Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/UUB-ibzvNKBc57XkFq0vrufnWPQ.roa
File: UUB-ibzvNKBc57XkFq0vrufnWPQ.roa (raw, json)
Hash identifier: 6s4LtE7xbvvnT8cac6ueTyAf84UeEXU/2KgwFI1lw6Y=
Subject key identifier: 51:40:7E:89:BC:EF:34:A0:5C:E7:B5:E4:16:AD:2F:AE:E7:E7:58:F4
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 177A
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/UUB-ibzvNKBc57XkFq0vrufnWPQ.roa
Signing time: Wed 12 Feb 2025 01:36:45 +0000
ROA not before: Wed 12 Feb 2025 01:36:45 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 220.136.0.0/13 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6010 (0x177a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 12 01:36:45 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=51407E89BCEF34A05CE7B5E416AD2FAEE7E758F4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:0a:58:38:94:bb:19:1f:63:e8:e0:98:d4:77:
0f:69:66:70:f5:bd:5d:68:cb:06:26:99:46:76:d2:
4c:26:a2:fb:95:19:1f:ea:7f:68:41:4c:77:32:b2:
57:ba:90:1c:5b:d5:b4:13:42:c4:ad:57:43:d5:ca:
f5:a2:1f:73:7d:40:de:c3:5d:0d:a9:f0:88:6b:9a:
eb:e8:31:f3:f5:5c:62:ac:04:a6:61:da:fd:f1:e4:
c5:da:23:b2:0b:70:d4:f6:18:f9:54:67:9c:1e:01:
ed:47:6a:46:53:4b:6f:d0:6c:70:71:ad:6d:eb:12:
8e:ce:0a:6f:d4:f4:ca:82:b7:34:15:d4:ec:15:3c:
21:13:88:0c:fb:93:9b:09:df:5d:17:1a:70:ee:c0:
b7:a3:a7:29:87:80:7c:23:92:43:4a:08:80:89:32:
d5:02:df:5e:4d:26:c7:56:56:61:d9:82:5e:27:53:
e4:be:ba:25:81:17:31:a9:ae:a3:b7:2a:9e:38:12:
0c:a2:7e:3c:3e:30:08:e0:4e:ac:bb:0c:0a:6d:41:
99:54:29:3b:e9:b2:83:11:e3:d3:97:16:b2:19:3d:
11:11:a4:21:18:dd:a8:48:f2:e1:ee:db:5d:b6:7c:
df:78:c8:4e:e4:64:40:3f:ea:87:e6:36:b2:71:5d:
78:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:40:7E:89:BC:EF:34:A0:5C:E7:B5:E4:16:AD:2F:AE:E7:E7:58:F4
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/UUB-ibzvNKBc57XkFq0vrufnWPQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.136.0.0/13
Signature Algorithm: sha256WithRSAEncryption
06:10:07:2d:97:78:cd:a5:8b:0c:6c:6a:37:13:1d:93:50:31:
29:db:4a:e6:db:87:33:70:c7:8a:b8:41:14:93:2e:9b:d3:16:
d4:93:da:14:05:4d:4e:2d:a7:9b:f9:e6:03:6e:51:2d:13:11:
a4:11:be:50:02:23:1a:60:62:db:9d:ab:18:fa:aa:b2:aa:ce:
0b:41:e0:37:79:0a:5d:41:2b:f9:ae:74:0d:7c:29:24:49:0d:
16:ff:57:35:60:e1:7a:ef:c2:ac:3e:cb:3b:9d:74:3a:06:c8:
9a:24:14:43:b3:fe:d4:8c:3f:3e:a8:5a:e3:0f:cc:dd:83:57:
bf:27:83:0a:3d:f1:71:21:4a:7c:cd:d2:87:5e:6a:df:52:04:
5f:d3:9e:21:17:ef:53:8b:5c:db:5d:0f:22:1d:28:53:65:16:
4d:c9:c2:9f:b8:ae:4f:aa:44:8d:05:e4:5b:11:de:4a:33:a2:
60:29:fb:81:f2:5a:53:ab:44:d8:ed:a8:7e:4a:52:d4:9a:32:
3b:d7:75:b5:1f:d8:27:2b:3c:82:60:79:bd:8d:3e:6c:ef:15:
25:10:0c:08:c1:9e:78:08:a6:75:fd:34:9f:61:35:fa:51:d0:
e0:21:cf:08:1f:c8:a2:62:8f:fb:97:96:69:ba:32:00:85:ff:
d4:c3:8c:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 02:08:00 2025 by rpki-client