Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/cyGXqblI9cR-OgqYwFvndAvGVBY.roa
File: cyGXqblI9cR-OgqYwFvndAvGVBY.roa (raw, json)
Hash identifier: w3lwvfYEExt2J9Ny/nXhMqW8ZHeRl4ykYpoRrY4zy8U=
Subject key identifier: 73:21:97:A9:B9:48:F5:C4:7E:3A:0A:98:C0:5B:E7:74:0B:C6:54:16
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1434
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/cyGXqblI9cR-OgqYwFvndAvGVBY.roa
Signing time: Mon 10 Feb 2025 14:34:42 +0000
ROA not before: Mon 10 Feb 2025 14:34:42 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 15133
IP address blocks: 61.221.181.64/26 maxlen: 26
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5172 (0x1434)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:34:42 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=732197A9B948F5C47E3A0A98C05BE7740BC65416
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:f6:79:99:96:36:24:94:2c:d3:92:e3:42:a3:
c9:92:5e:a4:52:d4:14:a0:4a:5e:94:85:18:78:bc:
44:d3:1c:f2:1b:be:c4:a4:8e:88:72:14:39:f0:b0:
4d:1f:90:b4:44:7e:4b:91:3e:c3:56:d1:c7:82:e3:
c0:26:f8:bb:7f:df:e2:c8:c9:30:84:48:1c:9a:44:
75:41:5a:97:91:b1:88:cf:dc:91:42:34:99:a9:bf:
ae:ac:69:4c:73:de:1f:91:88:f5:3b:5e:71:97:d8:
27:35:b7:e8:fa:af:2d:a1:d6:c8:ef:7f:be:e2:73:
bd:6f:ed:69:d2:a9:d3:be:7a:8e:74:48:93:8f:fa:
2f:bf:19:0d:42:55:20:fd:df:95:55:84:b5:b3:a7:
2a:71:c3:20:ce:23:ee:9b:fd:63:83:f8:31:03:68:
f9:7b:7a:71:dc:57:88:f8:f8:74:ab:46:bb:91:86:
fa:91:7e:3d:c0:ed:cf:b8:4c:ca:ad:45:65:6f:11:
92:b2:eb:a6:c4:6f:a6:b0:75:c3:e2:8a:c3:71:6e:
d0:00:92:db:1a:52:69:94:13:ce:11:b8:b6:ad:3c:
20:ff:9a:6a:cd:d3:5b:6b:99:bb:fa:d0:6c:be:e9:
cb:c2:17:4d:dd:8a:8f:56:96:36:4d:d7:69:a0:c0:
a9:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:21:97:A9:B9:48:F5:C4:7E:3A:0A:98:C0:5B:E7:74:0B:C6:54:16
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/cyGXqblI9cR-OgqYwFvndAvGVBY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.221.181.64/26
Signature Algorithm: sha256WithRSAEncryption
9d:4b:6e:4d:f5:f8:6f:be:53:34:ff:48:d4:06:c1:c0:aa:2c:
84:86:0c:32:eb:3a:44:52:54:01:be:0f:cf:3c:f4:f8:21:b4:
1b:92:d8:e8:f2:79:c6:04:f3:26:d7:cb:81:06:6f:8f:6b:68:
6d:74:13:cd:1e:ee:fa:9d:6d:46:b9:80:97:f2:0d:63:6a:3d:
9c:c4:d8:1d:fb:dd:e5:55:23:02:c3:0a:4e:e8:53:42:2d:2a:
c9:10:16:b4:7b:47:5f:71:1c:aa:c1:a6:1b:82:56:db:f8:92:
f7:d7:00:2c:c7:c4:ac:af:72:ba:05:56:a4:08:e1:5e:1c:be:
e5:0e:9c:f2:0f:be:27:e6:4f:e5:0f:32:32:25:84:a1:4c:ab:
47:fc:c2:3f:05:8e:49:6a:33:37:34:01:54:cb:91:47:29:49:
29:df:9a:e0:a2:4b:24:94:44:41:20:e0:57:8e:64:b3:8a:12:
42:29:f9:0c:2b:3e:05:3f:2d:a8:bf:5b:30:6d:19:c5:e6:5f:
94:07:cb:6d:8c:31:d0:86:24:87:09:6a:46:25:40:f9:a6:c0:
4d:a1:38:a6:95:8e:d5:13:01:b1:72:93:dd:72:7d:45:c5:89:
9e:d4:60:05:f4:61:93:57:4f:d6:71:97:f4:bf:49:80:5e:03:
97:0f:1d:0e
-----BEGIN CERTIFICATE-----
MIIE0TCCA7mgAwIBAgICFDQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTAx
NDM0NDJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDczMjE5N0E5Qjk0OEY1
QzQ3RTNBMEE5OEMwNUJFNzc0MEJDNjU0MTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDn9nmZljYklCzTkuNCo8mSXqRS1BSgSl6UhRh4vETTHPIbvsSk
johyFDnwsE0fkLREfkuRPsNW0ceC48Am+Lt/3+LIyTCESByaRHVBWpeRsYjP3JFC
NJmpv66saUxz3h+RiPU7XnGX2Cc1t+j6ry2h1sjvf77ic71v7WnSqdO+eo50SJOP
+i+/GQ1CVSD935VVhLWzpypxwyDOI+6b/WOD+DEDaPl7enHcV4j4+HSrRruRhvqR
fj3A7c+4TMqtRWVvEZKy66bEb6awdcPiisNxbtAAktsaUmmUE84RuLatPCD/mmrN
01trmbv60Gy+6cvCF03dio9WljZN12mgwKmHAgMBAAGjggHtMIIB6TAdBgNVHQ4E
FgQUcyGXqblI9cR+OgqYwFvndAvGVBYwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9jeUdYcWJsSTljUi1PZ3FZd0Z2
bmRBdkdWQlkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAATAHAwUGPd21
QDANBgkqhkiG9w0BAQsFAAOCAQEAnUtuTfX4b75TNP9I1AbBwKoshIYMMus6RFJU
Ab4Pzzz0+CG0G5LY6PJ5xgTzJtfLgQZvj2tobXQTzR7u+p1tRrmAl/INY2o9nMTY
Hfvd5VUjAsMKTuhTQi0qyRAWtHtHX3EcqsGmG4JW2/iS99cALMfErK9yugVWpAjh
Xhy+5Q6c8g++J+ZP5Q8yMiWEoUyrR/zCPwWOSWozNzQBVMuRRylJKd+a4KJLJJRE
QSDgV45ks4oSQin5DCs+BT8tqL9bMG0ZxeZflAfLbYwx0IYkhwlqRiVA+abATaE4
ppWO1RMBsXKT3XJ9RcWJntRgBfRhk1dP1nGX9L9JgF4Dlw8dDg==
-----END CERTIFICATE-----
Generated at Wed Feb 12 03:38:01 2025 by rpki-client on console.sobornost.net