Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/tMzBjcxL6nao5tp1MqVw5kPHR_g.roa
File: tMzBjcxL6nao5tp1MqVw5kPHR_g.roa (raw, json)
Hash identifier: lBzuZxEou+RCfxJpgZvQglLJPaZ5E1IVM0oov+OWhsE=
Subject key identifier: B4:CC:C1:8D:CC:4B:EA:76:A8:E6:DA:75:32:A5:70:E6:43:C7:47:F8
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 171A
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/tMzBjcxL6nao5tp1MqVw5kPHR_g.roa
Signing time: Wed 12 Feb 2025 01:36:24 +0000
ROA not before: Wed 12 Feb 2025 01:36:24 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 198949
IP address blocks: 210.242.186.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5914 (0x171a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 12 01:36:24 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=B4CCC18DCC4BEA76A8E6DA7532A570E643C747F8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ed:f4:55:1f:38:f4:2c:4e:ec:71:66:68:dc:
8d:a6:92:76:e1:81:7c:99:0d:ef:44:c7:26:79:f3:
b4:9c:b5:3f:48:48:40:a0:92:af:8e:10:63:9e:d8:
52:b7:dd:9d:22:73:ef:76:f0:27:c6:bf:59:3f:de:
0c:58:ff:be:c2:44:95:39:01:83:14:ad:d7:78:ef:
ff:58:94:4b:33:7f:28:f1:ba:10:90:7b:cb:c2:1d:
99:b3:18:66:0e:ed:35:d7:51:4f:a0:b0:33:7f:8e:
95:b0:44:02:72:67:2a:c2:85:ba:2b:eb:40:f1:c0:
53:61:71:2f:7b:ae:83:a2:7e:4c:54:c9:12:54:03:
a8:40:8a:8f:dc:4e:a4:88:b6:01:8f:e5:33:6f:da:
81:f4:4d:2e:e3:62:22:cf:0d:1e:5a:1b:1f:5e:e4:
18:7e:e6:56:a8:f9:1d:26:7b:d7:a5:0a:63:16:09:
83:63:25:d5:7e:3a:0c:8b:0f:4a:76:82:bd:0e:d0:
c2:03:c7:56:75:7e:75:6b:45:77:17:e9:f7:ca:e2:
b1:51:25:44:d4:16:8f:ee:9b:fe:f6:7e:c4:8d:e5:
db:d1:9d:10:18:22:6d:50:fa:23:e9:82:f5:13:a4:
e3:04:66:b9:09:f0:e3:f8:4d:5b:e3:fa:43:c2:bd:
15:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:CC:C1:8D:CC:4B:EA:76:A8:E6:DA:75:32:A5:70:E6:43:C7:47:F8
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/tMzBjcxL6nao5tp1MqVw5kPHR_g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.242.186.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:58:a7:b9:e6:70:b3:b7:b7:2e:3f:73:de:42:4e:f9:f2:52:
62:c5:a7:f6:12:49:a4:29:7d:7e:41:17:c4:d6:60:92:c3:11:
de:32:46:d5:a9:20:fb:03:72:b5:17:ee:d2:55:43:5f:80:ca:
44:dd:34:ec:3d:c8:87:7a:44:1d:29:e7:d3:fd:99:45:01:b6:
58:ce:34:66:34:8e:1b:0b:90:df:5c:a5:48:44:a5:a9:ef:66:
e0:7d:a5:bc:40:d0:64:b7:f0:d2:61:b4:ad:4b:6b:de:09:41:
41:de:26:8a:1d:1d:00:dc:59:20:49:c6:ed:c6:8d:16:89:27:
11:e0:0b:5c:4d:78:7f:d4:b3:33:f9:f0:a2:42:d3:72:c8:d8:
09:e9:31:86:d0:17:f9:e2:6c:62:49:e9:a9:35:cf:81:a2:16:
38:2a:17:bf:6a:47:4f:3b:31:9c:cd:bc:02:40:1e:03:c9:dd:
8b:27:bf:3c:29:64:26:74:27:22:a0:d9:28:54:bf:db:8f:8e:
3e:f6:70:7f:2b:5b:7e:ec:64:cd:5a:10:b0:82:32:c6:5a:85:
f7:71:c8:dd:d6:c3:4a:ba:e9:6e:84:fe:27:c5:3d:48:a2:07:
cd:f8:77:86:0d:f0:76:18:29:d9:88:a1:d1:ef:1c:62:1e:d2:
90:3b:75:62
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICFxowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTIw
MTM2MjRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEI0Q0NDMThEQ0M0QkVB
NzZBOEU2REE3NTMyQTU3MEU2NDNDNzQ3RjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC97fRVHzj0LE7scWZo3I2mknbhgXyZDe9ExyZ587SctT9ISECg
kq+OEGOe2FK33Z0ic+928CfGv1k/3gxY/77CRJU5AYMUrdd47/9YlEszfyjxuhCQ
e8vCHZmzGGYO7TXXUU+gsDN/jpWwRAJyZyrChbor60DxwFNhcS97roOifkxUyRJU
A6hAio/cTqSItgGP5TNv2oH0TS7jYiLPDR5aGx9e5Bh+5lao+R0me9elCmMWCYNj
JdV+OgyLD0p2gr0O0MIDx1Z1fnVrRXcX6ffK4rFRJUTUFo/um/72fsSN5dvRnRAY
Im1Q+iPpgvUTpOMEZrkJ8OP4TVvj+kPCvRVlAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUtMzBjcxL6nao5tp1MqVw5kPHR/gwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC90TXpCamN4TDZuYW81dHAxTXFW
dzVrUEhSX2cucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA0vK6
MA0GCSqGSIb3DQEBCwUAA4IBAQCnWKe55nCzt7cuP3PeQk758lJixaf2EkmkKX1+
QRfE1mCSwxHeMkbVqSD7A3K1F+7SVUNfgMpE3TTsPciHekQdKefT/ZlFAbZYzjRm
NI4bC5DfXKVIRKWp72bgfaW8QNBkt/DSYbStS2veCUFB3iaKHR0A3FkgScbtxo0W
iScR4AtcTXh/1LMz+fCiQtNyyNgJ6TGG0Bf54mxiSempNc+BohY4Khe/akdPOzGc
zbwCQB4Dyd2LJ788KWQmdCcioNkoVL/bj44+9nB/K1t+7GTNWhCwgjLGWoX3ccjd
1sNKuuluhP4nxT1IogfN+HeGDfB2GCnZiKHR7xxiHtKQO3Vi
-----END CERTIFICATE-----
Generated at Mon Apr 7 20:43:01 2025 by rpki-client