:d3:07:a5:a2:f9:65:d9:67:1e:aa:c7:b9:48:b5:
22:21:8d:9e:e7:b9:63:b1:a6:ae:12:01:3a:ab:93:
c4:26:59:e2:e0:34:69:8d:58:fc:9a:7a:54:76:98:
bf:bb:b2:39:8e:ee:2e:59:84:60:bd:b7:8b:a1:e6:
6f:34:75:12:16:77:ee:59:36:e2:93:e1:ba:3c:23:
56:c2:b9:78:d7:1c:a6:b0:1b:5b:1d:7f:83:2b:8c:
0a:18:55:1c:e6:b4:32:4c:a9:6c:a6:dd:fc:07:4a:
76:07:7b:d1:41:08:23:c0:2e:bd:24:03:8b:c1:e7:
45:15:b7:23:dc:81:21:2f:06:c0:6b:3e:6f:fb:14:
21:89:f6:05:1b:11:53:24:75:b7:08:83:12:97:f4:
3b:0c:e8:b8:55:ce:d6:48:f9:97:2a:e7:65:24:d3:
24:66:67:31:8c:33:fe:51:e5:dd:08:90:69:6c:f5:
97:2e:6d:a0:d7:1e:aa:cf:ec:9f:37:a1:49:6d:59:
9e:33:fe:6d:80:80:6a:23:b4:a8:70:4f:1d:8b:81:
e0:18:0c:0b:19:2f:28:b8:80:5d:6a:0b:da:94:7a:
24:20:a4:c0:f7:d2:95:cc:2d:1e:d9:e3:62:14:9f:
81:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:E5:38:FB:78:87:9D:78:56:D8:BB:8A:E5:82:8E:D0:6F:6B:66:5E
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/JOU4-3iHnXhW2LuK5YKO0G9rZl4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:b034:700:600::/56
Signature Algorithm: sha256WithRSAEncryption
05:40:cf:a7:7b:1a:24:88:2e:c0:82:de:7b:46:d5:a5:d5:77:
0c:fc:0d:5b:42:9d:06:d1:fd:99:48:97:b8:8c:61:57:83:37:
90:ba:c9:3f:71:f6:06:77:56:fa:37:e7:21:b3:6a:0b:cf:5e:
55:b6:28:60:85:e8:fb:97:8d:cb:48:ee:4f:3a:80:02:47:83:
05:8a:1b:07:11:d1:9d:b6:5c:b2:56:ed:8d:90:15:dd:49:d0:
49:fd:af:f9:7f:7b:d5:c6:1d:5c:4a:c3:7e:49:cf:de:85:f5:
fe:1c:3e:44:71:f4:b5:a4:ea:a0:91:b4:14:ab:56:e2:28:c2:
5c:37:96:51:0a:3a:d1:45:4a:d4:5f:8a:d5:2c:91:a2:a6:d6:
54:ac:27:e4:8b:4a:3b:40:72:8c:86:93:cb:84:3f:65:75:8e:
8d:c5:5c:c7:26:6c:8f:f1:7a:fc:45:36:a8:e2:76:ee:4b:c6:
9a:02:7e:88:e4:a8:11:53:7f:2a:99:71:3d:af:c5:2f:61:2c:
03:2a:90:fe:a4:20:99:b8:7b:ba:dc:a0:7d:3c:1a:a7:59:44:
54:43:6b:5b:9b:d0:ea:da:84:83:d8:61:22:76:02:ac:db:d1:
cd:f3:30:1d:ab:3d:1b:d5:f3:76:9c:ea:88:c8:8e:22:04:db:
e9:2b:65:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:36:02 2025 by rpki-client