Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/tgSNzKfB3u4Myp1oduJWqmiu-PI.roa
File: tgSNzKfB3u4Myp1oduJWqmiu-PI.roa (raw, json)
Hash identifier: 0EJzB1pQZzzU1CvPttdkMD+Q1CEMoN9e+CLZnp5D0NM=
Subject key identifier: B6:04:8D:CC:A7:C1:DE:EE:0C:CA:9D:68:76:E2:56:AA:68:AE:F8:F2
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 14CD
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/tgSNzKfB3u4Myp1oduJWqmiu-PI.roa
Signing time: Mon 10 Feb 2025 14:35:17 +0000
ROA not before: Mon 10 Feb 2025 14:35:17 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17714
IP address blocks: 114.30.35.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5325 (0x14cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:35:17 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=B6048DCCA7C1DEEE0CCA9D6876E256AA68AEF8F2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:d7:8d:eb:43:38:0c:27:80:73:92:ef:26:85:
3b:41:67:87:e7:df:ca:37:57:ac:5c:22:93:36:ed:
2d:87:de:b9:34:a2:f6:6c:4c:d8:25:3c:a2:bc:84:
f3:23:95:16:d1:ef:8f:26:35:80:b6:5e:8c:99:69:
b2:9b:43:96:e9:6d:ee:d3:fb:4f:21:ee:fd:df:f1:
c9:b5:f4:1c:b3:ab:18:c1:95:cc:a1:e6:ca:eb:30:
7c:a0:68:19:ce:99:80:55:5d:90:95:b1:4a:4d:78:
b0:a7:ec:d7:50:b2:d6:6a:13:28:17:bc:7e:d4:11:
15:c4:4e:30:88:a5:18:46:b2:26:1f:4c:3a:a8:14:
63:de:85:b0:41:e4:6c:64:21:e3:8a:15:3a:86:0c:
73:a9:43:dd:d8:45:09:bb:6a:9e:ac:57:8d:38:35:
2b:ca:b7:34:e1:5a:e4:d7:70:f2:85:53:29:26:4a:
31:10:65:c1:d1:5b:92:f5:b1:27:77:33:f6:f1:77:
27:fd:6b:05:e0:e3:62:3b:35:06:4b:6e:b6:3f:39:
01:fc:62:18:11:3f:98:25:b5:09:cb:89:1f:21:0f:
10:f4:12:72:bb:fd:25:44:45:a9:2b:e6:7a:0c:f8:
f6:32:9b:60:c3:29:7f:16:d2:71:89:19:b4:36:a6:
12:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:04:8D:CC:A7:C1:DE:EE:0C:CA:9D:68:76:E2:56:AA:68:AE:F8:F2
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/tgSNzKfB3u4Myp1oduJWqmiu-PI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
114.30.35.0/24
Signature Algorithm: sha256WithRSAEncryption
59:11:17:2e:7a:b8:94:ad:53:e7:eb:14:b9:10:df:f3:db:da:
7d:4c:50:77:f5:01:b2:ca:8c:46:df:9a:98:ae:0b:60:ac:ba:
d1:ef:65:90:7b:b2:5c:bb:32:f1:ac:ff:6d:e2:3e:39:48:41:
c6:2e:24:ff:b5:a5:53:89:a3:51:a1:77:c1:d6:45:7e:ac:b8:
cc:d1:44:fa:8f:56:ee:d5:08:e5:dd:ff:51:d2:c3:40:3e:ca:
c7:61:4e:09:3e:9c:ab:bc:0b:56:3b:e7:30:e3:c4:94:f8:8d:
fb:c5:a0:73:64:83:e7:ec:f3:1f:71:18:bf:6d:b3:ec:11:91:
b8:01:2a:49:79:12:78:ee:1c:dc:b5:bc:8c:d9:2b:ef:5f:6b:
25:b1:72:83:2c:cb:df:48:d7:60:49:de:02:c0:58:ef:d1:80:
ef:05:b1:59:f0:54:c8:f6:4c:52:01:b7:8c:98:7c:4d:bc:a4:
82:8f:72:bc:18:0c:10:f9:98:66:05:86:b7:c3:74:83:a6:2b:
c1:c2:cc:d1:25:d1:ad:b8:f6:0a:7f:0c:ef:26:ec:ef:1b:23:
fe:43:e2:c1:51:f2:cd:9a:62:54:05:e9:f5:71:df:8c:ec:a0:
ad:85:e4:22:8d:97:2f:b4:92:d7:6e:05:08:bd:de:83:5f:fe:
49:c0:64:89
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICFM0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTAx
NDM1MTdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEI2MDQ4RENDQTdDMURF
RUUwQ0NBOUQ2ODc2RTI1NkFBNjhBRUY4RjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC3143rQzgMJ4Bzku8mhTtBZ4fn38o3V6xcIpM27S2H3rk0ovZs
TNglPKK8hPMjlRbR748mNYC2XoyZabKbQ5bpbe7T+08h7v3f8cm19ByzqxjBlcyh
5srrMHygaBnOmYBVXZCVsUpNeLCn7NdQstZqEygXvH7UERXETjCIpRhGsiYfTDqo
FGPehbBB5GxkIeOKFTqGDHOpQ93YRQm7ap6sV404NSvKtzThWuTXcPKFUykmSjEQ
ZcHRW5L1sSd3M/bxdyf9awXg42I7NQZLbrY/OQH8YhgRP5gltQnLiR8hDxD0EnK7
/SVERakr5noM+PYym2DDKX8W0nGJGbQ2phIrAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUtgSNzKfB3u4Myp1oduJWqmiu+PIwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC90Z1NOektmQjN1NE15cDFvZHVK
V3FtaXUtUEkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAch4j
MA0GCSqGSIb3DQEBCwUAA4IBAQBZERcueriUrVPn6xS5EN/z29p9TFB39QGyyoxG
35qYrgtgrLrR72WQe7JcuzLxrP9t4j45SEHGLiT/taVTiaNRoXfB1kV+rLjM0UT6
j1bu1Qjl3f9R0sNAPsrHYU4JPpyrvAtWO+cw48SU+I37xaBzZIPn7PMfcRi/bbPs
EZG4ASpJeRJ47hzctbyM2SvvX2slsXKDLMvfSNdgSd4CwFjv0YDvBbFZ8FTI9kxS
AbeMmHxNvKSCj3K8GAwQ+ZhmBYa3w3SDpivBwszRJdGtuPYKfwzvJuzvGyP+Q+LB
UfLNmmJUBen1cd+M7KCtheQijZcvtJLXbgUIvd6DX/5JwGSJ
-----END CERTIFICATE-----
Generated at Wed Feb 12 03:38:01 2025 by rpki-client on console.sobornost.net