Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/aqE9jZls1nMXMW2wNG3MIKRiy-4.roa
File: aqE9jZls1nMXMW2wNG3MIKRiy-4.roa (raw, json)
Hash identifier: Y6A0bAclB+J93EOPYKdvNpyo1faxdMkdumCbtIgF+HU=
Subject key identifier: 6A:A1:3D:8D:99:6C:D6:73:17:31:6D:B0:34:6D:CC:20:A4:62:CB:EE
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 14D4
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/aqE9jZls1nMXMW2wNG3MIKRiy-4.roa
Signing time: Mon 10 Feb 2025 14:35:19 +0000
ROA not before: Mon 10 Feb 2025 14:35:19 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 103.25.236.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5332 (0x14d4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:35:19 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=6AA13D8D996CD67317316DB0346DCC20A462CBEE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:3e:0c:df:07:49:5b:c9:bf:a8:1d:b1:7d:4e:
4e:79:ec:86:5d:96:3c:54:b6:aa:b7:5a:be:18:8c:
90:9a:f8:dd:a3:3a:ed:84:fc:67:82:ed:2e:84:9e:
9b:9b:77:69:d3:7f:c1:54:16:35:9d:ff:05:67:e2:
70:5b:23:ca:73:c8:a4:d8:23:dc:d1:ed:0f:93:9f:
8d:9a:7b:3d:6a:85:23:ab:ae:93:25:aa:32:dd:dd:
02:45:9f:48:c3:14:56:82:a7:c8:28:61:48:81:41:
29:e4:e5:da:f8:0a:56:f0:f6:c8:88:ac:00:0a:c4:
42:53:e1:61:a2:73:3d:9d:6e:8d:8f:1e:19:5a:d0:
46:5a:e3:1b:83:85:61:f3:ff:ef:27:27:db:f6:5e:
79:e7:f7:b5:ae:96:b7:fe:d1:bc:7e:83:35:4e:3a:
cd:4f:d1:ec:73:14:47:f3:ed:f3:5f:a9:90:18:eb:
54:62:fe:9a:99:43:c0:d8:6a:16:50:67:13:9a:73:
18:29:ad:71:79:cc:13:17:c9:f6:ab:cf:4b:2a:f0:
1e:4a:92:81:d6:a5:3a:6d:36:13:c4:72:4d:58:3d:
f3:1a:42:53:ab:1d:68:d9:c3:32:7b:c2:c5:00:29:
e3:7d:82:02:7d:74:d6:a7:1a:2d:e4:ba:b2:07:3d:
bd:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:A1:3D:8D:99:6C:D6:73:17:31:6D:B0:34:6D:CC:20:A4:62:CB:EE
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/aqE9jZls1nMXMW2wNG3MIKRiy-4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.25.236.0/22
Signature Algorithm: sha256WithRSAEncryption
24:96:42:7a:67:32:f3:bf:e8:1c:4c:67:d8:36:88:f7:4b:97:
39:e3:dd:40:e7:f1:3a:82:be:dd:ea:34:0c:cd:fb:0e:56:c6:
ec:9f:44:ac:29:41:6a:3e:a7:48:87:c0:5a:f9:a4:7d:b3:6a:
ee:21:e9:31:91:ab:16:b1:86:49:de:a3:2c:1a:60:95:08:5a:
33:18:ac:d5:75:9b:2d:aa:0a:18:6a:b5:c5:1e:d1:61:4c:a3:
eb:45:24:bc:19:4a:e0:13:82:50:9e:8e:72:0f:6f:82:16:fc:
f2:51:e5:de:5f:a4:fb:43:95:3b:3f:09:1c:72:68:db:9a:0f:
59:83:46:9d:4d:91:60:eb:74:ea:81:00:be:61:19:fe:16:63:
c5:56:14:3a:30:f6:5a:85:46:d4:0e:d0:c6:cd:dd:c3:98:7b:
2d:84:81:18:b0:0d:4f:c0:ee:ad:e9:42:bd:63:f7:09:91:05:
f2:a6:d9:65:48:a1:21:e1:8a:97:0d:06:b4:7a:7b:96:36:07:
7a:83:6e:1f:fc:71:97:d5:f7:ce:3f:d0:54:bb:5a:a9:6b:c8:
ee:87:01:42:82:09:0c:0c:ab:22:6f:a9:3a:33:8b:1f:ab:0a:
9f:e8:da:33:2a:d4:34:8a:d8:b8:4a:5d:53:00:a4:a2:08:d0:
c6:8c:b2:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 12 03:38:01 2025 by rpki-client on console.sobornost.net