Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/8-3XHd6JEtdvx2JN30t39EluhA0.roa
File: 8-3XHd6JEtdvx2JN30t39EluhA0.roa (raw, json)
Hash identifier: usbDtn6TFGhOkSfNJtIBm2fRtHmkzmpwKpYJFJSIG+I=
Subject key identifier: F3:ED:D7:1D:DE:89:12:D7:6F:C7:62:4D:DF:4B:77:F4:49:6E:84:0D
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1481
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/8-3XHd6JEtdvx2JN30t39EluhA0.roa
Signing time: Mon 10 Feb 2025 14:34:59 +0000
ROA not before: Mon 10 Feb 2025 14:34:59 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 142005
IP address blocks: 210.61.107.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5249 (0x1481)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:34:59 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=F3EDD71DDE8912D76FC7624DDF4B77F4496E840D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:ec:cc:03:67:9f:d6:de:36:59:21:48:c8:2a:
77:67:5b:ac:4d:c4:c0:61:e0:fe:6f:31:e0:37:fe:
0a:ca:5c:62:70:08:dc:32:40:70:c5:2b:f5:cb:fe:
67:1a:f2:16:83:c1:6d:b1:d3:a0:9c:e3:19:14:c7:
fb:87:8a:c0:44:b5:e3:65:1c:01:0e:7e:91:18:cf:
4c:6a:ea:53:db:7e:95:61:2a:58:3a:32:ca:80:ac:
a4:ef:b9:1b:b9:8d:21:65:01:e3:18:97:a7:41:04:
06:88:4d:3c:5c:77:24:f1:1d:36:30:e3:9b:69:5f:
c7:01:3b:74:a4:06:08:c2:cd:fd:95:44:ae:b6:08:
4b:1d:3c:d4:40:de:c1:1e:98:b9:37:64:15:4a:2e:
82:68:b8:6a:28:56:f2:8d:35:0a:5b:4b:f4:68:5b:
29:39:6d:52:b5:d1:9a:73:24:fd:57:8f:06:ab:2a:
c3:94:b3:10:2a:1f:4e:6e:c0:f1:48:3a:83:7d:61:
55:78:4b:0f:db:45:8f:04:d3:71:b6:13:6c:02:72:
05:0f:d6:2f:d8:70:f6:0d:57:e3:f4:ef:13:17:e8:
95:0e:27:0e:49:b2:e0:d4:50:92:c9:a1:46:3f:9c:
72:8e:9b:b4:73:7a:19:14:b6:55:4b:70:b8:47:35:
de:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:ED:D7:1D:DE:89:12:D7:6F:C7:62:4D:DF:4B:77:F4:49:6E:84:0D
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/8-3XHd6JEtdvx2JN30t39EluhA0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.61.107.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:48:72:d6:79:1b:4c:e1:e2:65:b7:ed:c5:f3:e9:24:8b:85:
cc:05:aa:c9:82:36:b5:af:97:89:08:0a:ea:dc:77:7e:6b:9f:
de:9d:57:17:b5:8f:b6:95:0f:f0:c4:e0:40:53:9b:3f:61:d6:
b6:2e:96:88:76:16:94:d5:eb:e4:bc:d2:3f:8b:0c:e1:15:27:
34:63:d1:5d:4c:e9:d3:f4:e1:f6:e7:16:dc:f9:14:e3:c4:c3:
9f:eb:a7:36:c7:e8:9e:bf:25:6f:77:2d:c5:ea:4c:05:c7:b5:
7a:55:15:67:20:08:5c:2a:06:dc:77:88:9f:88:2d:78:a7:92:
b6:3d:9d:32:ca:eb:b5:19:08:5b:c2:b2:50:64:83:1d:87:62:
86:d9:6a:28:5a:eb:54:23:a3:ae:92:8d:ec:7e:59:0f:f0:2f:
b7:28:1d:a2:ed:92:c8:75:a1:52:5f:d0:21:a6:a4:72:87:e6:
ee:30:d2:a6:b6:bc:0c:cd:17:41:1b:d1:46:fa:f1:4c:d3:1f:
60:e5:3a:4d:9a:bf:ce:27:d5:7f:bd:e8:50:69:84:22:89:a5:
33:22:7e:24:4e:0f:be:c7:9e:61:7d:5d:d9:7e:6d:be:eb:e9:
ea:9b:81:43:ae:c1:77:11:cf:b8:1d:89:89:3a:dc:fa:61:db:
5e:3c:e6:00
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICFIEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTAx
NDM0NTlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEYzRURENzFEREU4OTEy
RDc2RkM3NjI0RERGNEI3N0Y0NDk2RTg0MEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDy7MwDZ5/W3jZZIUjIKndnW6xNxMBh4P5vMeA3/grKXGJwCNwy
QHDFK/XL/mca8haDwW2x06Cc4xkUx/uHisBEteNlHAEOfpEYz0xq6lPbfpVhKlg6
MsqArKTvuRu5jSFlAeMYl6dBBAaITTxcdyTxHTYw45tpX8cBO3SkBgjCzf2VRK62
CEsdPNRA3sEemLk3ZBVKLoJouGooVvKNNQpbS/RoWyk5bVK10ZpzJP1XjwarKsOU
sxAqH05uwPFIOoN9YVV4Sw/bRY8E03G2E2wCcgUP1i/YcPYNV+P07xMX6JUOJw5J
suDUUJLJoUY/nHKOm7RzehkUtlVLcLhHNd6xAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQU8+3XHd6JEtdvx2JN30t39EluhA0wHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC84LTNYSGQ2SkV0ZHZ4MkpOMzB0
MzlFbHVoQTAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA0j1r
MA0GCSqGSIb3DQEBCwUAA4IBAQANSHLWeRtM4eJlt+3F8+kki4XMBarJgja1r5eJ
CArq3Hd+a5/enVcXtY+2lQ/wxOBAU5s/Yda2LpaIdhaU1evkvNI/iwzhFSc0Y9Fd
TOnT9OH25xbc+RTjxMOf66c2x+ievyVvdy3F6kwFx7V6VRVnIAhcKgbcd4ifiC14
p5K2PZ0yyuu1GQhbwrJQZIMdh2KG2WooWutUI6Ouko3sflkP8C+3KB2i7ZLIdaFS
X9AhpqRyh+buMNKmtrwMzRdBG9FG+vFM0x9g5TpNmr/OJ9V/vehQaYQiiaUzIn4k
Tg++x55hfV3Zfm2+6+nqm4FDrsF3Ec+4HYmJOtz6YdtePOYA
-----END CERTIFICATE-----
Generated at Wed Feb 12 03:38:00 2025 by rpki-client on console.sobornost.net