Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/mdqgirAQhXsR2uj6nQa8te65QPQ.roa
File: mdqgirAQhXsR2uj6nQa8te65QPQ.roa (raw, json)
Hash identifier: mtzXI5Kv98/b39xe0C8ZOQdpWaHlnlKnP0IQCx6JYoc=
Subject key identifier: 99:DA:A0:8A:B0:10:85:7B:11:DA:E8:FA:9D:06:BC:B5:EE:B9:40:F4
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1762
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/mdqgirAQhXsR2uj6nQa8te65QPQ.roa
Signing time: Wed 12 Feb 2025 01:36:38 +0000
ROA not before: Wed 12 Feb 2025 01:36:38 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9505
IP address blocks: 175.111.239.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5986 (0x1762)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 12 01:36:38 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=99DAA08AB010857B11DAE8FA9D06BCB5EEB940F4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:57:9e:15:d7:ee:49:ef:50:2b:ca:65:8a:aa:
68:51:a6:15:53:11:c2:d5:74:84:8b:55:12:33:f7:
a6:0d:4d:e9:0d:c9:9f:e9:5c:a7:4d:e7:8a:1e:de:
4a:9c:2d:92:60:4c:b5:a6:6e:01:8f:a5:21:10:a0:
80:b8:58:97:df:76:ae:3b:d8:8a:51:b6:7c:20:d8:
01:56:69:7f:32:e8:8d:3b:4d:13:f5:9e:19:86:d6:
83:f5:f6:4e:10:45:99:d7:2d:28:7d:ca:d3:82:e9:
ac:d2:3d:c8:7e:c6:48:3d:ac:a7:e1:f3:aa:6c:65:
7f:3d:53:2c:cc:ad:b6:5e:e8:d9:19:5d:1d:0f:64:
02:06:83:3c:fc:30:5b:51:19:ce:4f:8f:87:f5:9e:
4f:9f:d9:39:a0:1e:df:87:e4:00:f2:d7:57:75:02:
98:0c:3e:3a:23:74:67:c6:4f:45:08:79:80:91:0a:
12:5b:29:44:9a:a3:40:83:2a:70:6f:4c:52:bb:0c:
a1:25:eb:4b:f6:6b:e3:03:c6:24:c6:90:a5:4e:e8:
64:2f:e2:9c:5a:da:4f:27:89:8a:a5:d6:e6:90:fd:
f3:c1:d1:48:83:61:29:7e:5d:39:68:52:30:ef:b4:
cf:35:cb:c9:91:f0:f1:c2:16:c5:67:33:b4:7d:72:
37:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:DA:A0:8A:B0:10:85:7B:11:DA:E8:FA:9D:06:BC:B5:EE:B9:40:F4
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/mdqgirAQhXsR2uj6nQa8te65QPQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.111.239.0/24
Signature Algorithm: sha256WithRSAEncryption
61:33:83:be:10:4c:46:ec:4a:95:3f:52:34:78:4d:c2:ce:1c:
60:78:51:7e:5f:9d:35:a1:cc:a8:74:ec:1b:41:ac:8e:da:1d:
14:10:d8:35:a4:60:61:4e:2b:27:7b:67:5d:9e:d3:95:7c:2a:
f4:e5:17:77:cd:cd:17:12:1d:5d:98:57:7a:0d:97:b7:e1:a3:
71:24:c6:96:4a:47:50:82:1c:47:e1:29:13:d0:b5:1b:35:8e:
53:23:9c:53:69:0b:92:06:fc:61:08:9a:3a:58:1d:f0:04:c4:
f0:6c:0c:de:2b:55:77:d1:9b:65:a5:35:a3:d7:ab:c2:eb:df:
ea:e4:4c:ac:ed:75:3d:ab:3c:20:9e:3b:41:24:76:64:9a:fe:
99:5a:8e:95:79:88:d8:74:af:64:dd:13:9f:20:e7:3a:07:f6:
c9:8b:e2:39:14:23:2c:a5:b4:a0:47:28:15:ec:38:29:aa:69:
6a:d6:c5:4f:6a:aa:98:fb:dd:d4:34:7b:f6:bf:77:5a:d0:af:
b6:61:0e:09:f8:6f:df:7f:05:d4:e2:1d:e7:78:de:96:da:94:
af:35:01:f4:e1:9a:17:2f:e2:44:29:af:08:1a:99:09:21:6b:
8f:50:72:27:26:bb:a6:4c:79:8f:c9:56:2f:a0:71:2d:9f:c6:
bb:b1:b6:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 14:02:23 2025 by rpki-client