Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/J0cAomYEiZdBwKyGvwIzoWlnPPE.roa
File: J0cAomYEiZdBwKyGvwIzoWlnPPE.roa (raw, json)
Hash identifier: A+ni+MnO5DTEknoS0dGWIz4ZuFH140Cmv9KVVvUZWm8=
Subject key identifier: 27:47:00:A2:66:04:89:97:41:C0:AC:86:BF:02:33:A1:69:67:3C:F1
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1489
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/J0cAomYEiZdBwKyGvwIzoWlnPPE.roa
Signing time: Mon 10 Feb 2025 14:35:01 +0000
ROA not before: Mon 10 Feb 2025 14:35:01 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17421
IP address blocks: 114.136.0.0/15 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5257 (0x1489)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:35:01 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=274700A26604899741C0AC86BF0233A169673CF1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:b9:d5:ba:b0:37:c4:96:03:35:15:89:82:05:
e6:9d:09:9e:73:c8:ec:91:17:d9:59:c0:fa:1f:9b:
a0:8f:18:bb:55:76:a8:32:c8:86:18:93:c3:d0:1d:
35:35:1a:08:c5:e4:4d:f3:f4:11:f5:c4:20:90:db:
38:31:fb:fa:bd:e6:51:6e:8f:48:38:25:ed:84:af:
30:58:0a:f3:ec:89:78:7a:04:2c:8a:39:ff:34:37:
11:07:78:1e:b3:52:55:48:17:2b:6e:5f:d4:11:66:
4c:19:8d:80:5b:f6:56:97:a7:74:8f:c6:90:e0:a0:
fa:14:b3:df:33:12:1d:13:33:27:85:d9:45:28:54:
58:29:de:37:4c:17:cb:7f:ab:ec:cb:10:df:91:e3:
12:08:bf:9e:a2:17:aa:49:66:a0:d3:8b:24:93:6e:
e3:f4:79:4c:48:d3:8c:f0:61:22:a5:82:d6:45:2f:
33:7d:5a:58:41:b3:24:c9:ce:2f:9f:04:a2:4c:08:
cd:02:59:4f:88:f3:f0:05:2c:b3:4b:e8:7f:e1:19:
d1:96:cb:b5:83:06:96:f4:58:01:50:6a:e5:b7:2e:
17:45:3a:10:c1:4e:a0:d0:7e:7e:41:a4:ca:cf:00:
1b:0a:a6:5d:ac:f2:23:e3:35:2f:25:d2:f9:d2:15:
72:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:47:00:A2:66:04:89:97:41:C0:AC:86:BF:02:33:A1:69:67:3C:F1
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/J0cAomYEiZdBwKyGvwIzoWlnPPE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
114.136.0.0/15
Signature Algorithm: sha256WithRSAEncryption
39:c1:fc:b3:94:51:97:79:fc:6e:7e:b8:ea:62:ec:69:9f:30:
e0:36:5e:b9:0a:16:4a:a3:fb:16:fc:25:9c:f5:cb:4c:46:7f:
aa:cc:83:ee:eb:90:8f:f6:61:8a:b6:1b:f8:f7:58:20:f6:a6:
f9:bf:26:35:b3:87:ac:36:20:ca:7f:f1:d1:c7:05:e3:0f:2d:
3c:60:77:2f:a4:46:a6:72:46:26:46:5b:2e:9a:34:09:ac:81:
3f:76:74:c8:4a:ce:7c:7f:6e:b6:f0:0a:62:da:44:64:e4:3b:
dc:57:4f:0d:44:64:ae:60:7d:f6:14:22:3e:c8:22:2a:58:69:
68:2d:18:4b:db:60:2c:4b:d4:1c:7b:0a:be:31:ce:c6:a8:56:
f4:44:3e:2c:ad:9b:99:07:14:20:58:4a:2c:97:17:02:71:9b:
84:f8:d2:21:38:30:09:06:47:92:f3:25:24:64:67:7d:3f:7c:
06:b8:d7:ac:51:5d:d1:5b:79:81:33:fb:b9:39:77:4e:71:78:
96:32:32:18:68:f2:8a:e6:56:31:3d:37:ff:e2:00:4a:db:60:
fc:6e:4a:03:44:e1:00:66:b6:fb:35:b8:2c:ba:f3:d4:43:f0:
bd:54:24:ac:23:ae:72:44:ae:0c:db:04:c1:6b:5f:79:59:0d:
a2:12:07:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 12 03:38:01 2025 by rpki-client on console.sobornost.net