Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/h80qsIS63XusN6KCex9ATAzc0bQ.roa
File: h80qsIS63XusN6KCex9ATAzc0bQ.roa (raw, json)
Hash identifier: RIKUKmWWRoik9ZHryCDE2WuXYGHUhuUIgzD88fRlTy8=
Subject key identifier: 87:CD:2A:B0:84:BA:DD:7B:AC:37:A2:82:7B:1F:40:4C:0C:DC:D1:B4
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 179C
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/h80qsIS63XusN6KCex9ATAzc0bQ.roa
Signing time: Wed 12 Feb 2025 01:36:53 +0000
ROA not before: Wed 12 Feb 2025 01:36:53 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131661
IP address blocks: 210.62.250.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6044 (0x179c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 12 01:36:53 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=87CD2AB084BADD7BAC37A2827B1F404C0CDCD1B4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:79:cd:29:33:cb:d0:c3:d6:d0:0e:20:28:65:
69:05:81:73:9d:b4:11:40:52:b4:ed:6f:42:f5:80:
cc:19:3f:b1:0b:11:fe:b6:4b:80:1e:ac:5c:ff:e0:
da:d0:6e:d7:c8:f1:4a:0a:e4:26:0b:38:86:dc:c0:
18:04:6e:4b:49:fd:5c:6c:c2:20:18:22:5c:08:2c:
54:b8:ca:dc:15:25:3a:05:04:0f:34:6d:59:42:bf:
18:bc:2b:9f:1a:60:b6:28:1f:d8:5f:c7:95:a6:7a:
b2:63:d9:45:84:5c:07:87:7e:ca:f3:f3:93:ee:8e:
9d:79:c3:f8:f6:5f:23:ab:63:01:f3:d5:23:15:5c:
3d:63:10:5f:48:c2:d3:78:15:d9:27:2b:37:6c:c7:
a6:19:c6:a2:e9:6c:d6:15:63:84:e5:2e:52:21:b4:
a2:4d:aa:9b:77:b4:1b:a9:91:88:bb:18:03:2a:71:
d8:b0:14:c9:b2:8a:06:59:f9:07:c7:61:cd:3a:da:
a2:0c:35:3a:86:71:08:cd:88:88:83:ec:06:a6:d6:
e1:0d:42:e7:c6:cc:fa:eb:b0:28:05:cc:a9:d5:c6:
d0:1f:57:14:0d:83:66:bf:7e:c1:b7:7f:4c:a4:df:
d3:47:e8:f4:e2:b7:c1:7f:a0:d4:33:13:bb:1c:71:
24:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:CD:2A:B0:84:BA:DD:7B:AC:37:A2:82:7B:1F:40:4C:0C:DC:D1:B4
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/h80qsIS63XusN6KCex9ATAzc0bQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.62.250.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:79:8f:f7:96:3a:32:59:b9:c2:ab:57:8d:a0:24:c7:bb:d3:
c4:6f:22:cb:85:7e:13:24:01:f2:50:34:47:61:40:27:87:fa:
35:54:d2:90:5d:59:78:5d:a2:20:7b:fc:39:df:06:01:b3:e1:
f8:f3:7f:68:3b:10:53:1f:4f:9d:3f:30:cd:18:41:ae:65:f1:
c2:b5:b7:78:68:f4:dc:fb:a9:9a:c1:0d:d0:30:36:fc:8a:a4:
e0:c7:4d:56:16:f3:b3:1e:af:00:a7:9d:2b:b3:e2:c0:51:75:
08:55:33:26:9f:cd:aa:36:01:ee:0a:dd:17:66:8b:03:b0:48:
a4:1f:74:a4:60:86:a6:7a:12:ce:75:93:c5:7c:fc:af:8d:a0:
99:d3:1f:2f:f1:de:0b:24:83:62:f1:71:dd:d8:1e:03:39:ac:
c8:30:a1:8c:ca:31:04:90:72:f1:c8:54:25:a3:57:82:c4:ac:
ed:f0:63:ec:f1:ae:34:8a:ee:17:c3:0b:bc:22:5b:c5:b9:c9:
10:81:de:08:28:fa:dd:43:87:14:52:81:61:99:30:23:3e:15:
59:74:36:75:16:e9:fc:58:fb:22:53:82:71:48:d9:91:8a:ab:
63:0f:0d:2a:d6:c9:4e:6c:5c:d4:ac:3e:26:57:a7:d6:03:3f:
02:d5:39:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 17:39:30 2025 by rpki-client