Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/W250H1W09ZBhBulfcBgU8xmsm7w.roa
File: W250H1W09ZBhBulfcBgU8xmsm7w.roa (raw, json)
Hash identifier: N/hjmk6nFomtd+1+YQ1WjO9jRh9DU1bzGbgzoqL8SE0=
Subject key identifier: 5B:6E:74:1F:55:B4:F5:90:61:06:E9:5F:70:18:14:F3:19:AC:9B:BC
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 14AD
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/W250H1W09ZBhBulfcBgU8xmsm7w.roa
Signing time: Mon 10 Feb 2025 14:35:10 +0000
ROA not before: Mon 10 Feb 2025 14:35:10 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9680
IP address blocks: 2001:b000:91::/48 maxlen: 64
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5293 (0x14ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:35:10 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=5B6E741F55B4F5906106E95F701814F319AC9BBC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:44:c0:57:63:d0:51:43:c8:14:d4:95:d0:65:
9b:ea:d4:e3:f9:34:1b:4e:af:9c:61:81:91:2d:09:
02:d7:1f:31:f5:65:ec:9f:58:68:83:55:ed:39:1a:
b1:aa:1f:a2:c5:da:56:cb:46:4b:34:26:d0:55:f3:
b3:c2:2f:c2:52:97:9a:3f:28:ac:fe:cd:85:46:42:
04:79:8c:8d:9e:0e:11:c3:e8:01:a7:1d:f3:6b:9c:
51:2a:a4:34:c9:4f:26:15:f1:73:75:b9:fc:d8:e0:
7f:5b:eb:d8:1d:35:d7:9b:92:ad:49:66:2f:fa:3e:
2b:1b:5b:ac:4b:ee:ae:03:dc:e3:fd:0e:2e:35:9e:
fe:bc:cb:4b:7e:3b:5c:c9:ba:27:6e:32:0a:1a:c6:
0f:b8:90:c7:c7:7d:3a:9e:64:da:d8:49:bf:76:60:
83:38:aa:7c:66:a1:7b:d5:fe:45:3f:e4:a8:fd:68:
1e:9a:b9:b1:3a:6a:7c:6f:85:b0:9a:90:f5:65:4c:
43:2b:a4:9e:c6:1d:02:b5:07:15:3c:9c:a5:44:25:
84:ee:a3:96:a6:0c:73:86:46:1c:ef:48:81:6b:2e:
74:f6:80:a5:d5:94:60:5a:d2:5c:2b:a2:1c:a5:c3:
41:5e:cc:78:de:15:5b:e0:92:30:5c:22:d4:ff:6c:
1a:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:6E:74:1F:55:B4:F5:90:61:06:E9:5F:70:18:14:F3:19:AC:9B:BC
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/W250H1W09ZBhBulfcBgU8xmsm7w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:b000:91::/48
Signature Algorithm: sha256WithRSAEncryption
20:bf:e8:41:2f:cb:89:29:d5:31:91:38:e8:c7:8b:44:dc:1c:
e2:90:38:2e:56:6c:b5:e4:c8:e0:00:a6:aa:27:c3:0e:3c:8f:
3b:ba:94:3f:3f:9a:81:2f:14:6f:e7:8f:cc:0a:ff:35:c0:35:
a9:b4:55:ce:e4:47:41:95:bc:6c:b3:3a:b0:34:bc:21:a0:31:
41:ab:64:fc:14:91:3b:c4:8e:38:36:28:62:e7:3b:d4:c6:32:
42:be:5a:c3:34:38:a7:aa:ea:39:b0:f1:b0:a1:5e:b3:a6:e2:
98:54:92:55:32:7d:0f:62:8d:c1:0d:9e:88:2a:5e:bc:1e:09:
11:1a:84:e6:4b:f7:b0:1a:ce:fb:5d:e7:34:67:db:00:e0:43:
fd:7d:bd:ff:2b:13:7e:d3:7f:15:24:0c:ec:e5:29:b1:3c:c6:
06:2d:79:74:43:31:a4:e1:52:69:fb:f1:05:95:37:23:f1:41:
50:cd:c0:07:e6:ff:a4:22:26:51:e4:3c:92:0b:6f:fc:d2:81:
24:41:ef:2b:4f:24:c6:a4:c4:f2:1e:5f:80:06:c5:b0:39:86:
49:8e:1f:b8:79:42:59:2c:d3:65:49:dc:29:90:5f:60:d5:2e:
7b:28:51:a5:13:80:4f:83:c6:b4:af:00:25:b4:72:87:59:69:
e9:c6:8f:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 12 03:38:01 2025 by rpki-client on console.sobornost.net