Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/trYdktnML0IkE-bworXXnqtgJ78.roa
File: trYdktnML0IkE-bworXXnqtgJ78.roa (raw, json)
Hash identifier: j6W1bH47VNylbminrgsyTMp0RVe7MpTEJSR85r2RtSI=
Subject key identifier: B6:B6:1D:92:D9:CC:2F:42:24:13:E6:F0:A2:B5:D7:9E:AB:60:27:BF
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 17A4
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/trYdktnML0IkE-bworXXnqtgJ78.roa
Signing time: Wed 12 Feb 2025 01:36:55 +0000
ROA not before: Wed 12 Feb 2025 01:36:55 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17714
IP address blocks: 203.78.190.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6052 (0x17a4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 12 01:36:55 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=B6B61D92D9CC2F422413E6F0A2B5D79EAB6027BF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:18:62:4a:0b:f0:80:36:94:d7:d5:be:62:b1:
ee:20:dc:0a:46:1d:f2:f4:7d:43:2e:92:fd:82:9f:
a4:6a:9c:2c:31:34:da:d3:b7:e5:70:36:be:61:96:
4f:53:57:cc:b7:ce:95:4b:1f:c8:b0:d4:9b:2d:ff:
3f:8c:bb:c7:de:e1:86:38:3e:51:f9:c9:a3:2c:cf:
d1:31:38:76:8e:c5:5c:3c:b6:8d:c7:d2:79:3b:67:
b3:95:46:4b:1f:dc:eb:11:b1:6a:53:e8:97:67:fe:
13:d5:36:3d:4b:b5:16:29:cb:ed:3b:bc:24:93:6c:
22:d1:9e:2f:e1:64:a2:e1:16:f6:1e:cf:82:37:7b:
62:c6:2d:26:d7:ba:8f:d2:03:f3:c0:5d:b3:60:78:
ea:6d:b5:10:cd:b2:57:21:52:93:31:9d:ed:7a:64:
d7:cd:94:9c:fd:81:c4:44:ba:0c:ca:18:b8:32:7f:
1e:bb:da:8c:8d:b6:56:46:a7:bf:20:21:70:df:9d:
d6:92:f5:fb:f6:56:a9:ec:f9:5d:45:9c:aa:b0:1e:
5c:d0:80:67:80:5b:94:1a:81:18:6c:a9:4b:4b:ac:
a6:77:2f:c5:09:8a:1b:7c:a4:24:dd:d3:5d:e9:91:
05:7f:e3:87:a6:9a:5a:16:aa:97:2f:1f:bc:d6:53:
72:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:B6:1D:92:D9:CC:2F:42:24:13:E6:F0:A2:B5:D7:9E:AB:60:27:BF
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/trYdktnML0IkE-bworXXnqtgJ78.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.78.190.0/24
Signature Algorithm: sha256WithRSAEncryption
78:9c:73:c0:e0:f6:bb:bf:0c:c1:18:3d:86:94:cb:9a:d1:35:
dd:02:df:fd:6e:88:0d:44:07:98:8c:60:21:f7:76:58:e5:34:
77:33:ba:78:57:20:e0:72:8d:41:db:64:cd:03:0c:ce:ee:5c:
2e:f1:8d:57:e8:b0:59:90:5f:89:82:31:d3:a9:9a:98:6e:52:
58:60:fb:5b:ce:d1:08:c1:25:0e:ad:97:87:5b:ee:75:80:24:
73:7f:c2:47:d0:96:3d:e4:50:fe:16:24:bc:4a:35:ae:41:38:
54:3d:7c:15:16:ed:0d:9d:1e:74:a8:16:c3:c2:2b:ac:ca:d6:
f4:2d:da:c4:db:e8:51:b4:0c:11:d8:29:9f:2e:6b:12:ab:18:
94:dd:e2:0b:18:d1:d1:b8:be:5d:b4:9f:db:bf:0d:54:af:23:
bc:71:8b:8d:59:2d:aa:de:40:fb:c0:49:2f:92:a0:8e:24:8c:
ea:6b:3c:70:c2:95:38:26:82:46:de:8b:ac:0b:63:69:62:e2:
54:35:a4:6e:31:8a:c0:68:b8:ad:63:6c:be:f6:e8:5d:ef:06:
f5:dd:98:a3:28:12:84:e6:26:87:df:7b:ad:1d:23:ee:e3:49:
64:ea:68:5d:c1:b1:ee:08:25:72:30:3f:0d:cc:de:70:7b:c6:
84:e5:ed:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 17:45:47 2025 by rpki-client