Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/khrGPeCf_MM3MDzhxWfuCV2zYgQ.roa
File: khrGPeCf_MM3MDzhxWfuCV2zYgQ.roa (raw, json)
Hash identifier: mUs67tIxQhOnYLKbM6pmXgR0ICJ8byIvyp+cU9Sb6oc=
Subject key identifier: 92:1A:C6:3D:E0:9F:FC:C3:37:30:3C:E1:C5:67:EE:09:5D:B3:62:04
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1773
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/khrGPeCf_MM3MDzhxWfuCV2zYgQ.roa
Signing time: Wed 12 Feb 2025 01:36:43 +0000
ROA not before: Wed 12 Feb 2025 01:36:43 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 210.241.224.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6003 (0x1773)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 12 01:36:43 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=921AC63DE09FFCC337303CE1C567EE095DB36204
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:18:5b:f9:a4:81:9d:a8:b8:bf:59:61:15:c1:
1c:2e:b5:cb:9e:18:04:d5:d5:3d:12:df:63:7a:44:
52:ce:59:eb:43:fe:b7:16:84:d6:cb:17:56:6d:60:
ba:97:25:fd:23:ba:56:07:2a:2f:4c:cd:13:c9:f9:
18:f1:ae:8e:88:4a:2f:83:e3:ea:6d:9b:fe:d9:1f:
96:db:94:12:71:ac:c8:3d:98:23:b8:1c:bd:a0:ea:
13:0d:40:fc:e9:b8:9a:b0:03:a7:f9:19:d6:96:fa:
24:89:b6:a0:87:fe:5d:8f:80:a8:3b:04:e6:8b:30:
58:6c:e9:b1:e3:70:3c:73:33:ec:19:1a:b8:21:c5:
57:1c:79:b5:79:00:3c:35:81:39:3f:c1:18:cb:0a:
cc:99:aa:2a:a6:5d:10:3a:71:22:96:d6:8b:99:8d:
42:9e:b3:ba:40:55:17:e5:83:4e:5c:26:9d:2d:58:
ee:79:35:69:74:ec:9d:49:ce:ec:fe:f0:47:7d:54:
f5:be:d7:90:40:1f:5d:33:1a:05:2d:d0:4b:1a:70:
69:8d:23:8f:86:91:d8:a3:c5:b3:8b:7d:c5:ed:fc:
cb:8f:3d:cc:28:1e:50:74:43:3e:02:7b:9e:ff:4d:
5a:ef:e1:07:ae:dd:21:2c:9d:ac:f8:c1:79:de:30:
d1:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:1A:C6:3D:E0:9F:FC:C3:37:30:3C:E1:C5:67:EE:09:5D:B3:62:04
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/khrGPeCf_MM3MDzhxWfuCV2zYgQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.241.224.0/19
Signature Algorithm: sha256WithRSAEncryption
6f:c4:cd:71:4b:1b:ec:db:67:85:d3:d1:36:5b:e1:f9:ed:e4:
90:65:aa:cd:62:a5:f2:98:a4:dc:41:9f:4e:3e:78:f4:2e:93:
9f:f0:5c:07:b9:37:03:8f:41:96:2f:2c:09:1b:41:f5:4f:59:
f2:6c:09:9c:09:10:c5:a5:f4:f1:4b:7f:bb:17:cd:ea:2f:cc:
7c:a1:d5:16:bd:59:ae:7a:44:ff:dd:a4:f3:7e:cf:fb:c5:93:
12:b9:83:0e:74:0c:59:69:35:f5:eb:59:e9:df:e5:72:63:df:
a6:b2:ac:a7:6d:e3:65:14:43:3f:48:f6:6b:35:34:df:0d:ae:
2b:bd:80:ff:b0:55:0e:87:09:3c:b9:86:79:c6:0e:4e:17:6d:
23:a0:58:0f:7c:3d:47:c2:77:3a:7b:34:0b:d7:24:68:d3:de:
08:a9:50:1f:d0:0e:aa:4e:ae:70:97:b8:92:e9:78:9a:24:21:
11:e5:76:67:24:4c:e0:9e:b5:c0:cb:b9:c8:59:b5:1a:bc:13:
d3:0e:8e:69:4b:05:77:4a:ce:86:24:40:59:9b:b5:6f:ee:e2:
92:0c:8a:c5:cd:17:f0:4d:32:0b:ad:79:9b:be:93:f0:ae:6a:
7d:d2:77:05:ef:be:2c:f5:69:d7:2f:5f:61:85:8d:39:c7:10:
5f:2e:12:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 02:02:55 2025 by rpki-client