Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/qgRLb4tA6WqSzXj5UejlFBFXq_g.roa
File: qgRLb4tA6WqSzXj5UejlFBFXq_g.roa (raw, json)
Hash identifier: i8CaMbTB7l4ah3z2Zjssq8h6v7TdQ+3n/xMYfC4ALkM=
Subject key identifier: AA:04:4B:6F:8B:40:E9:6A:92:CD:78:F9:51:E8:E5:14:11:57:AB:F8
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 17BD
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/qgRLb4tA6WqSzXj5UejlFBFXq_g.roa
Signing time: Wed 12 Feb 2025 01:37:01 +0000
ROA not before: Wed 12 Feb 2025 01:37:01 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17714
IP address blocks: 175.111.252.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6077 (0x17bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 12 01:37:01 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=AA044B6F8B40E96A92CD78F951E8E5141157ABF8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:40:25:ba:2f:df:a9:09:9d:5d:1b:1b:3d:70:
df:b1:37:f4:61:43:7f:c0:93:01:d5:6f:85:ae:d6:
4a:52:23:1d:78:15:d1:63:1e:7f:33:5e:31:94:ca:
b7:5d:10:8c:ae:57:21:10:10:ef:ff:dd:7b:0d:74:
88:01:14:8f:e9:5d:2c:f8:e2:2d:fd:8f:55:09:d4:
e9:24:4f:d4:66:17:35:93:33:2c:a4:c7:c5:8e:6c:
e6:bf:15:d3:6f:cc:6b:d3:53:18:23:12:d5:31:0f:
29:98:18:1f:fb:03:03:fd:3c:85:50:16:65:aa:78:
3b:66:72:42:9c:f6:b7:88:c2:b2:de:c2:c5:83:2e:
f4:53:a5:8a:df:84:1e:bb:12:1c:11:cd:ad:b7:0c:
0f:37:74:5c:a5:49:5d:88:f8:3a:b8:3a:7f:27:08:
ee:65:61:f6:a7:d0:e6:97:d8:5d:d9:bd:98:17:12:
0c:c9:87:ae:4a:71:53:38:66:98:aa:07:42:61:bf:
53:ef:98:ab:aa:7f:5d:2d:25:64:88:c7:61:1c:72:
6b:17:da:c3:c8:a5:6e:24:4e:80:33:89:e2:c6:60:
18:62:96:d8:4b:15:ea:68:04:83:6a:9a:04:97:4c:
ce:3c:a4:6e:d2:3d:7c:0d:e2:a2:5f:20:34:58:c2:
f7:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:04:4B:6F:8B:40:E9:6A:92:CD:78:F9:51:E8:E5:14:11:57:AB:F8
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/qgRLb4tA6WqSzXj5UejlFBFXq_g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.111.252.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:c2:b2:55:7b:4a:b9:51:9c:07:2d:4c:93:f4:62:e7:f3:3d:
19:fe:c9:9b:6a:fb:9d:c4:bb:e3:e7:44:e8:e9:72:8c:6b:89:
4f:06:21:fa:f3:82:16:53:9f:72:ab:03:09:27:63:c6:79:39:
f7:94:09:35:4e:87:8a:1f:ec:d7:99:81:ae:0c:e4:21:b6:d1:
85:b4:7a:b6:e9:34:bf:2d:58:94:36:59:e1:0b:7a:45:65:2c:
77:0e:97:ff:12:bc:cb:64:c4:c2:4d:4a:e3:94:3b:39:ea:55:
6d:6f:7f:a5:a3:39:d7:1a:c9:e9:18:73:10:fe:06:f4:ab:09:
7d:31:05:14:61:c4:2b:ba:d4:cd:b1:c4:3d:3d:6f:2b:d2:97:
33:69:92:fd:85:bc:4a:ea:82:06:78:fd:df:87:50:74:79:41:
6c:ca:81:19:a8:a7:f5:d3:da:5f:5f:a8:82:0f:15:6e:f2:8b:
a3:f2:48:5f:50:b0:22:19:71:42:90:f4:8b:1b:9b:1d:9b:91:
2b:65:3a:b2:6d:c6:4c:32:8d:f2:6d:5c:11:4e:ae:a2:8f:d0:
f5:cf:fb:14:f6:34:33:52:73:46:b5:74:e2:0c:41:93:32:45:
33:16:ba:d9:81:e5:8a:7b:a9:70:b0:f5:93:53:ac:38:a2:c8:
d8:52:6b:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 17:48:31 2025 by rpki-client