Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/eaQYbc0vgJsBtDR0h4TAsqz1Cv0.roa
File: eaQYbc0vgJsBtDR0h4TAsqz1Cv0.roa (raw, json)
Hash identifier: AyFzbwkzuywKh+isK8IMhMVhnIPjphM1m6sm3GzfsW0=
Subject key identifier: 79:A4:18:6D:CD:2F:80:9B:01:B4:34:74:87:84:C0:B2:AC:F5:0A:FD
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1772
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/eaQYbc0vgJsBtDR0h4TAsqz1Cv0.roa
Signing time: Wed 12 Feb 2025 01:36:43 +0000
ROA not before: Wed 12 Feb 2025 01:36:43 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131660
IP address blocks: 2001:b000:591::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6002 (0x1772)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 12 01:36:43 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=79A4186DCD2F809B01B434748784C0B2ACF50AFD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:36:2d:ae:01:55:fd:75:f8:b8:42:77:48:98:
ab:5d:67:04:b3:c4:5f:47:77:6e:32:01:3c:b8:d2:
40:d9:7c:3a:8f:0d:ca:c3:82:cc:f6:80:00:f3:3c:
db:ab:e3:be:f3:ad:5f:a2:02:eb:d6:65:27:bd:71:
32:d7:ec:b0:ce:b6:51:93:ba:31:50:97:15:b5:c2:
f9:d2:96:36:39:67:81:ad:3c:d6:7e:04:43:69:a5:
71:49:8a:c7:28:e6:b9:17:c9:f6:36:aa:bb:38:31:
5d:bd:6d:63:db:eb:92:8c:90:32:8f:7e:f6:9e:f8:
a2:9f:45:8a:ca:3b:19:5c:b6:31:b9:01:cf:4b:43:
b2:42:34:13:5e:92:81:2f:46:a4:6c:ac:bc:df:c2:
b8:6b:9d:3f:2e:d5:e5:be:ef:9d:6e:aa:43:e0:f6:
b5:26:62:ab:e3:66:72:8e:80:75:29:f2:32:9b:9f:
16:3e:26:14:ee:95:aa:4f:ec:95:63:99:05:06:95:
8f:18:62:38:ab:53:7f:2f:79:95:a1:22:08:96:c7:
1f:e2:2c:5d:f7:e4:4e:ea:8d:fe:09:99:2f:77:db:
5c:ab:e2:0f:da:0d:a3:e5:43:8a:90:77:d0:43:65:
fc:53:b6:fc:fe:f9:3d:60:b4:b0:c1:03:fb:6a:5c:
2a:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:A4:18:6D:CD:2F:80:9B:01:B4:34:74:87:84:C0:B2:AC:F5:0A:FD
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/eaQYbc0vgJsBtDR0h4TAsqz1Cv0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:b000:591::/48
Signature Algorithm: sha256WithRSAEncryption
3e:bf:d7:41:12:18:f8:d9:81:7a:27:39:cf:cc:6c:ad:5d:e9:
10:8d:72:5b:de:9f:67:e9:95:d2:58:17:0c:33:aa:63:9a:6e:
94:a4:4c:50:01:98:7e:64:71:da:1e:d1:73:16:f9:ca:a9:0f:
ab:34:a3:45:54:2e:10:e4:1c:83:03:0c:20:97:4f:0b:11:f4:
9f:03:82:dc:f1:b6:7c:f9:b8:45:f8:16:d5:98:f9:e3:42:3f:
6b:84:b8:04:3d:30:f7:f5:90:4e:0b:7a:0e:f1:34:0f:bb:fd:
ee:4b:f3:e7:16:5e:ca:1a:0a:d6:64:d4:bd:d3:4f:8c:09:79:
8d:5d:32:0f:98:00:a0:1a:a0:d2:3a:ba:20:9f:ea:50:a9:5c:
50:6c:78:76:3f:e4:bc:3e:90:3d:28:5a:19:4d:9b:63:1f:13:
d2:8c:3e:27:8e:e2:fb:a8:3d:ec:da:09:e3:20:c6:f1:2c:16:
e8:1f:50:54:dc:a2:b1:38:58:4e:fa:24:d2:6e:ec:0b:dd:8f:
4f:dd:da:bd:67:ec:db:c3:94:af:f6:70:9b:b4:56:54:f2:48:
9d:be:66:2b:b7:41:42:8a:83:08:51:4d:ae:7b:4e:e9:53:c3:
04:f9:33:ee:eb:df:fa:f3:2b:1f:05:27:f8:75:9c:2f:4e:f6:
ef:57:e1:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 20:47:16 2025 by rpki-client