Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/cE5D2wSuWC1FTon5ywfpqlpQQ9c.roa
File: cE5D2wSuWC1FTon5ywfpqlpQQ9c.roa (raw, json)
Hash identifier: h7OF47iN28u2yZvXY7K6Gd/v8XP7FEUaDDmxit0oh98=
Subject key identifier: 70:4E:43:DB:04:AE:58:2D:45:4E:89:F9:CB:07:E9:AA:5A:50:43:D7
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 14C5
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/cE5D2wSuWC1FTon5ywfpqlpQQ9c.roa
Signing time: Mon 10 Feb 2025 14:35:16 +0000
ROA not before: Mon 10 Feb 2025 14:35:16 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 61.224.0.0/14 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5317 (0x14c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:35:16 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=704E43DB04AE582D454E89F9CB07E9AA5A5043D7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:a0:e0:74:ca:5a:11:4c:2a:43:f4:9d:20:60:
da:23:a6:d7:d6:79:8c:31:89:f3:fb:b4:10:bf:df:
10:1f:a1:e3:a8:22:0b:0c:f0:97:5c:d8:e3:9a:0f:
21:6b:0f:53:b9:4e:b6:a1:b5:29:e4:61:85:7e:f2:
9a:4e:cf:6d:ca:8c:be:3e:d3:4d:c9:07:d2:3c:6e:
a3:54:ef:85:32:d1:71:b1:ce:28:c0:d7:e0:5b:5e:
76:41:2f:c1:ef:74:1a:d9:6d:37:42:4b:bc:f4:81:
25:95:ed:54:35:12:40:da:e8:97:3f:7e:14:cb:b9:
f9:b4:0f:d5:4c:64:89:bc:d8:39:37:89:60:5e:e0:
3d:0c:3a:a2:4f:c2:cb:5d:4b:5f:8d:c1:82:1e:b7:
0f:a0:96:12:61:c2:34:06:2f:cd:cc:92:c7:46:f0:
5a:67:05:e8:b4:9f:f2:51:72:98:e9:e8:24:14:87:
3b:8c:51:18:62:76:64:33:cc:d2:05:36:fc:e3:5a:
2f:dd:98:80:3e:95:a2:28:7a:bf:7f:ef:c4:29:32:
98:d9:6b:a3:94:c1:8b:4f:22:aa:bb:0e:79:d7:b4:
47:2f:a4:7f:2f:73:25:d4:16:28:62:cc:0b:3d:bc:
88:ea:5d:3a:db:94:7f:ae:31:ce:48:f2:63:d0:5d:
fe:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:4E:43:DB:04:AE:58:2D:45:4E:89:F9:CB:07:E9:AA:5A:50:43:D7
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/cE5D2wSuWC1FTon5ywfpqlpQQ9c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.224.0.0/14
Signature Algorithm: sha256WithRSAEncryption
25:fe:62:f4:19:14:3b:4d:6e:6f:0c:a5:cb:59:a9:9e:9b:0f:
16:8b:92:94:19:89:fd:a4:cc:c8:9c:69:3f:3f:a8:74:20:50:
d6:03:b2:67:08:57:30:4c:65:dc:ef:57:7b:cb:0d:27:ad:aa:
c8:c7:eb:9a:ea:86:17:20:b5:b3:76:94:eb:23:e9:1c:5f:93:
2e:87:d8:73:67:81:82:6f:12:ea:bf:64:44:f8:9b:dd:2c:21:
34:bf:13:3c:92:0b:de:fa:1b:17:0c:21:99:55:2d:20:71:56:
df:44:83:16:e1:b5:b3:c8:9b:a4:06:32:3f:49:34:44:6d:8a:
0b:88:6f:72:58:12:47:b8:f3:a8:98:f0:c0:90:bf:da:c7:9c:
f5:30:7a:36:2c:0e:7a:4f:bc:76:d8:90:a4:95:93:0e:78:2d:
68:99:a3:98:d1:02:36:eb:f0:a8:4a:c5:18:31:b7:60:45:35:
0a:55:9e:41:bd:31:a2:a3:e3:72:ed:dd:f6:24:78:30:80:88:
ce:76:7d:1b:37:c5:9a:38:b6:32:71:d9:db:a4:d5:00:5e:32:
f3:5b:62:48:b9:5c:d9:39:e3:b5:78:39:5c:83:b9:35:67:ea:
0a:79:7a:1b:76:87:82:b7:04:c8:86:09:de:69:58:35:b8:e6:
68:da:e6:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 12 03:38:01 2025 by rpki-client on console.sobornost.net