Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/w1PhIUK5pEIvbDRMCjQym-IfZxc.roa
File: w1PhIUK5pEIvbDRMCjQym-IfZxc.roa (raw, json)
Hash identifier: vFjMrlqksoKA/WcG68YGO1S/Z5z3jFmy5pFJY8nBMyM=
Subject key identifier: C3:53:E1:21:42:B9:A4:42:2F:6C:34:4C:0A:34:32:9B:E2:1F:67:17
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 176E
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/w1PhIUK5pEIvbDRMCjQym-IfZxc.roa
Signing time: Wed 12 Feb 2025 01:36:42 +0000
ROA not before: Wed 12 Feb 2025 01:36:42 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 10126
IP address blocks: 114.30.32.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5998 (0x176e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 12 01:36:42 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=C353E12142B9A4422F6C344C0A34329BE21F6717
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:96:30:c2:e7:10:51:98:e4:71:0b:c5:02:93:
67:56:b9:59:f6:96:57:6e:4a:8e:6a:39:af:b5:0c:
6a:c5:f7:d5:1e:72:dd:12:26:29:3e:e1:04:49:c6:
c1:df:29:e4:93:a8:ae:d0:48:cd:fc:a1:28:52:be:
81:5b:f9:5b:7a:10:31:de:cf:38:c2:4d:d8:f9:49:
0f:c5:5a:a4:72:b2:1e:f4:22:97:b1:a7:6b:50:eb:
b3:d8:da:4c:57:2a:c0:53:3e:13:33:4c:2d:35:30:
0c:bf:75:78:57:8f:de:73:c1:13:d9:c1:5b:46:28:
08:b3:8e:0d:7a:a1:e0:de:16:96:0f:94:77:09:a8:
00:5d:53:e1:a5:e0:01:38:2d:8e:e2:7d:61:78:ef:
f3:f8:15:8b:50:2c:b9:17:f3:2f:c0:ab:55:ef:80:
ad:ca:d2:c5:46:e4:c3:76:da:82:5e:52:cc:5b:4a:
e1:78:31:66:17:1a:3f:6c:84:2c:68:1d:35:ac:f2:
c9:42:ea:ac:e8:71:af:f2:7a:53:4d:53:30:d7:64:
a1:2a:8d:65:fb:81:b3:d7:9b:38:00:21:6d:9e:d1:
6c:c2:6e:af:da:42:e6:87:1a:b7:73:b4:69:15:c7:
d2:8e:d2:1d:a7:33:b5:24:bb:45:01:de:8c:18:2a:
c3:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:53:E1:21:42:B9:A4:42:2F:6C:34:4C:0A:34:32:9B:E2:1F:67:17
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/w1PhIUK5pEIvbDRMCjQym-IfZxc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
114.30.32.0/20
Signature Algorithm: sha256WithRSAEncryption
8b:4a:4c:bf:c2:10:ce:ef:5e:b9:d9:4c:85:a1:8a:2d:5e:06:
2c:2e:59:b7:6b:f2:73:19:ec:03:8d:42:d5:61:26:cd:e3:59:
7c:14:25:23:0e:d8:33:ba:9d:99:35:7b:de:bc:f8:9d:e4:ae:
96:2d:ea:01:c4:78:51:d1:88:92:ab:60:ae:83:49:c2:fa:c3:
96:09:44:c4:35:37:2a:29:37:1f:78:a6:6f:0f:01:45:04:0e:
d5:9d:ca:ab:bb:fb:d2:03:31:6f:8a:35:a1:ce:65:02:93:ea:
a6:ff:83:dd:f2:90:92:35:37:22:ae:00:9b:9d:bf:5f:ce:3a:
91:44:94:63:e5:45:27:30:0c:d8:79:7b:1a:1d:ae:af:42:b3:
8e:36:89:3a:1a:f8:65:af:0b:52:b3:e3:b5:af:e3:5d:7e:f5:
d9:a0:4d:36:11:df:41:94:5d:26:ce:9e:c5:df:a0:47:01:d2:
9a:93:a1:3d:5e:65:98:3f:ed:b5:ef:98:20:24:fe:21:42:de:
6d:0a:6d:6e:39:c5:f2:58:a1:e9:8c:3d:d1:ad:24:b8:b5:b8:
c6:4d:9e:2f:74:4c:17:42:b7:e6:cc:00:b4:57:b4:b3:b0:87:
42:16:75:3d:98:35:d9:b3:4f:b5:1f:ca:6b:d1:cd:a2:6c:0f:
e7:b7:d1:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 17:47:22 2025 by rpki-client