Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/RIRcd86JGLUaeh_H2P3p17POOJQ.roa
File: RIRcd86JGLUaeh_H2P3p17POOJQ.roa (raw, json)
Hash identifier: LZCovUM0sCrtVyRvAvw5oTViimyFQMuYth0dwani9CY=
Subject key identifier: 44:84:5C:77:CE:89:18:B5:1A:7A:1F:C7:D8:FD:E9:D7:B3:CE:38:94
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 171D
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/RIRcd86JGLUaeh_H2P3p17POOJQ.roa
Signing time: Wed 12 Feb 2025 01:36:25 +0000
ROA not before: Wed 12 Feb 2025 01:36:25 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 10126
IP address blocks: 220.128.64.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5917 (0x171d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 12 01:36:25 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=44845C77CE8918B51A7A1FC7D8FDE9D7B3CE3894
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:b8:9b:6a:5e:92:bb:a0:52:fc:83:0b:0a:36:
3c:98:f4:69:1f:f1:96:c3:b1:ea:b0:77:b3:10:39:
2c:1c:54:a7:02:d4:de:35:ee:7f:b0:ec:63:97:fb:
29:f7:0a:71:3f:67:4b:bc:e1:78:95:49:2a:87:d5:
0d:3c:c6:0d:d3:35:f2:b2:fe:16:11:14:3d:e2:86:
ca:1f:9c:0d:67:e2:42:3a:0e:75:eb:1d:08:fd:b1:
c1:b0:1c:6f:29:b8:3d:4e:3b:b9:fd:28:d3:4c:0f:
b0:ec:72:27:e5:af:8b:22:be:81:f0:fc:c1:5b:cd:
0c:7e:5e:0f:24:42:19:a4:aa:e9:25:88:64:49:4b:
10:39:23:b5:60:8a:8e:35:cf:98:36:59:f9:83:ad:
f6:99:4f:53:7f:8d:f0:03:76:4e:8a:0a:96:24:f2:
87:6d:eb:37:de:46:28:0d:7f:54:30:59:40:ca:28:
64:f7:34:5c:e6:1c:ee:b3:ed:6a:67:8e:54:61:86:
47:6b:a9:10:05:5d:ce:5a:b4:8f:07:7c:1c:b0:be:
8e:8d:49:41:99:2d:ef:c3:6a:2b:30:c5:73:df:96:
0f:cf:e3:c4:e6:43:02:77:81:e2:0d:38:f1:77:59:
92:e5:1a:c0:6a:bf:43:38:ae:c1:8e:86:d0:84:00:
81:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:84:5C:77:CE:89:18:B5:1A:7A:1F:C7:D8:FD:E9:D7:B3:CE:38:94
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/RIRcd86JGLUaeh_H2P3p17POOJQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.128.64.0/20
Signature Algorithm: sha256WithRSAEncryption
19:c6:e8:22:fb:fe:3d:88:50:1e:4f:a8:3a:60:d7:d7:74:41:
2a:5a:2e:24:4f:ac:d1:70:f5:d0:84:e6:1e:77:31:28:76:b3:
30:f6:bb:25:20:f9:56:27:a6:02:d7:ea:ca:4a:5b:30:fa:4e:
84:74:ed:96:d4:61:63:a7:ad:76:3c:0c:96:ae:1d:4b:82:71:
24:41:dc:fc:68:7d:32:0f:46:1d:e5:c0:49:5d:17:b7:0c:17:
ca:73:ed:93:a6:20:16:c5:81:8f:dd:e1:01:73:43:ae:bf:a7:
4f:2c:c7:28:f5:95:29:39:1c:d6:68:82:90:40:a9:88:c7:38:
f1:88:7a:af:56:ad:54:5b:a9:f1:17:3e:7e:9c:a1:99:06:74:
09:03:f6:c4:8f:54:90:97:e8:ec:15:54:22:9a:65:71:03:64:
4b:66:1c:a4:ab:66:fc:01:57:ab:f5:f5:5f:48:b0:fe:d7:e3:
71:c0:a2:4d:64:5e:46:a9:a1:47:70:63:65:9a:c1:a5:ae:7f:
e1:92:b4:58:b9:54:9b:11:81:46:fb:88:a8:a1:d6:a7:b7:a7:
7a:a5:36:09:2c:13:ef:ac:dd:57:68:2d:7f:c2:8a:59:d1:f3:
cc:4d:7d:3d:93:68:44:de:78:be:cb:80:a5:b4:fb:17:9b:9c:
71:fc:60:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 13:59:23 2025 by rpki-client