Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/wYgoNi6vWp9P6HYV_4XqOxanR0k.roa
File: wYgoNi6vWp9P6HYV_4XqOxanR0k.roa (raw, json)
Hash identifier: wy6igL9h0KJtrOtN99TrOk+nBI8HZ/dBMS8mFUQK2l8=
Subject key identifier: C1:88:28:36:2E:AF:5A:9F:4F:E8:76:15:FF:85:EA:3B:16:A7:47:49
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 176B
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/wYgoNi6vWp9P6HYV_4XqOxanR0k.roa
Signing time: Wed 12 Feb 2025 01:36:41 +0000
ROA not before: Wed 12 Feb 2025 01:36:41 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 33717
IP address blocks: 220.128.51.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5995 (0x176b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 12 01:36:41 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=C18828362EAF5A9F4FE87615FF85EA3B16A74749
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:4f:04:f4:12:30:27:17:78:2d:85:ba:d8:de:
a0:2d:03:4b:4d:54:89:b8:30:99:17:13:94:5e:4d:
ca:e1:d8:aa:41:4b:77:2c:77:e8:68:d7:f6:71:da:
31:a8:38:e3:eb:ca:8b:d6:31:ec:1f:4f:6d:36:78:
0f:5b:fc:fa:4d:92:15:d9:21:6e:82:9b:b4:69:85:
40:4a:d7:d4:37:15:2e:aa:30:47:58:e4:87:fe:e8:
a8:b3:87:74:08:75:a9:c7:c6:7b:88:2b:7d:03:f1:
13:9d:31:b4:5b:92:23:1f:6c:d0:ff:c8:da:c9:04:
12:02:31:2f:c6:44:01:3e:87:f6:14:39:d0:88:3d:
65:0a:3b:2a:2c:30:2a:a9:d1:8c:61:3c:69:08:cf:
9e:39:73:87:29:db:e8:b1:fa:a7:9a:01:1b:ff:33:
16:a3:0a:a5:16:73:f5:66:1f:02:6a:b3:a2:ea:3c:
6e:77:58:fe:a2:e5:36:07:97:e8:79:bf:29:cb:02:
30:b8:31:ee:e8:b6:f9:41:10:7c:2d:41:f2:f6:9b:
42:cc:a6:01:b3:eb:4c:4c:54:4d:c1:5f:73:41:ff:
93:7a:56:62:f1:22:c6:f3:6c:9c:dc:b1:16:35:5b:
13:b0:85:6b:49:16:33:f9:43:0e:5c:12:64:c4:3f:
0b:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:88:28:36:2E:AF:5A:9F:4F:E8:76:15:FF:85:EA:3B:16:A7:47:49
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/wYgoNi6vWp9P6HYV_4XqOxanR0k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.128.51.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:52:18:6f:78:5a:f6:4c:d7:9e:7a:bc:b3:9a:8e:fd:4d:3b:
74:0f:31:53:77:a9:ec:4a:6a:a1:b8:4b:22:54:b4:fe:f5:32:
1a:27:e2:40:86:9c:b1:9f:7e:bc:b7:bd:51:d9:84:9e:30:32:
e2:72:ad:b3:6c:69:20:82:93:89:38:39:0e:4d:49:08:0d:c6:
54:77:fa:58:55:41:37:e7:5c:15:a5:33:a1:00:e1:18:92:c8:
91:9b:b1:d9:ba:95:b9:aa:01:04:f8:41:b3:37:73:8c:8e:2a:
e3:20:c3:61:8e:d2:f8:13:49:39:c7:cd:65:81:3d:cb:99:bb:
66:aa:00:88:db:ce:39:5b:e1:7c:04:6c:9b:e8:95:f9:bf:28:
b2:57:7f:8b:47:e0:98:bd:3d:ea:e6:20:2d:8a:bd:84:2e:20:
c7:fc:e4:9b:aa:a0:ba:69:92:a1:92:ff:02:f1:95:0b:3c:48:
40:d1:09:2f:4e:d7:5a:50:5d:97:83:48:08:6f:e6:24:3a:75:
fa:03:b1:01:f6:74:8a:79:c9:51:e3:bc:48:e7:1e:51:6a:cc:
48:ad:89:b6:b7:22:0e:67:f0:2a:ea:f9:65:99:92:2b:8c:80:
43:72:2d:a9:b1:6d:65:b6:b7:25:83:cc:e2:72:eb:8b:ba:b2:
4f:40:44:be
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICF2swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTIw
MTM2NDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEMxODgyODM2MkVBRjVB
OUY0RkU4NzYxNUZGODVFQTNCMTZBNzQ3NDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDNTwT0EjAnF3gthbrY3qAtA0tNVIm4MJkXE5ReTcrh2KpBS3cs
d+ho1/Zx2jGoOOPryovWMewfT202eA9b/PpNkhXZIW6Cm7RphUBK19Q3FS6qMEdY
5If+6Kizh3QIdanHxnuIK30D8ROdMbRbkiMfbND/yNrJBBICMS/GRAE+h/YUOdCI
PWUKOyosMCqp0YxhPGkIz545c4cp2+ix+qeaARv/MxajCqUWc/VmHwJqs6LqPG53
WP6i5TYHl+h5vynLAjC4Me7otvlBEHwtQfL2m0LMpgGz60xMVE3BX3NB/5N6VmLx
IsbzbJzcsRY1WxOwhWtJFjP5Qw5cEmTEPwsFAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUwYgoNi6vWp9P6HYV/4XqOxanR0kwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC93WWdvTmk2dldwOVA2SFlWXzRY
cU94YW5SMGsucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA3IAz
MA0GCSqGSIb3DQEBCwUAA4IBAQAPUhhveFr2TNeeeryzmo79TTt0DzFTd6nsSmqh
uEsiVLT+9TIaJ+JAhpyxn368t71R2YSeMDLicq2zbGkggpOJODkOTUkIDcZUd/pY
VUE351wVpTOhAOEYksiRm7HZupW5qgEE+EGzN3OMjirjIMNhjtL4E0k5x81lgT3L
mbtmqgCI2845W+F8BGyb6JX5vyiyV3+LR+CYvT3q5iAtir2ELiDH/OSbqqC6aZKh
kv8C8ZULPEhA0QkvTtdaUF2Xg0gIb+YkOnX6A7EB9nSKeclR47xI5x5RasxIrYm2
tyIOZ/Aq6vllmZIrjIBDci2psW1ltrclg8zicuuLurJPQES+
-----END CERTIFICATE-----
Generated at Mon Apr 7 17:49:57 2025 by rpki-client