Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/SRu1YEOEs1DMMlnzi4hO416tXXg.roa
File: SRu1YEOEs1DMMlnzi4hO416tXXg.roa (raw, json)
Hash identifier: UXK6Qs4AWfG7KPNLJvNaF1FKUniVbdZA/u8CC1m1yqg=
Subject key identifier: 49:1B:B5:60:43:84:B3:50:CC:32:59:F3:8B:88:4E:E3:5E:AD:5D:78
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1717
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/SRu1YEOEs1DMMlnzi4hO416tXXg.roa
Signing time: Wed 12 Feb 2025 01:36:24 +0000
ROA not before: Wed 12 Feb 2025 01:36:24 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 198949
IP address blocks: 210.242.118.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5911 (0x1717)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 12 01:36:24 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=491BB5604384B350CC3259F38B884EE35EAD5D78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:fb:5a:63:d2:08:e9:3d:43:bd:aa:ec:31:0d:
f2:79:64:98:0f:ed:fe:d0:18:72:c4:00:9c:f6:31:
b1:b8:c6:1e:b8:24:8c:07:26:0b:61:51:77:35:ee:
9f:2b:c0:c2:d1:9f:6a:ca:82:70:24:ec:3d:b2:ba:
4c:fe:c0:af:74:05:0c:f9:36:28:b7:ff:99:ee:a8:
8b:9e:db:d5:4c:6b:c4:f3:22:25:37:0c:1a:85:e2:
b4:bf:5d:5c:38:8c:df:75:d7:f3:25:a8:12:1e:44:
31:9b:89:7b:73:8e:a5:29:66:fa:16:1a:22:7f:3b:
c0:09:e7:5d:be:f0:61:1a:14:7e:8f:aa:ff:5e:b2:
c7:6b:71:3c:0a:e6:6a:9b:a7:5a:bc:33:b7:4c:c9:
42:3b:79:dd:cc:c5:22:ab:d2:4b:59:64:6a:f0:a6:
2a:2b:e2:55:af:44:e6:38:91:91:3f:f7:60:06:81:
0b:86:fa:71:a7:1e:81:ab:f7:4e:d2:21:b6:d1:6e:
2b:bd:cf:f9:0f:96:89:71:f5:6f:87:96:ed:71:43:
f7:ef:7d:8b:5a:bc:2c:6d:48:84:d8:9e:d7:fc:5f:
81:70:73:25:57:f1:e2:61:b7:87:87:e7:b2:8c:90:
dc:fc:73:5f:00:f6:ed:eb:9b:2c:e2:a6:5d:3b:dd:
2a:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:1B:B5:60:43:84:B3:50:CC:32:59:F3:8B:88:4E:E3:5E:AD:5D:78
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/SRu1YEOEs1DMMlnzi4hO416tXXg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.242.118.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:6a:c2:c7:b1:4f:7b:44:1b:70:bf:a3:6d:22:f6:f7:0f:7f:
19:ee:55:6f:55:a8:5b:db:10:c7:b4:da:7f:9b:a9:fd:7c:07:
d1:c2:61:b7:d8:71:b0:f7:a5:25:29:37:87:86:3e:37:15:be:
a8:fb:5b:0a:97:26:88:eb:6f:d1:b6:29:71:fe:d4:48:12:d5:
25:26:fa:bd:94:a8:49:78:22:5d:0a:8b:6d:24:a6:85:cc:cf:
0e:e2:c9:2e:3b:fa:e0:92:f9:c2:23:32:64:1f:9c:9b:c0:6b:
f3:bf:ad:22:fd:6e:d2:b6:57:6b:92:6e:e0:3c:10:47:ed:5b:
3c:ff:78:14:0b:38:8d:13:f5:2f:39:0a:52:eb:b2:ff:78:54:
78:11:67:15:4c:6e:32:f3:0a:8b:d9:71:29:15:b1:ca:58:00:
cd:0f:6a:7e:2e:40:1b:42:2a:ea:a5:38:14:d3:cc:26:24:2d:
01:9d:24:45:61:5d:c8:32:ef:4d:46:c1:3d:0e:18:06:cf:d5:
37:0c:5b:88:96:ad:f2:6d:14:bb:bd:a5:89:63:70:fe:a5:12:
7b:6c:c3:a3:59:99:cf:82:ec:bd:27:b5:bd:15:1d:c7:3e:8a:
be:b2:a5:d1:00:10:15:33:ab:8a:b8:1a:7d:c4:76:c8:60:1c:
e6:3f:f4:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 17:50:04 2025 by rpki-client