Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/cu8c-sCHemrcl0BdXkDxGtt10as.roa
File: cu8c-sCHemrcl0BdXkDxGtt10as.roa (raw, json)
Hash identifier: d2mXWk7uKLsxG85ifhznaTWKHX8HSsNDGypXDNTN5iM=
Subject key identifier: 72:EF:1C:FA:C0:87:7A:6A:DC:97:40:5D:5E:40:F1:1A:DB:75:D1:AB
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 173B
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/cu8c-sCHemrcl0BdXkDxGtt10as.roa
Signing time: Wed 12 Feb 2025 01:36:31 +0000
ROA not before: Wed 12 Feb 2025 01:36:31 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 61.228.0.0/14 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5947 (0x173b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 12 01:36:31 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=72EF1CFAC0877A6ADC97405D5E40F11ADB75D1AB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:3e:6d:d4:68:3f:70:9b:3f:6b:39:8d:7c:47:
d7:36:3a:65:e5:bf:40:2f:8e:89:f7:30:83:62:39:
ff:6f:05:67:78:79:43:5b:57:77:fc:ac:5e:2d:c6:
ce:31:83:ef:c1:cb:95:00:0f:ad:d6:68:e6:10:8e:
53:0d:5a:0e:f9:b9:ef:6d:83:76:ec:34:f9:43:84:
ef:29:1a:f3:6c:58:eb:ab:f5:fc:b0:5c:df:d7:99:
9a:6b:a9:12:d0:2d:6a:fb:51:f9:74:89:6d:10:89:
03:00:5d:f1:68:e3:5e:0c:04:f5:c0:a9:4d:be:b9:
33:2c:be:6f:eb:67:8e:d2:57:16:66:ac:9b:1a:9f:
99:9a:87:c7:54:2c:6b:2a:57:c4:6c:8b:cd:c3:ab:
6c:49:2a:15:84:cc:5f:d9:54:58:a7:12:a4:dd:fb:
9c:4d:b9:fe:e5:3e:7e:70:e2:e8:2b:8f:45:f1:63:
b1:51:50:86:79:84:2f:7e:f2:15:ce:26:da:31:f3:
48:ca:c6:d9:98:04:3b:ac:70:a9:2a:29:2e:2c:6c:
35:3c:05:02:ec:97:14:29:dd:5a:24:48:2a:5f:eb:
f2:b8:bf:3d:65:a2:26:83:cb:6d:1e:57:53:e1:6a:
60:7b:9c:b3:88:ca:1f:d6:24:4a:0b:a7:44:9b:25:
4f:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:EF:1C:FA:C0:87:7A:6A:DC:97:40:5D:5E:40:F1:1A:DB:75:D1:AB
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/cu8c-sCHemrcl0BdXkDxGtt10as.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.228.0.0/14
Signature Algorithm: sha256WithRSAEncryption
7d:50:aa:35:eb:d2:6b:86:ff:7a:84:4e:d8:ec:3d:f5:0d:a9:
e1:e4:92:0b:31:6c:08:99:3d:0e:8a:0a:8e:90:5a:64:d6:f2:
18:9c:3f:cb:f9:e4:fd:84:bf:42:e8:ba:16:be:e8:e7:ab:8c:
42:5b:38:e7:62:5f:ec:24:bd:19:9f:99:13:7c:2f:52:55:05:
0f:a2:0c:55:87:ab:3e:e0:02:07:44:89:a2:bd:44:20:bf:d6:
53:e5:8f:1b:c1:85:51:10:0f:64:c5:de:f8:12:bc:8f:3c:76:
ed:aa:94:a4:4c:e9:8b:e8:93:d2:a9:20:ba:67:4a:5e:80:7e:
3e:10:bf:31:b3:1a:92:20:58:a5:e1:7d:66:a5:6e:19:45:65:
8d:db:ca:73:cd:cc:3a:38:a7:48:57:29:41:9d:e4:be:d7:f7:
e1:09:87:71:2f:79:93:e5:4b:4d:43:a4:d3:f8:0f:2b:22:3f:
a4:fa:cd:25:7e:61:7e:ae:71:65:a9:ab:ff:71:34:70:f1:91:
dc:61:f5:70:45:27:33:ee:4a:9c:c3:cb:e2:97:89:1b:fc:5a:
f3:41:39:f5:36:d9:98:a4:5e:a7:64:e7:d6:4a:eb:fb:4a:63:
a1:0d:1e:1a:b8:d8:7b:8d:2d:69:5f:60:d8:50:0a:c6:b6:ed:
92:76:6e:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 02:02:49 2025 by rpki-client