Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/_YTHEvoRrtxMqfAZiTZ7WFKrkc4.roa
File: _YTHEvoRrtxMqfAZiTZ7WFKrkc4.roa (raw, json)
Hash identifier: FTQuDAM1UFmqSGTz2pkyXtYA3geuAERqALKc30Wz8pY=
Subject key identifier: FD:84:C7:12:FA:11:AE:DC:4C:A9:F0:19:89:36:7B:58:52:AB:91:CE
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1737
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/_YTHEvoRrtxMqfAZiTZ7WFKrkc4.roa
Signing time: Wed 12 Feb 2025 01:36:30 +0000
ROA not before: Wed 12 Feb 2025 01:36:30 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 59.120.0.0/14 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5943 (0x1737)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 12 01:36:30 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=FD84C712FA11AEDC4CA9F01989367B5852AB91CE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:af:12:02:52:50:47:4c:c6:b6:05:fd:e5:6e:
bc:13:95:31:dd:0c:cb:49:76:3f:79:f1:d7:77:63:
38:c0:dc:a3:bf:83:ac:a0:3a:54:5d:71:c0:3f:68:
6f:d4:ed:96:fd:3e:20:1b:b9:21:8b:d8:fc:1c:d9:
36:de:5b:ed:08:ad:a8:34:42:e3:af:22:85:2b:7d:
50:d3:bd:df:1e:e6:69:8f:8b:45:bb:55:ff:b2:94:
ef:01:9e:bb:ce:9b:76:15:e7:a7:8e:24:99:db:53:
79:a3:41:02:f5:7d:ae:ad:92:4a:43:ab:65:6f:02:
95:60:bb:f5:40:14:4f:2a:44:dd:fb:ee:e3:50:e8:
87:98:9d:18:61:88:3e:12:46:57:db:ea:4e:78:74:
0d:14:69:4f:99:b4:e0:fa:4a:cd:01:1f:3d:bf:99:
d9:cd:50:cf:05:75:7d:73:c9:eb:f4:c8:37:a2:76:
54:ef:7d:72:0f:33:52:40:11:f6:3a:f3:be:5d:38:
23:d6:25:4a:1a:48:5b:9b:ff:b9:ca:fa:0d:16:db:
de:6b:f1:42:8b:c9:a7:40:b6:58:39:a5:a5:f9:54:
41:49:32:f4:cb:f3:c8:60:8d:85:48:12:0c:5d:9e:
bd:47:e4:be:4e:93:10:8b:99:37:a9:bc:05:92:db:
fe:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:84:C7:12:FA:11:AE:DC:4C:A9:F0:19:89:36:7B:58:52:AB:91:CE
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/_YTHEvoRrtxMqfAZiTZ7WFKrkc4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
59.120.0.0/14
Signature Algorithm: sha256WithRSAEncryption
88:6b:72:06:51:a5:bf:f2:7a:2f:22:91:4b:fe:79:72:ad:a2:
2c:84:02:25:44:66:21:6e:77:fb:28:a9:b7:00:a5:35:cc:de:
ae:6b:fc:c1:fb:b8:89:dc:07:f7:4c:92:7d:3f:c8:24:ca:cc:
8b:52:c0:29:7d:cb:95:b5:3a:61:84:e1:5a:d0:ae:9b:0d:da:
7b:9a:27:b9:88:e9:4c:54:4f:61:b2:b2:c3:f1:64:22:87:3e:
af:f3:b6:1e:35:1b:a9:72:45:64:70:43:06:af:9d:f5:7a:a0:
d9:19:c4:dd:0b:a3:d0:03:4a:77:b6:8f:fd:8b:48:75:14:10:
89:5c:d4:7d:3e:07:67:61:aa:56:d3:6d:07:7f:14:d5:27:42:
d2:4e:d4:6d:22:be:de:b3:c4:94:03:c5:22:ef:bf:54:50:ea:
cd:28:e5:36:99:51:4f:8e:4e:1b:d9:55:d6:02:8b:18:c2:22:
aa:ca:5e:d6:99:a7:19:0f:54:a5:7c:61:d6:de:a6:bf:c6:b2:
42:a0:b2:1f:ad:50:78:9f:38:0f:d9:6d:db:4c:a8:9e:b7:24:
d4:21:a2:cb:1b:d9:b0:89:0d:fc:17:49:c0:95:e5:94:90:83:
36:1d:a9:9f:b7:b9:f3:77:fb:17:0c:8c:2d:1a:ad:b4:c1:08:
86:7c:46:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 02:07:59 2025 by rpki-client