Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/gpxSyvcI1Wa7dpAB-xacrQf0uFA.roa
File: gpxSyvcI1Wa7dpAB-xacrQf0uFA.roa (raw, json)
Hash identifier: iZHGwEG5DU1x/oEn28GLW2LaPAznGqEQX7Ra3BHesGo=
Subject key identifier: 82:9C:52:CA:F7:08:D5:66:BB:76:90:01:FB:16:9C:AD:07:F4:B8:50
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1797
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/gpxSyvcI1Wa7dpAB-xacrQf0uFA.roa
Signing time: Wed 12 Feb 2025 01:36:51 +0000
ROA not before: Wed 12 Feb 2025 01:36:51 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 20940
IP address blocks: 210.61.248.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6039 (0x1797)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 12 01:36:51 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=829C52CAF708D566BB769001FB169CAD07F4B850
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:55:af:01:b4:11:29:c4:85:0d:45:49:7d:f2:
80:3f:a7:9e:9d:08:96:3c:b8:4f:6b:4d:b5:26:9b:
6a:b0:6c:fb:93:2a:ab:f6:94:75:a8:54:8b:3e:d7:
2b:3f:96:a9:42:82:66:83:92:08:06:4b:90:da:ce:
da:32:3b:a9:83:ce:d8:44:8f:42:dc:bd:ab:82:66:
74:af:39:f5:8d:4a:8c:85:78:20:86:b2:63:78:14:
52:45:72:f7:ad:37:99:83:18:c6:5a:e9:6c:ee:24:
98:3f:32:48:d5:00:16:f3:16:f1:a9:d7:f9:81:8e:
de:66:5e:cd:fa:62:b6:6c:77:f1:ea:db:bd:52:35:
78:bd:94:b2:d8:52:8f:fb:31:a3:00:80:b0:21:b3:
e6:f8:ec:c8:cd:2b:50:24:3f:5d:43:94:3c:4e:9c:
17:14:7c:de:aa:38:d3:1a:e4:9b:f0:5f:0f:f0:3c:
61:c8:61:4a:d7:be:27:c2:7f:a6:32:2c:e7:39:34:
42:54:69:94:b3:6a:67:71:cb:5c:1a:d6:95:9d:26:
c1:ac:14:5e:a6:bc:25:70:0f:b6:ae:b7:ff:8d:59:
94:38:c4:48:2a:4c:87:03:1e:bd:84:0f:e7:07:c4:
f2:93:72:49:6f:60:d8:c4:0f:b0:58:d8:b6:b7:38:
63:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:9C:52:CA:F7:08:D5:66:BB:76:90:01:FB:16:9C:AD:07:F4:B8:50
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/gpxSyvcI1Wa7dpAB-xacrQf0uFA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.61.248.0/23
Signature Algorithm: sha256WithRSAEncryption
72:6a:73:34:fb:d5:a0:aa:90:15:ec:4b:cf:b8:13:8d:75:5c:
ce:db:90:54:e6:5c:b4:66:45:eb:1e:2d:2c:20:35:45:d5:7d:
81:d8:38:70:cd:23:84:a8:ff:9f:d3:8c:98:6f:98:67:3a:06:
3f:e1:44:33:f2:2b:d7:b2:e3:0f:d8:e5:61:69:6e:b0:f1:b9:
c4:75:95:05:b7:0b:1b:ac:e0:0d:bf:96:0d:6d:23:03:bc:2e:
ca:58:80:c1:a5:bd:1e:00:38:0d:56:73:8f:9d:7d:46:e1:8e:
90:f3:29:33:9c:02:5e:2b:8b:32:21:64:ec:72:89:cf:4e:94:
e8:a3:73:ef:a2:53:43:13:b4:99:64:a2:46:4c:3b:c8:79:04:
8b:28:30:c4:06:bb:e5:68:1a:b0:66:15:fd:8b:a2:6f:31:bf:
ad:e8:ec:17:88:51:4c:b9:54:6f:b7:7f:3d:26:e8:14:30:91:
37:d7:c1:f3:bc:93:78:48:d8:d9:ac:23:b9:c3:37:83:eb:78:
4f:c7:b8:16:69:c8:37:5c:81:bb:58:c9:b0:ad:59:13:8e:28:
fd:98:f2:75:6e:6c:c9:e5:99:e3:75:42:6b:a5:f7:7d:cb:fc:
7b:98:ff:5c:cc:50:b8:69:df:96:a8:ca:55:87:88:7e:59:a7:
54:d1:5e:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:14:49 2025 by rpki-client