Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/5403mmPrvyLEHqL8g5hobmurz2o.roa
File: 5403mmPrvyLEHqL8g5hobmurz2o.roa (raw, json)
Hash identifier: ey2BHcZDCty8koTrv8KQiUe/LAX5l3l9BqFly+pvg4w=
Subject key identifier: E7:8D:37:9A:63:EB:BF:22:C4:1E:A2:FC:83:98:68:6E:6B:AB:CF:6A
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1498
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/5403mmPrvyLEHqL8g5hobmurz2o.roa
Signing time: Mon 10 Feb 2025 14:35:04 +0000
ROA not before: Mon 10 Feb 2025 14:35:04 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 218.164.0.0/15 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5272 (0x1498)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:35:04 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=E78D379A63EBBF22C41EA2FC8398686E6BABCF6A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:79:a6:9d:06:b3:c8:7a:60:02:bd:a9:a5:51:
19:81:d4:fc:ab:63:d2:fa:bc:8e:7a:4d:0c:9c:56:
f3:ff:5f:23:3f:a2:a2:66:41:1b:ca:7d:4c:d8:45:
99:4d:c5:2f:5a:f1:5f:7c:ab:ee:83:a5:f9:f5:a3:
d8:ce:af:80:fb:92:f8:8b:c4:3c:f4:e9:11:13:1f:
7a:95:1f:bb:95:70:73:cf:18:84:74:c7:54:32:79:
34:32:58:62:a4:f5:c2:dc:7a:09:73:f7:0d:53:77:
84:90:71:1c:7b:a5:1e:cf:d7:f6:5f:78:9c:f5:5c:
a1:42:6a:f0:a6:6e:ef:7e:bb:5b:f1:90:1d:68:17:
e8:1e:3d:6b:5e:14:72:d4:d0:de:01:61:0f:a6:4c:
1d:dc:56:e3:0a:1e:d5:5f:02:08:e6:38:8c:e7:d7:
20:27:ec:24:30:da:d6:b5:73:f7:93:1d:ea:60:20:
a0:74:07:fb:45:bf:0f:46:1a:04:b9:e1:40:58:01:
02:32:d6:29:db:06:31:8a:10:8d:84:f0:1a:15:d8:
51:75:73:50:92:14:42:72:3d:4a:66:f9:32:cb:0e:
5a:0b:df:07:82:95:b3:d3:5d:12:31:d3:9b:f0:46:
b1:b4:28:af:43:c5:d3:96:f8:b1:7b:3e:e4:7a:90:
bb:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:8D:37:9A:63:EB:BF:22:C4:1E:A2:FC:83:98:68:6E:6B:AB:CF:6A
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/5403mmPrvyLEHqL8g5hobmurz2o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.164.0.0/15
Signature Algorithm: sha256WithRSAEncryption
36:ad:dc:5d:9e:8a:57:15:9c:5a:ac:a5:9b:cd:21:74:fa:cc:
c2:73:3c:1d:23:34:5d:13:a3:fd:c1:f9:b5:a9:4a:3d:d2:ca:
eb:54:29:50:4f:70:ed:e1:87:bc:e8:02:de:89:d2:ab:9f:3e:
1f:06:e0:33:1a:54:5c:a7:e8:c1:22:9e:34:e6:28:78:23:9b:
8d:8b:54:ea:0d:22:74:b0:c3:09:5b:11:0a:79:46:6a:22:2e:
55:bb:f5:94:22:84:38:fa:f9:7e:03:32:9e:57:2b:bd:2c:76:
c8:b5:70:2d:30:ed:97:f1:84:f7:d8:ea:5e:e2:7a:f5:4e:12:
b2:09:43:5b:1c:b3:6a:7c:f2:1a:78:87:bb:ce:ec:b4:f6:82:
d7:5f:3c:7d:40:71:8f:ac:d0:c9:2e:de:e4:c3:0d:32:aa:62:
cf:07:78:55:73:8b:19:0f:76:b8:83:83:55:64:84:e4:90:3a:
09:df:39:fc:fb:dd:0d:35:43:a4:58:3e:0b:d4:b1:cd:fd:bb:
15:08:d6:e2:3d:5e:64:36:bf:b4:35:e1:78:1e:d4:44:96:cc:
f4:9c:f6:ff:60:fc:c7:96:16:2e:64:6b:f0:27:51:bd:b4:12:
2c:9b:8e:bb:e3:a5:91:2b:08:d7:d0:04:1c:1c:4b:3c:7d:35:
13:e8:c4:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 12 03:38:00 2025 by rpki-client on console.sobornost.net