Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/asNfydmDLP8jb3ji9vBCmkUqzK8.roa
File: asNfydmDLP8jb3ji9vBCmkUqzK8.roa (raw, json)
Hash identifier: TaQ7QKACnF+yargdSy50EpaVTIrU7SJNTPx0OiPwR78=
Subject key identifier: 6A:C3:5F:C9:D9:83:2C:FF:23:6F:78:E2:F6:F0:42:9A:45:2A:CC:AF
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1718
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/asNfydmDLP8jb3ji9vBCmkUqzK8.roa
Signing time: Wed 12 Feb 2025 01:36:24 +0000
ROA not before: Wed 12 Feb 2025 01:36:24 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 220.130.0.0/15 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5912 (0x1718)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 12 01:36:24 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=6AC35FC9D9832CFF236F78E2F6F0429A452ACCAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:d1:27:52:54:10:c2:c3:3d:76:b8:bd:ca:ee:
a5:9b:77:e5:a9:5c:7d:53:cb:1c:a2:58:e3:b6:42:
df:fc:f7:3e:d2:ea:5b:98:75:b6:5a:65:ec:38:47:
ab:20:31:7d:b0:8a:1e:bb:a5:02:0f:15:43:b0:58:
85:f4:d3:ad:7b:4e:69:bf:a3:da:58:f3:09:26:6f:
72:fd:7f:83:d8:5d:cc:c0:f3:df:d0:76:ee:8b:35:
a2:85:b9:33:da:98:03:99:ab:5f:97:08:84:ef:80:
0e:6e:a8:d8:4a:8d:0e:c2:08:54:2e:39:de:d2:cb:
56:81:99:08:6e:47:cf:aa:95:78:0f:41:7d:e9:87:
8a:36:9d:0d:ef:77:c2:3c:1a:e9:db:3f:c0:e8:53:
86:86:5f:26:5f:e1:d6:44:b1:4d:12:86:46:76:65:
53:62:2b:38:8b:90:a4:51:31:3b:63:1d:ec:f3:fd:
26:85:25:7b:22:ea:0d:61:fc:fb:7f:e6:d8:24:1e:
7a:17:46:50:ad:53:45:ef:c4:89:be:b5:75:97:4e:
d4:18:85:5c:f2:72:b5:f2:56:8f:d2:09:7a:35:26:
47:de:90:8f:64:3d:68:f0:ab:3d:fb:9a:35:dd:53:
66:e7:a5:fb:d9:1d:90:e6:18:86:5b:c9:5a:0e:dd:
83:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:C3:5F:C9:D9:83:2C:FF:23:6F:78:E2:F6:F0:42:9A:45:2A:CC:AF
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/asNfydmDLP8jb3ji9vBCmkUqzK8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.130.0.0/15
Signature Algorithm: sha256WithRSAEncryption
19:ea:67:5f:71:e9:50:a5:a9:5f:fd:60:f1:60:58:6a:a1:9c:
68:7a:98:67:c0:43:64:fe:94:dc:48:07:17:be:5b:6e:3d:5b:
b4:21:1a:da:2f:8e:96:d6:75:87:cb:81:4b:21:9c:f8:75:57:
a4:21:32:7d:4a:59:e6:d4:6d:eb:b3:e2:b6:04:db:35:50:b3:
8e:f5:27:52:ad:44:29:79:70:a7:41:9f:08:96:51:44:6f:2f:
b3:38:96:d3:40:32:55:3b:5b:48:bb:cc:9f:65:cb:61:b4:8d:
99:28:ff:4b:86:31:d8:ca:48:34:2f:d3:0c:fe:fa:51:ae:08:
8b:34:b3:52:b1:38:51:20:78:ba:26:78:3c:04:bd:9e:4a:5e:
67:ee:f0:ba:dd:59:ed:33:9e:f1:40:05:57:2d:c1:61:d9:6e:
dd:be:f5:cc:07:34:67:7e:41:15:82:e7:fa:7c:5f:a4:33:3a:
b7:7e:2a:7e:7b:ba:1d:51:2f:d2:19:d6:5e:10:ed:c9:75:f6:
72:a6:f6:02:bb:20:40:1a:d2:46:a1:af:58:a7:6b:97:10:27:
40:64:25:a0:ae:f6:ad:01:19:c0:e8:ed:31:4b:74:8d:b4:c9:
83:1c:5a:73:9f:f8:3e:5b:17:3a:6b:64:4b:b7:9e:89:dd:d5:
ac:42:90:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 02:00:08 2025 by rpki-client