Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/LPIGC2bM_reIHWdk6a3aRuVDPEo.roa
File: LPIGC2bM_reIHWdk6a3aRuVDPEo.roa (raw, json)
Hash identifier: xOeO/RbKgteXpwibt+9Ytna31Sq9sEzYzvvVFgNuwW8=
Subject key identifier: 2C:F2:06:0B:66:CC:FE:B7:88:1D:67:64:E9:AD:DA:46:E5:43:3C:4A
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 175F
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/LPIGC2bM_reIHWdk6a3aRuVDPEo.roa
Signing time: Wed 12 Feb 2025 01:36:38 +0000
ROA not before: Wed 12 Feb 2025 01:36:38 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17421
IP address blocks: 221.120.64.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5983 (0x175f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 12 01:36:38 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=2CF2060B66CCFEB7881D6764E9ADDA46E5433C4A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:7e:e4:a5:dd:84:cf:7f:90:e3:16:72:28:5c:
41:08:71:2a:05:19:90:9b:2f:e0:45:94:b2:f5:4a:
02:03:23:4f:42:86:24:62:fe:32:50:b6:2c:8e:06:
f6:c5:f1:3c:3e:91:26:50:da:97:66:ea:5d:fd:9a:
b6:49:bb:81:20:46:58:04:fb:58:de:6f:5a:7a:75:
78:04:78:3b:2a:31:0d:50:88:72:9d:34:f4:2f:88:
a9:23:36:31:15:2a:84:aa:9b:c2:19:1d:ca:23:f6:
fc:92:48:97:2e:d1:ce:95:a7:69:bc:80:c0:1d:1f:
d8:0a:39:2c:26:45:cf:52:cf:04:63:8c:aa:5b:3a:
67:b3:18:37:bb:3c:dd:0e:52:ff:f2:12:2b:b2:a2:
36:21:36:30:f5:59:ca:da:42:59:25:aa:eb:74:45:
c6:70:6d:85:79:a5:48:a7:c9:0e:7e:7b:a2:ee:3e:
f6:12:a8:4c:e4:45:e3:0e:c7:fb:22:5b:d8:8e:94:
54:57:79:50:57:59:b8:fb:3b:4c:9e:87:4a:c2:8f:
a5:59:a5:91:03:56:e6:22:04:9b:ce:88:ea:bf:2f:
bc:7b:c7:35:2f:a7:55:d7:16:1e:c3:26:df:f8:f4:
8a:41:62:39:e1:06:f6:61:8a:80:0b:8a:a4:b4:1e:
28:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:F2:06:0B:66:CC:FE:B7:88:1D:67:64:E9:AD:DA:46:E5:43:3C:4A
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/LPIGC2bM_reIHWdk6a3aRuVDPEo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
221.120.64.0/19
Signature Algorithm: sha256WithRSAEncryption
3b:72:4e:c3:3a:57:5c:c4:cd:72:d9:66:31:10:1e:1c:cc:72:
37:05:95:cf:0b:8e:4b:42:76:cc:80:bb:4a:49:64:06:5e:72:
b1:84:67:b4:38:7b:f4:3b:74:11:2f:ee:f3:df:dd:04:2e:cf:
a9:e0:40:79:42:9e:c4:53:67:1e:f3:0e:dc:ee:ba:45:9c:b7:
fb:43:e4:5c:fa:78:d1:76:18:8c:c5:8b:0e:aa:74:b0:e3:56:
43:0f:29:9c:98:84:b5:26:75:b1:ad:c1:97:20:c0:5e:34:5f:
db:17:6d:2a:b6:92:11:5a:cb:d8:3c:bd:63:c7:a0:da:94:8a:
bd:24:a1:20:42:a9:01:57:46:a5:f1:9e:d5:38:fe:74:ac:a8:
9f:3c:40:fe:13:05:1e:f5:d4:b5:e0:16:f1:c0:3d:37:b1:ce:
e9:93:dc:30:10:2e:60:52:12:87:09:d0:93:1a:4d:1a:46:ad:
f6:92:7a:c1:ba:7e:ff:15:6c:f6:35:76:db:50:f2:89:7f:fd:
eb:53:70:75:9a:be:57:eb:33:66:26:d9:80:be:78:25:ab:b1:
12:34:63:49:2c:0c:61:5b:4d:87:20:6d:3c:04:c1:a7:b2:ab:
26:6a:e6:97:73:06:2f:1d:f1:6b:ab:3d:33:d4:9d:f4:5f:b2:
3a:3f:a8:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 13:09:23 2025 by rpki-client