Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/spShiHNnoxF6aZ8APNMSY9y4ldw.roa
File: spShiHNnoxF6aZ8APNMSY9y4ldw.roa (raw, json)
Hash identifier: q693jzBEFOL0j5Qzq6NAXYMor7UsX/58f1/yqxPEESI=
Subject key identifier: B2:94:A1:88:73:67:A3:11:7A:69:9F:00:3C:D3:12:63:DC:B8:95:DC
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1724
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/spShiHNnoxF6aZ8APNMSY9y4ldw.roa
Signing time: Wed 12 Feb 2025 01:36:26 +0000
ROA not before: Wed 12 Feb 2025 01:36:26 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 54994
IP address blocks: 61.221.181.128/25 maxlen: 25
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5924 (0x1724)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 12 01:36:26 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=B294A1887367A3117A699F003CD31263DCB895DC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:ad:a7:f6:a2:8b:b4:98:c5:72:2d:60:6a:02:
d6:50:21:f6:a2:b9:f4:f0:bf:1f:04:cf:d9:1f:5e:
b8:e9:a5:0c:47:27:11:85:5b:99:e2:de:b4:00:38:
72:2e:b4:6a:75:7c:8d:d8:38:a1:30:80:11:5f:43:
ff:87:73:5f:d2:61:13:9a:57:e6:50:1f:3c:0b:b0:
58:84:6a:f7:38:3c:73:05:f2:1b:41:5c:da:7a:22:
36:d1:ad:fb:fa:91:3f:bd:b2:81:d6:e6:8a:e4:60:
da:0f:a1:66:95:45:f5:03:fd:c2:b1:46:45:83:e3:
af:70:e1:63:27:27:40:94:13:8c:63:ca:b7:4d:11:
8d:77:b5:d8:c0:79:26:fa:b0:43:e4:10:89:ee:e5:
da:51:9b:af:33:79:98:2c:3e:bf:3a:ff:da:3a:a7:
36:4d:13:7d:33:28:93:a1:c5:0d:f5:59:91:22:ab:
19:bb:c3:fa:b9:b3:2c:af:92:11:7a:8b:f0:5f:4e:
4a:9d:27:e8:79:1e:69:b5:e0:d6:14:71:f4:a7:36:
fb:ae:e4:e0:aa:da:de:89:92:f9:f5:78:ba:31:8c:
20:95:9e:13:4c:bd:12:92:9a:9c:b9:e5:0d:6d:a8:
87:c8:62:bd:2b:cc:66:5f:3b:49:dd:47:68:96:af:
98:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:94:A1:88:73:67:A3:11:7A:69:9F:00:3C:D3:12:63:DC:B8:95:DC
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/spShiHNnoxF6aZ8APNMSY9y4ldw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.221.181.128/25
Signature Algorithm: sha256WithRSAEncryption
c9:fd:ef:03:86:71:b8:b8:4e:29:72:3b:98:78:a3:b4:c3:0b:
c4:d7:e6:98:ed:78:f6:0b:c5:97:60:45:f8:0e:63:84:fb:9e:
35:32:e6:f7:99:2c:7e:7d:97:f1:af:3e:9a:e2:ac:7f:eb:ca:
44:ac:e9:55:28:ae:3c:11:e4:b8:28:e2:c0:84:bc:21:68:9d:
bd:ed:98:b4:cc:81:4e:2d:1a:71:52:0e:43:f5:f5:4e:e3:60:
d5:84:a2:36:47:a9:bb:91:d4:d0:33:7d:e4:d9:66:a3:ef:7e:
8b:30:21:2f:8f:b7:c1:52:b6:fc:ab:0d:86:b1:09:f5:92:3b:
85:8b:69:93:d5:c1:3c:cf:62:a2:7b:f6:52:1c:a9:fc:e5:11:
77:ca:03:e6:a5:67:e5:69:61:df:1a:f0:cc:fd:98:ff:ee:37:
5d:59:7f:8c:f0:51:be:b8:80:81:36:ca:e6:6c:8c:f4:27:0e:
ae:eb:f7:8e:2a:3b:c5:c4:17:c0:c3:b2:31:f1:f0:95:ee:76:
51:49:52:0b:aa:6e:c2:92:e6:43:eb:ee:fd:c3:8f:02:91:2d:
44:3e:48:70:b3:ca:7d:82:ac:ed:b0:d4:7e:05:b1:fc:38:86:
d9:d1:1e:76:e4:62:5c:5f:95:ff:1c:c7:96:6d:1a:f2:96:4f:
99:2e:30:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 07:22:49 2025 by rpki-client