Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/tVnp7KD5bkiLVSgCFqQh_i9VRQg.roa
File: tVnp7KD5bkiLVSgCFqQh_i9VRQg.roa (raw, json)
Hash identifier: Js7KDVROzJhuomhV0M82phufxwR9fxe0V8Awe/wpTns=
Subject key identifier: B5:59:E9:EC:A0:F9:6E:48:8B:55:28:02:16:A4:21:FE:2F:55:45:08
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 179D
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/tVnp7KD5bkiLVSgCFqQh_i9VRQg.roa
Signing time: Wed 12 Feb 2025 01:36:53 +0000
ROA not before: Wed 12 Feb 2025 01:36:53 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17714
IP address blocks: 175.111.255.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6045 (0x179d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 12 01:36:53 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=B559E9ECA0F96E488B55280216A421FE2F554508
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:93:3a:15:da:f1:3e:e7:8f:6d:f4:c2:c3:f4:
61:bd:df:f1:f4:b9:b7:3e:48:05:f0:0d:b9:58:6e:
c8:57:49:4f:2d:a1:c2:52:b1:46:a8:39:eb:af:b7:
75:6b:c7:44:11:e5:6d:0a:bd:7f:62:35:a4:4a:8f:
89:6f:81:10:5c:5c:dd:8a:ad:b2:c7:b7:84:0f:5d:
9e:cf:22:6a:bc:ef:ea:35:28:bb:b6:e5:69:5f:08:
8a:f8:da:fa:22:13:cd:3f:fc:4e:ea:eb:4e:46:ff:
46:5d:88:c3:6c:d7:f7:85:a1:a2:1a:f2:92:60:74:
8c:b4:66:8f:2d:90:86:66:e5:a1:a7:65:a7:25:5a:
8c:87:f7:5b:2a:9f:71:e8:19:e3:4b:43:df:41:58:
dd:d8:f3:2c:59:2a:b7:0c:a5:70:05:80:64:ec:eb:
2e:14:c9:e6:b0:91:ec:b8:0f:95:26:cd:74:e3:0e:
cf:42:be:e1:ac:2a:b2:cc:02:51:7c:11:15:1c:39:
8e:4e:1d:5e:7e:c5:9a:a3:7f:46:82:37:66:c2:f6:
b1:bd:36:f5:f6:67:00:2a:70:f1:4f:fe:aa:5f:11:
d1:35:be:4d:1f:92:b4:7f:bb:d7:8f:9c:e1:38:76:
e9:4a:74:fe:1b:9d:ef:d2:34:cf:01:ef:81:2a:1f:
f3:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:59:E9:EC:A0:F9:6E:48:8B:55:28:02:16:A4:21:FE:2F:55:45:08
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/tVnp7KD5bkiLVSgCFqQh_i9VRQg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.111.255.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:67:12:20:23:f0:d0:9f:41:fd:a8:da:aa:3e:35:77:3c:0c:
95:a7:1a:1c:bb:e3:a8:5a:2a:86:04:7c:46:73:af:7a:a4:13:
e9:31:0d:8e:7d:1a:80:64:47:2a:0a:36:88:7f:cf:b3:59:5a:
a2:63:99:8a:39:9b:a9:72:61:e5:65:f8:c2:02:d3:00:e7:42:
ab:c9:96:91:09:90:c0:f6:fe:b8:1a:fb:5e:a6:23:05:93:ab:
0b:11:af:8e:b0:73:8f:f7:89:2c:1e:ad:3f:22:db:80:4c:d9:
90:23:f9:94:e8:ef:23:4c:6d:24:33:7c:7a:74:ad:91:66:4b:
13:2d:8e:1b:07:7e:53:87:e3:40:c2:c0:64:0c:ef:09:da:1b:
f8:b2:81:f7:c7:ac:46:58:a6:d1:a4:bb:73:54:3d:81:b4:be:
a6:aa:88:a6:30:af:11:b1:dd:9f:d9:b9:28:c5:c8:a5:4d:6e:
5a:7d:49:c4:d1:1c:2b:30:14:1a:8d:9b:f2:dc:a0:78:44:bb:
a4:36:f5:91:d6:03:70:e4:1d:3d:42:e6:42:18:66:a5:65:02:
bd:7d:05:ae:dd:2e:3b:47:3a:2c:58:f2:9c:09:9a:45:6c:86:
b0:0c:d6:a1:87:26:a0:f7:97:00:e4:a2:eb:58:34:b2:d3:57:
19:e5:8f:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 14:00:41 2025 by rpki-client