Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/Wh36Za2ZpRJ3o44KxPRcs2bfXxM.roa
File: Wh36Za2ZpRJ3o44KxPRcs2bfXxM.roa (raw, json)
Hash identifier: Pjlsd4l8tg/3trKyBV3XtwZfVdwysCPKLV/9euvIdyc=
Subject key identifier: 5A:1D:FA:65:AD:99:A5:12:77:A3:8E:0A:C4:F4:5C:B3:66:DF:5F:13
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1796
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/Wh36Za2ZpRJ3o44KxPRcs2bfXxM.roa
Signing time: Wed 12 Feb 2025 01:36:51 +0000
ROA not before: Wed 12 Feb 2025 01:36:51 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 20940
IP address blocks: 203.69.141.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6038 (0x1796)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 12 01:36:51 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=5A1DFA65AD99A51277A38E0AC4F45CB366DF5F13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:c5:66:1f:3f:7f:22:b8:32:88:b2:f4:95:a7:
41:53:84:93:7e:a3:c7:ac:21:1f:9b:bb:72:d4:15:
36:e2:0d:3b:fc:1b:ea:aa:62:14:20:e7:ad:39:e5:
c9:96:c7:01:c5:73:89:6c:cb:14:ee:36:9d:6b:1a:
26:cb:d7:11:56:27:ae:28:b8:5b:c4:dc:32:a1:79:
d3:96:4b:bb:96:1c:91:cf:da:95:a5:a1:1f:32:be:
90:99:04:4c:a1:d9:d0:bb:de:a4:77:5b:f3:53:b1:
c2:78:ac:f4:bf:a1:fa:31:89:d9:8c:37:e4:14:d7:
1b:ec:0c:85:e6:69:eb:e8:af:3d:c4:44:c4:ee:15:
4d:d3:25:55:17:58:03:70:bd:40:37:58:2b:cf:5a:
57:cf:e3:55:52:12:fa:8e:28:cf:51:fc:90:a0:c3:
41:8a:4f:86:bf:79:23:5c:f7:d4:98:8d:68:46:56:
c5:d7:26:23:8f:57:df:c9:b4:17:c6:ba:86:16:c8:
12:99:42:77:5d:e5:2b:3f:bd:32:88:01:da:60:f7:
b6:18:ca:2b:39:10:7d:a3:92:01:1d:90:34:7c:1b:
04:a6:24:9a:1c:4a:bd:c0:3b:06:2a:e2:bf:85:65:
0f:0c:7c:8f:3a:c8:9a:84:06:0c:fd:e8:b1:74:cc:
04:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:1D:FA:65:AD:99:A5:12:77:A3:8E:0A:C4:F4:5C:B3:66:DF:5F:13
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/Wh36Za2ZpRJ3o44KxPRcs2bfXxM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.69.141.0/24
Signature Algorithm: sha256WithRSAEncryption
85:88:dc:c5:6e:ae:10:48:dc:91:ac:80:d6:da:72:f5:f4:20:
0d:31:06:bb:39:34:45:0d:65:52:fc:66:f8:75:3b:3a:bc:7d:
f0:52:77:09:d8:20:64:ab:d4:d4:e7:3b:8f:cf:9a:75:cb:fd:
43:cf:3d:c4:4e:3c:bc:ea:6e:67:b4:ce:0d:ea:24:3c:34:cc:
2c:3d:f6:e5:b1:2b:93:7d:c6:9d:dd:2a:d4:30:1c:a0:98:24:
a8:5b:f9:51:18:cc:e5:da:43:28:04:e7:b1:ac:16:2c:f6:77:
fc:b5:0b:07:96:5b:17:ef:be:c4:64:a8:b5:bf:38:97:53:3e:
de:b0:50:55:cc:65:f2:db:82:2a:33:34:ff:76:58:13:83:fe:
58:e4:32:c2:5c:d9:7f:35:df:59:f6:d2:1b:76:aa:dc:ca:ed:
d8:dd:1d:db:57:e3:08:3c:37:6e:66:a4:a8:ec:28:86:22:15:
42:37:fd:39:fa:e8:fd:fc:03:d5:33:95:ec:9a:8c:85:cd:c4:
44:31:d7:1e:d2:e8:be:de:78:b7:05:8d:c4:3e:0b:6f:a7:13:
f9:28:f0:25:d4:63:d9:47:ae:3f:d9:05:6d:3a:39:9d:a2:32:
dc:bf:af:a9:8c:45:8f:9b:bf:9c:5b:80:f9:4d:8b:be:42:e2:
7d:d7:23:56
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICF5YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTIw
MTM2NTFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDVBMURGQTY1QUQ5OUE1
MTI3N0EzOEUwQUM0RjQ1Q0IzNjZERjVGMTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC7xWYfP38iuDKIsvSVp0FThJN+o8esIR+bu3LUFTbiDTv8G+qq
YhQg56055cmWxwHFc4lsyxTuNp1rGibL1xFWJ64ouFvE3DKhedOWS7uWHJHP2pWl
oR8yvpCZBEyh2dC73qR3W/NTscJ4rPS/ofoxidmMN+QU1xvsDIXmaevorz3ERMTu
FU3TJVUXWANwvUA3WCvPWlfP41VSEvqOKM9R/JCgw0GKT4a/eSNc99SYjWhGVsXX
JiOPV9/JtBfGuoYWyBKZQndd5Ss/vTKIAdpg97YYyis5EH2jkgEdkDR8GwSmJJoc
Sr3AOwYq4r+FZQ8MfI86yJqEBgz96LF0zAQzAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUWh36Za2ZpRJ3o44KxPRcs2bfXxMwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9XaDM2WmEyWnBSSjNvNDRLeFBS
Y3MyYmZYeE0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy0WN
MA0GCSqGSIb3DQEBCwUAA4IBAQCFiNzFbq4QSNyRrIDW2nL19CANMQa7OTRFDWVS
/Gb4dTs6vH3wUncJ2CBkq9TU5zuPz5p1y/1Dzz3ETjy86m5ntM4N6iQ8NMwsPfbl
sSuTfcad3SrUMBygmCSoW/lRGMzl2kMoBOexrBYs9nf8tQsHllsX777EZKi1vziX
Uz7esFBVzGXy24IqMzT/dlgTg/5Y5DLCXNl/Nd9Z9tIbdqrcyu3Y3R3bV+MIPDdu
ZqSo7CiGIhVCN/05+uj9/APVM5XsmoyFzcREMdce0ui+3ni3BY3EPgtvpxP5KPAl
1GPZR64/2QVtOjmdojLcv6+pjEWPm7+cW4D5TYu+QuJ91yNW
-----END CERTIFICATE-----
Generated at Sun Apr 6 01:44:39 2025 by rpki-client