Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/x75L6ee1bfS1Xcyg7tlnAD7o_M0.roa
File: x75L6ee1bfS1Xcyg7tlnAD7o_M0.roa (raw, json)
Hash identifier: 8QTL5ydb0cT81vpgYt18VXYKuLYuO0dAFJOtbN2dG9I=
Subject key identifier: C7:BE:4B:E9:E7:B5:6D:F4:B5:5D:CC:A0:EE:D9:67:00:3E:E8:FC:CD
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1719
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/x75L6ee1bfS1Xcyg7tlnAD7o_M0.roa
Signing time: Wed 12 Feb 2025 01:36:24 +0000
ROA not before: Wed 12 Feb 2025 01:36:24 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 203.66.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5913 (0x1719)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 12 01:36:24 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=C7BE4BE9E7B56DF4B55DCCA0EED967003EE8FCCD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:61:18:36:e9:5b:b2:52:07:43:8c:db:63:e4:
2d:ae:d2:50:aa:97:32:94:26:8b:f4:5d:eb:6f:0b:
d9:39:03:6a:c5:da:32:9d:f5:a4:5e:f5:07:1a:af:
6f:93:d5:23:6a:3f:e8:fc:d4:41:cb:6e:66:c3:44:
41:62:ed:d9:18:a4:f2:2f:6d:3b:80:16:e7:20:9f:
a4:12:0c:19:37:80:22:3f:f6:95:6c:b6:c0:c3:95:
3a:f3:56:70:61:4b:4f:e0:bf:c5:d8:08:63:c3:6f:
0a:93:c4:02:a5:50:99:bb:3e:9e:90:74:f1:33:72:
d9:4f:bd:72:1d:24:4d:47:4d:a4:14:05:b6:e1:c4:
45:c3:74:df:a5:14:46:e5:3c:95:5a:a3:64:74:cf:
32:18:74:6b:63:75:50:ec:65:94:93:da:81:c2:93:
c1:d3:7b:14:81:5f:b0:f1:9a:4b:0d:e0:44:2c:3d:
ab:39:9d:54:11:3c:d8:5f:9e:e0:bd:84:4a:0d:f1:
18:f9:ec:39:ee:64:25:88:9b:4c:c9:89:74:8e:1d:
15:46:86:22:c9:55:8b:d0:b4:be:dd:69:33:32:b9:
82:8c:7a:ca:d9:d4:92:71:7b:5d:75:bf:2f:35:9b:
ac:ec:b7:1e:a8:0e:1c:48:9b:6b:5c:7e:bb:0e:84:
e5:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:BE:4B:E9:E7:B5:6D:F4:B5:5D:CC:A0:EE:D9:67:00:3E:E8:FC:CD
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/x75L6ee1bfS1Xcyg7tlnAD7o_M0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.66.0.0/16
Signature Algorithm: sha256WithRSAEncryption
cb:84:d7:95:5d:2f:0b:2a:84:2f:9f:1f:bb:7b:df:f1:16:c5:
22:42:4d:a6:82:f2:a5:f9:22:46:ae:c5:6d:19:1c:76:89:7c:
c7:d1:ed:f4:59:7c:3c:28:b4:0f:61:30:27:bd:2f:f4:7f:b2:
fa:79:a1:91:47:6a:58:7a:08:ef:95:62:89:21:b0:f5:3c:07:
ab:fa:1b:84:6a:e5:cd:08:cc:06:4e:22:a4:76:19:75:e6:5b:
24:df:b7:84:e1:39:29:ca:30:10:0b:49:e9:a2:21:73:d2:c1:
55:44:dc:b5:ef:86:e2:fe:89:a1:9d:de:4b:6f:62:40:4b:b6:
21:96:76:be:08:f2:58:f5:45:77:8a:6e:93:1e:bc:be:f6:73:
94:ae:e4:ba:1f:6d:e8:4c:d3:ac:e5:34:a2:a7:83:f2:67:43:
5a:a5:0d:4f:cc:8c:62:52:35:75:1e:22:9b:58:35:21:66:8e:
0a:fa:03:95:45:0b:9a:93:af:7b:00:5f:42:79:3f:92:bb:4a:
a4:9a:96:dc:cd:60:f6:a7:b5:cb:66:4e:b9:e2:c1:9a:8c:b5:
07:d3:80:86:3c:d8:11:5f:54:66:cd:9e:ae:59:68:d7:4c:08:
b5:9b:87:94:f7:ee:43:66:a3:c8:ed:1c:2e:4d:38:06:f6:61:
1b:f4:e6:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 01:55:38 2025 by rpki-client