Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/xWlHPkfrAZMzNH3ph-uIUFn3ZDk.roa
File: xWlHPkfrAZMzNH3ph-uIUFn3ZDk.roa (raw, json)
Hash identifier: /up818rdSysSgPQUgPy6n87EQ3uaN0pATqexgXQDPdM=
Subject key identifier: C5:69:47:3E:47:EB:01:93:33:34:7D:E9:87:EB:88:50:59:F7:64:39
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1783
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xWlHPkfrAZMzNH3ph-uIUFn3ZDk.roa
Signing time: Wed 12 Feb 2025 01:36:46 +0000
ROA not before: Wed 12 Feb 2025 01:36:46 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 211.21.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6019 (0x1783)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 12 01:36:46 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=C569473E47EB019333347DE987EB885059F76439
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:bb:f2:46:e3:3a:74:8e:30:a2:2b:3a:74:8b:
b0:43:94:51:a3:43:1a:1b:77:21:4d:ab:20:e0:b0:
a6:3d:1f:7b:76:64:6f:ec:d9:58:98:d5:6b:60:dc:
a6:07:76:b6:b9:08:92:be:e9:d9:c7:6a:66:72:5a:
5c:a4:10:4c:de:eb:f2:a1:35:45:d3:1f:9a:2c:56:
93:37:c0:be:54:fc:f4:45:38:28:1e:ee:7c:34:4f:
7d:3b:81:a4:49:a4:52:f4:da:a7:a4:7e:5a:21:d2:
09:e7:33:6c:e9:72:1d:97:b6:40:de:e9:d8:0e:94:
95:34:6d:73:03:f8:2e:8c:26:eb:14:71:4c:ad:70:
cf:01:9a:ad:8e:6b:15:8e:2f:d3:2e:d6:4a:62:17:
7b:38:ca:38:a3:7e:33:ab:8f:3b:b2:18:79:58:e8:
df:5b:b1:7c:47:f6:9f:d9:a2:ae:e0:e1:de:89:be:
54:fc:92:28:a0:b6:37:8a:72:fb:74:20:be:f7:84:
bc:73:07:a1:56:df:3f:b1:f2:b9:7e:75:b0:70:c5:
6f:67:2a:e6:a1:20:48:23:53:4a:39:8d:02:94:3a:
45:79:02:5a:b3:72:7d:53:79:d7:a7:b7:4b:36:f4:
4e:e4:04:eb:ea:64:1c:39:0d:1b:3a:a9:33:71:9e:
07:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:69:47:3E:47:EB:01:93:33:34:7D:E9:87:EB:88:50:59:F7:64:39
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xWlHPkfrAZMzNH3ph-uIUFn3ZDk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.21.0.0/16
Signature Algorithm: sha256WithRSAEncryption
6e:73:f6:fb:a4:f5:c7:b4:76:a8:66:35:33:98:e9:77:28:4f:
41:24:4d:c1:1f:f3:31:6b:3f:55:43:7e:de:2f:06:01:a3:7f:
da:63:1a:f7:d7:8e:37:ab:5e:24:44:42:80:e8:fc:4b:9c:be:
f1:cb:00:6f:45:de:f4:29:dd:48:3f:f6:50:36:1e:a8:e1:00:
b8:03:9a:7c:74:3a:88:6b:51:06:dc:ce:75:f7:c0:81:4d:bc:
75:be:39:3e:30:cf:a3:a9:5c:fd:a2:f1:89:8a:9f:f4:86:7b:
6d:a3:d1:af:07:ea:1c:63:32:be:9c:38:4e:e1:b1:0c:f0:8e:
db:79:57:78:b5:fb:3a:e2:82:34:8b:20:cd:03:20:f7:b0:e9:
68:0f:6f:30:aa:ee:f3:10:1f:cd:d1:94:c5:e4:8c:66:13:c2:
3e:e7:bc:cf:af:22:44:2c:3e:b3:02:b6:ae:6c:43:fc:7d:4c:
11:81:d8:d8:61:86:82:15:9c:01:09:57:3d:98:5d:f5:7d:c5:
1e:2d:70:f7:57:35:f2:8b:ec:d9:f9:54:27:e8:68:17:f3:4d:
c3:de:0b:5c:80:d3:52:ae:3f:88:ff:d2:68:5b:22:33:44:c0:
09:0b:75:fe:d3:0f:fb:a0:d3:80:3a:eb:78:49:5c:ba:c1:e7:
27:d7:71:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 02:05:24 2025 by rpki-client