Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/feUj6FvXAALKt5YuIY-fiS9T5S0.roa
File: feUj6FvXAALKt5YuIY-fiS9T5S0.roa (raw, json)
Hash identifier: FOlItxj9wf00PwJUwb/34asuu3iRMKaRHSfY1aaVvTw=
Subject key identifier: 7D:E5:23:E8:5B:D7:00:02:CA:B7:96:2E:21:8F:9F:89:2F:53:E5:2D
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1794
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/feUj6FvXAALKt5YuIY-fiS9T5S0.roa
Signing time: Wed 12 Feb 2025 01:36:51 +0000
ROA not before: Wed 12 Feb 2025 01:36:51 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 203.160.242.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6036 (0x1794)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 12 01:36:51 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=7DE523E85BD70002CAB7962E218F9F892F53E52D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:d3:03:4d:09:c3:21:4e:80:00:7f:8e:22:19:
02:c2:b4:fe:6f:70:94:1d:46:6e:d3:b9:e1:27:ae:
be:06:5b:b2:cf:d3:ab:99:42:91:ed:8b:a8:b3:07:
d1:11:05:ab:c4:e1:a6:e9:d6:a8:a2:74:c5:55:5e:
2d:43:3d:dc:dd:d9:af:e3:67:b0:99:6f:b7:8b:f9:
85:43:84:48:a7:83:fb:04:c6:f7:15:00:ba:69:6b:
01:f8:0a:98:3c:57:fa:96:c7:8a:fe:5b:c3:56:af:
66:37:e9:97:78:9e:89:9c:df:1d:c6:a9:3a:57:e9:
b7:9a:0b:1c:5d:8e:e4:21:da:e4:eb:27:3d:01:d0:
3c:95:7b:c4:a4:c4:c6:16:2e:2e:11:e2:4e:10:b9:
96:2e:7a:55:4a:51:da:f7:67:e1:bd:17:13:23:4c:
44:58:48:e4:af:74:40:bc:26:b6:fb:d5:3d:88:4f:
0c:4a:6c:09:d8:69:d5:5d:e2:e8:f6:5b:7c:69:f9:
c4:1c:62:2a:a0:fc:21:8f:5c:8d:a6:22:ff:04:40:
3d:11:9f:b1:66:c3:2e:e1:c4:76:4d:d2:5d:53:45:
c4:81:25:e6:d0:b1:86:43:93:5b:13:d6:61:27:27:
83:c4:c3:d7:fa:74:0e:29:4d:01:90:45:bc:34:a2:
dc:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:E5:23:E8:5B:D7:00:02:CA:B7:96:2E:21:8F:9F:89:2F:53:E5:2D
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/feUj6FvXAALKt5YuIY-fiS9T5S0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.160.242.0/24
Signature Algorithm: sha256WithRSAEncryption
24:f4:0b:fe:7c:0c:4a:76:70:94:83:e1:85:47:a7:53:4f:98:
71:ce:6f:08:45:5d:85:c1:72:c2:8e:dc:4a:a7:1b:74:42:4d:
dc:13:de:8f:38:45:f2:89:d0:1f:12:07:9a:1f:3a:c2:2b:5f:
2a:87:ee:75:63:69:65:79:6a:bc:13:a7:cb:b2:5f:11:48:da:
86:94:c6:ff:6c:84:48:5c:e8:b3:1a:4b:d0:44:d9:12:b5:a0:
01:7f:1c:d5:91:7c:1c:58:fa:27:3c:8c:1a:07:e4:21:1e:bb:
15:69:d8:d4:f4:f7:fa:1e:3c:69:e5:8e:d3:26:55:53:2d:b0:
fd:a6:13:60:46:c3:bb:48:19:6f:21:dc:75:37:e4:c8:fe:56:
0a:cd:68:9d:ce:51:17:72:ce:ad:ac:fd:73:25:37:dc:ba:2c:
64:56:1d:11:c7:c5:60:6e:d3:ca:39:ea:e5:38:d7:63:c9:d6:
2f:2f:0d:6a:73:4f:93:e1:57:e5:79:a4:9f:9c:00:d7:b5:30:
94:64:f0:84:f0:05:a8:59:75:2f:3c:04:ac:66:da:1e:1d:75:
2a:fa:bc:19:66:59:23:0f:10:fc:d6:e0:64:7a:0c:43:43:80:
fc:a2:36:0d:c3:1f:2f:59:a9:f8:8b:26:7f:56:63:87:92:6b:
b9:b0:14:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 05:41:18 2025 by rpki-client