Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/Sz03alD_JD2YNsyjE67AU8Yjrt0.roa
File: Sz03alD_JD2YNsyjE67AU8Yjrt0.roa (raw, json)
Hash identifier: S+UvszWKh2HejIzGPYsGp6PUQqiXbXPv4rqjjZrWHCs=
Subject key identifier: 4B:3D:37:6A:50:FF:24:3D:98:36:CC:A3:13:AE:C0:53:C6:23:AE:DD
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1728
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/Sz03alD_JD2YNsyjE67AU8Yjrt0.roa
Signing time: Wed 12 Feb 2025 01:36:27 +0000
ROA not before: Wed 12 Feb 2025 01:36:27 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 210.65.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5928 (0x1728)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 12 01:36:27 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=4B3D376A50FF243D9836CCA313AEC053C623AEDD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:95:be:7f:c2:b3:6a:2c:38:95:8a:c8:fa:fd:
6d:0a:2a:b4:2f:b8:b3:ca:8e:18:4b:50:c0:8c:b3:
87:c6:ea:e6:43:bf:c0:5c:11:4c:67:a7:51:5c:85:
d3:ce:ff:88:54:da:2e:e3:68:34:26:6a:cb:13:05:
0b:35:ad:7c:bf:08:ad:f9:96:92:72:05:e8:80:7a:
14:f8:33:73:0f:70:88:b4:12:e1:15:15:89:c2:db:
c0:c6:0e:1b:4d:a0:79:9b:18:bc:5d:73:41:72:37:
ce:78:6c:00:0a:c2:51:47:ea:32:11:db:b2:e4:e9:
37:4c:21:b9:c7:54:e9:69:c3:be:77:45:9a:95:59:
01:ed:5c:6f:8c:91:5f:5c:1a:78:0a:c6:4b:fa:cd:
77:a1:17:e9:46:80:03:c4:f6:ad:a2:37:35:0c:1d:
57:75:07:f1:ec:81:9d:1e:42:45:c1:c6:ee:01:93:
a6:93:c7:87:da:02:a1:ea:c6:2e:fd:b1:03:cf:9d:
13:c1:da:86:28:15:b5:71:46:c9:16:43:ec:e2:f1:
fc:6e:1a:37:d4:eb:db:82:a9:c0:aa:bf:4b:d9:a7:
ed:8d:a7:b7:c2:eb:dd:3a:c3:d9:71:77:7f:d0:b2:
ed:83:8d:a4:cf:d4:1c:09:ed:0c:45:5a:b0:52:80:
f0:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:3D:37:6A:50:FF:24:3D:98:36:CC:A3:13:AE:C0:53:C6:23:AE:DD
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/Sz03alD_JD2YNsyjE67AU8Yjrt0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.65.0.0/16
Signature Algorithm: sha256WithRSAEncryption
61:b3:b6:8e:dc:a6:55:14:59:d9:64:44:b9:e4:45:e6:6e:73:
30:b3:8a:26:43:44:5a:87:46:ba:f8:01:86:ce:8c:d2:ae:3f:
1a:f7:3a:e8:9e:72:36:3f:7c:58:bb:1c:05:2b:e4:4e:ee:dd:
db:a5:62:83:3b:e3:7b:52:07:13:24:9c:d4:27:91:d5:4f:8d:
c1:fc:23:57:47:6d:59:57:37:31:c4:6f:6c:44:3f:fc:e0:40:
62:4a:43:53:fd:ea:81:0b:78:6e:a1:51:0c:2e:9c:16:8e:2b:
58:7a:cf:88:cd:a8:be:45:6b:bd:0a:ef:bb:0e:e4:4e:61:1c:
ff:55:a1:e0:ba:c8:29:92:7a:74:1a:61:8e:c9:91:c8:f1:52:
17:42:8c:d6:8e:63:ca:7f:5a:83:59:8c:ed:4d:c5:8d:23:cf:
8d:11:fd:f2:ba:73:5d:8d:32:1c:24:54:78:83:0b:9a:db:ac:
8d:08:ee:76:34:95:3f:c5:56:a6:fa:f4:1e:d7:69:9b:61:49:
24:ac:af:24:04:54:65:0a:fa:5e:5c:2a:0d:16:96:e2:b9:13:
1e:59:dd:c8:fe:b7:f2:f9:c3:b6:be:a6:91:7a:5d:bc:26:a8:
ad:fa:30:11:d2:e5:f4:44:fa:78:50:a1:4a:2d:d5:dc:f9:ce:
e1:82:06:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 01:57:42 2025 by rpki-client