Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/etTXrmgWyeKlD8vgz7CWAQ2PI5A.roa
File: etTXrmgWyeKlD8vgz7CWAQ2PI5A.roa (raw, json)
Hash identifier: apoAWCKCxmhMmgW+LMCB56VMl22nv3Xt0eJO5JGcAtk=
Subject key identifier: 7A:D4:D7:AE:68:16:C9:E2:A5:0F:CB:E0:CF:B0:96:01:0D:8F:23:90
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1746
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/etTXrmgWyeKlD8vgz7CWAQ2PI5A.roa
Signing time: Wed 12 Feb 2025 01:36:32 +0000
ROA not before: Wed 12 Feb 2025 01:36:32 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17421
IP address blocks: 114.136.0.0/15 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5958 (0x1746)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 12 01:36:32 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=7AD4D7AE6816C9E2A50FCBE0CFB096010D8F2390
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:28:31:cc:00:29:e6:6c:2e:29:94:39:01:5c:
2e:f0:f5:f3:6a:66:86:e6:bb:ee:5c:d0:51:b6:cf:
50:35:63:ec:6c:f5:15:c4:c6:59:a1:cf:42:0d:9d:
b1:f2:98:b6:6f:f5:55:05:53:e7:93:95:22:0a:8b:
e5:38:b3:d8:ce:0c:7a:4b:25:8d:26:95:2c:bf:b3:
bb:27:b2:73:77:8a:d2:1b:a0:84:7c:f9:5d:60:54:
25:b5:05:cf:21:8e:b0:dd:35:75:18:93:66:10:eb:
c8:82:92:a8:73:29:22:a1:cd:13:bc:f7:98:e3:44:
26:42:3a:ce:58:d5:47:dc:c3:18:58:44:ea:67:65:
0a:57:4b:04:be:ee:24:d0:09:66:06:35:03:25:69:
48:94:e2:d0:6e:61:b6:e0:44:c0:1e:6e:ea:5b:b9:
60:40:6e:eb:36:66:6b:6c:fa:aa:ea:ab:c7:af:a0:
62:4d:b6:81:f7:ec:57:91:e1:e7:a4:27:6f:45:09:
3d:a1:3c:7f:60:a8:6e:9b:93:af:d4:e4:41:e1:67:
b5:b1:e5:2d:2e:26:28:af:5a:a5:97:91:31:19:d0:
a2:13:a7:95:33:17:90:f9:44:e0:11:0c:6c:d1:ef:
8a:c7:5f:b1:fd:ef:ba:6a:d2:8d:64:6f:82:be:a6:
b2:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:D4:D7:AE:68:16:C9:E2:A5:0F:CB:E0:CF:B0:96:01:0D:8F:23:90
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/etTXrmgWyeKlD8vgz7CWAQ2PI5A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
114.136.0.0/15
Signature Algorithm: sha256WithRSAEncryption
1d:f3:ac:7a:d3:2d:0f:93:48:3d:d1:82:0e:86:58:16:d7:a7:
fb:24:a7:58:25:46:5b:fd:ff:42:41:af:b4:67:d3:9f:67:24:
6d:b9:67:22:a9:2c:f3:62:a8:25:b1:2b:3c:50:08:00:53:70:
11:e2:24:b6:e3:5f:43:53:51:b1:6b:46:82:83:26:ff:b9:ae:
a0:46:3f:88:58:49:57:bc:b1:31:3a:3c:2f:33:47:47:a4:21:
50:ce:4b:e4:dc:7a:f4:db:b0:69:14:af:f5:2d:49:66:6e:a8:
31:47:05:9a:6e:c3:b2:80:7b:f7:ea:a2:a9:84:ce:88:64:35:
0b:3f:89:5b:45:70:14:ee:dc:a8:83:4b:cb:46:8c:22:15:46:
28:cc:30:b1:aa:4f:f8:bd:20:2b:f9:5c:c4:28:9b:0f:37:2a:
da:03:40:1d:25:c7:cc:57:87:f2:98:49:e2:cf:99:32:46:98:
8e:2c:1e:e5:e8:37:28:34:a0:d7:ee:a6:cb:6f:69:9a:e0:8f:
70:00:3e:00:78:8d:8e:00:5f:17:67:1f:8a:12:fd:bf:a0:40:
83:dc:a3:c8:ab:6e:68:a6:87:cc:e0:02:53:58:c7:48:95:32:
f6:52:9a:f2:eb:97:1b:70:69:51:d2:1d:20:c4:48:0d:5b:da:
53:91:0c:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 17:50:13 2025 by rpki-client