Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/cKiprNfgGo4Vgiyl_VX6H30wFNA.roa
File: cKiprNfgGo4Vgiyl_VX6H30wFNA.roa (raw, json)
Hash identifier: vrpq+3LrqhEXXlVWn1bLnY6Mc4tPOpSWsP3PXF1kPbc=
Subject key identifier: 70:A8:A9:AC:D7:E0:1A:8E:15:82:2C:A5:FD:55:FA:1F:7D:30:14:D0
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1756
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/cKiprNfgGo4Vgiyl_VX6H30wFNA.roa
Signing time: Wed 12 Feb 2025 01:36:36 +0000
ROA not before: Wed 12 Feb 2025 01:36:36 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9680
IP address blocks: 202.39.80.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5974 (0x1756)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 12 01:36:36 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=70A8A9ACD7E01A8E15822CA5FD55FA1F7D3014D0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:44:62:7f:41:c6:90:27:13:5a:91:70:08:2d:
e3:d8:ee:f5:43:07:9f:29:0c:21:b0:52:9f:c9:a7:
5b:d3:08:67:37:b7:2a:96:3a:7b:74:22:ec:d3:bf:
d6:b7:ef:bf:25:4c:ed:a6:33:5c:aa:f9:7d:3b:7b:
b0:d9:c7:f2:ee:20:d6:2d:7d:06:44:5d:f8:33:71:
05:35:f1:93:6a:ae:1d:6e:7d:c7:82:16:37:ca:be:
4b:9c:26:47:a9:85:90:07:f4:d6:94:5d:d1:1d:2c:
89:15:7a:78:c0:64:ce:ed:1e:c2:21:5d:0e:df:ac:
f8:91:e3:67:46:99:3c:80:e4:5a:aa:54:55:29:5b:
eb:fa:2d:bc:f1:be:09:09:6c:ba:ea:fe:07:59:17:
cc:86:7d:40:fb:0c:ff:a4:97:11:c3:92:78:af:b2:
30:4c:b4:ea:d4:e3:50:b0:a1:6e:18:cf:bc:67:14:
ec:00:ed:f5:a1:0d:7d:2a:5b:cc:92:9f:ec:4f:92:
29:02:73:f2:fb:e1:84:12:3c:98:ec:d9:7c:b0:b0:
50:25:98:f3:ff:74:1b:3b:56:9e:3a:73:8a:44:de:
8c:12:8c:ff:94:6a:b0:ee:3a:c4:80:63:4a:f5:85:
7b:45:d2:dc:8f:29:0e:56:3e:ef:12:da:d2:09:ed:
86:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:A8:A9:AC:D7:E0:1A:8E:15:82:2C:A5:FD:55:FA:1F:7D:30:14:D0
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/cKiprNfgGo4Vgiyl_VX6H30wFNA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.39.80.0/20
Signature Algorithm: sha256WithRSAEncryption
3b:72:f1:b7:c3:d5:03:bb:2a:ec:43:8c:5b:67:60:d8:fa:28:
65:30:59:6d:c9:b4:1b:32:2f:9f:d2:c6:02:1f:4c:24:93:db:
47:b1:04:ea:7b:ef:ad:c8:ec:5e:88:56:20:48:d5:ca:19:1f:
07:8e:38:40:66:df:30:d8:b2:0d:29:6a:a1:02:f5:60:83:28:
9d:81:2a:53:af:94:b4:51:05:a0:41:b2:dd:13:eb:f0:35:57:
ce:25:ba:ab:2b:c0:47:46:e3:43:d1:e9:d2:da:e4:57:87:38:
c0:f6:19:c4:6c:c8:c6:03:96:db:c8:82:18:34:54:2c:b2:b7:
7b:b2:e5:07:35:3b:59:c2:be:e6:12:53:12:82:6a:5a:f6:b1:
f1:c6:ef:26:ad:02:c1:b0:f1:2a:bc:c8:cc:41:d1:68:17:ec:
59:6b:e7:cc:19:9c:f2:96:ac:69:59:2e:55:af:61:c4:1c:58:
5b:42:34:55:3f:22:33:13:58:ac:ec:e9:02:58:42:56:21:17:
49:7f:ed:8a:b0:12:54:37:bc:09:16:f4:34:1e:d4:d9:2b:42:
c4:3c:94:be:c2:77:be:46:57:48:41:51:23:ff:c1:61:df:2b:
e7:09:f8:8c:97:c8:86:f5:48:ac:03:20:e3:8c:d7:0c:77:a1:
36:e4:69:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 20:49:13 2025 by rpki-client