Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/pNAdt89yDjJ2XNtT7Z70Gzjd-kA.roa
File: pNAdt89yDjJ2XNtT7Z70Gzjd-kA.roa (raw, json)
Hash identifier: zPNqAHGZNNmx/H9dzgjd3vkMp9fjx6aKJ69AubK83nE=
Subject key identifier: A4:D0:1D:B7:CF:72:0E:32:76:5C:DB:53:ED:9E:F4:1B:38:DD:FA:40
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 17A5
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/pNAdt89yDjJ2XNtT7Z70Gzjd-kA.roa
Signing time: Wed 12 Feb 2025 01:36:55 +0000
ROA not before: Wed 12 Feb 2025 01:36:55 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 60.250.0.0/15 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6053 (0x17a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 12 01:36:55 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=A4D01DB7CF720E32765CDB53ED9EF41B38DDFA40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:73:6c:f6:3c:36:a0:80:c2:56:3a:87:cd:00:
77:59:e4:d9:4f:4d:7a:f3:c7:86:00:a5:26:9e:a3:
4a:88:81:4a:34:5f:47:d6:c1:fa:bf:71:97:0c:7c:
a7:4f:41:6e:32:79:26:dc:6d:e5:3f:0b:be:ec:26:
3f:67:8f:79:8a:09:05:8e:db:e6:8c:68:e9:5f:50:
a9:d1:f6:9c:3a:07:ff:ce:60:fc:4f:45:9b:a4:24:
4f:81:d2:51:fb:ca:0f:7c:e7:4e:6b:00:47:82:58:
df:70:a5:d4:b3:18:c3:1e:6d:a2:ca:b0:5c:19:53:
26:a9:b4:11:23:08:f1:a3:4f:a2:eb:d9:e7:d5:2c:
4f:e9:f3:ce:8d:bb:e1:35:16:23:0d:07:37:11:88:
76:76:54:e0:7a:bd:87:fd:22:26:6f:42:45:5f:c0:
c5:d6:3c:19:e3:91:19:62:77:1e:1d:4d:0d:15:cc:
c9:d3:c9:b5:95:28:a5:90:bc:78:c7:e3:9c:04:bc:
b2:08:2b:71:db:d5:99:5c:c2:8a:3a:73:4d:83:51:
af:e0:04:fb:4e:49:24:30:cb:27:02:82:7e:03:80:
89:4d:c0:09:47:c5:43:fa:4b:05:5b:ef:cb:5a:04:
7e:0b:c7:ce:50:18:f3:5f:14:f2:d8:64:3c:b0:8d:
c4:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:D0:1D:B7:CF:72:0E:32:76:5C:DB:53:ED:9E:F4:1B:38:DD:FA:40
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/pNAdt89yDjJ2XNtT7Z70Gzjd-kA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.250.0.0/15
Signature Algorithm: sha256WithRSAEncryption
53:22:0a:33:11:d6:62:26:b3:65:2d:c9:55:28:15:86:8d:e6:
af:8f:e4:b6:d5:c2:ef:2a:0d:a7:93:45:62:c2:66:f3:74:23:
5b:a2:35:ef:9a:0c:81:ef:66:53:7d:c2:f5:33:dc:85:f3:b1:
2b:ce:d5:07:96:72:00:f1:79:5d:d2:42:3d:15:f2:e0:2c:46:
05:26:32:6f:55:2a:75:0d:36:ef:d8:60:9b:d8:c4:e3:01:b0:
58:05:d7:63:b7:18:a1:ef:5f:71:4a:cf:36:6a:ac:4b:18:3c:
a8:4e:f4:d5:75:5c:72:04:ea:bf:fc:21:a1:30:0a:eb:13:8b:
35:9a:d1:db:52:67:e6:df:93:f2:99:e7:4d:7d:8f:22:1b:c9:
8e:0f:db:2c:62:e6:40:50:1c:1d:7b:62:4d:92:29:49:a3:22:
64:17:69:e6:e7:d6:ab:60:9b:57:d6:33:c6:7a:36:5f:35:b9:
3d:5a:2f:23:ad:e1:ff:9e:8e:d0:af:47:07:a1:31:2b:a3:a8:
c8:d5:be:0a:d6:94:1d:63:c9:d9:da:ae:d5:10:2b:5c:5a:40:
55:ab:1d:a8:54:c0:ce:3d:a5:eb:95:7f:4b:d8:e0:82:a5:db:
d4:d9:fb:49:85:33:8a:1a:a0:79:d3:be:ce:2e:f1:cb:54:18:
54:1b:10:71
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICF6UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTIw
MTM2NTVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEE0RDAxREI3Q0Y3MjBF
MzI3NjVDREI1M0VEOUVGNDFCMzhEREZBNDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDVc2z2PDaggMJWOofNAHdZ5NlPTXrzx4YApSaeo0qIgUo0X0fW
wfq/cZcMfKdPQW4yeSbcbeU/C77sJj9nj3mKCQWO2+aMaOlfUKnR9pw6B//OYPxP
RZukJE+B0lH7yg98505rAEeCWN9wpdSzGMMebaLKsFwZUyaptBEjCPGjT6Lr2efV
LE/p886Nu+E1FiMNBzcRiHZ2VOB6vYf9IiZvQkVfwMXWPBnjkRlidx4dTQ0VzMnT
ybWVKKWQvHjH45wEvLIIK3Hb1Zlcwoo6c02DUa/gBPtOSSQwyycCgn4DgIlNwAlH
xUP6SwVb78taBH4Lx85QGPNfFPLYZDywjcRrAgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQUpNAdt89yDjJ2XNtT7Z70Gzjd+kAwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9wTkFkdDg5eURqSjJYTnRUN1o3
MEd6amQta0Eucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMBPPow
DQYJKoZIhvcNAQELBQADggEBAFMiCjMR1mIms2UtyVUoFYaN5q+P5LbVwu8qDaeT
RWLCZvN0I1uiNe+aDIHvZlN9wvUz3IXzsSvO1QeWcgDxeV3SQj0V8uAsRgUmMm9V
KnUNNu/YYJvYxOMBsFgF12O3GKHvX3FKzzZqrEsYPKhO9NV1XHIE6r/8IaEwCusT
izWa0dtSZ+bfk/KZ5019jyIbyY4P2yxi5kBQHB17Yk2SKUmjImQXaebn1qtgm1fW
M8Z6Nl81uT1aLyOt4f+ejtCvRwehMSujqMjVvgrWlB1jydnartUQK1xaQFWrHahU
wM49peuVf0vY4IKl29TZ+0mFM4oaoHnTvs4u8ctUGFQbEHE=
-----END CERTIFICATE-----
Generated at Mon Apr 7 02:00:14 2025 by rpki-client