Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/xd4Ss6ESwQ6-dIJ2KUO9yrUtXb0.roa
File: xd4Ss6ESwQ6-dIJ2KUO9yrUtXb0.roa (raw, json)
Hash identifier: yhw7AW7/bnNqVn/uk3s8SKFHh/xRSnIVvrFI5S+6x7M=
Subject key identifier: C5:DE:12:B3:A1:12:C1:0E:BE:74:82:76:29:43:BD:CA:B5:2D:5D:BD
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1443
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xd4Ss6ESwQ6-dIJ2KUO9yrUtXb0.roa
Signing time: Mon 10 Feb 2025 14:34:45 +0000
ROA not before: Mon 10 Feb 2025 14:34:45 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 36.224.0.0/12 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5187 (0x1443)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:34:45 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=C5DE12B3A112C10EBE7482762943BDCAB52D5DBD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:10:88:23:bf:9e:fd:ed:12:eb:2a:26:32:b1:
d7:07:16:7a:f4:91:06:f6:34:f0:8e:12:58:da:1c:
3e:1f:47:5d:79:c1:d0:f8:be:d0:dc:ac:c4:f4:24:
29:a1:cf:08:22:7b:35:c6:d3:67:d6:b5:9a:1a:04:
04:24:90:b6:30:ae:f1:3f:50:53:be:b3:cc:60:8f:
e1:98:4b:49:0c:32:dd:84:dd:08:f2:b7:ec:56:da:
6e:02:fd:a6:de:bd:24:62:da:79:2b:d8:48:31:c0:
62:e6:72:58:f3:2b:45:12:40:22:ba:46:d3:2b:1f:
4a:11:43:06:a8:37:71:40:7f:a8:91:fd:e6:8e:79:
2d:ed:7f:3e:01:2b:5d:3e:ad:18:4b:65:6a:09:b0:
23:2f:25:c3:29:78:f3:54:05:db:a4:f1:51:7f:34:
94:eb:64:a5:00:13:4c:d5:4a:db:bb:e9:1e:1f:e4:
ef:aa:51:6e:15:da:c2:97:69:f2:65:d6:ed:27:ea:
eb:3b:5f:ce:f2:27:08:38:ce:a2:18:6e:aa:9f:3a:
85:45:15:0d:9f:f3:21:8f:6d:05:9c:20:d6:51:af:
2e:7d:ba:1d:7b:db:e8:3b:d0:f8:50:ed:6c:d3:42:
6c:14:53:dd:2e:ec:c8:40:b9:4f:2b:78:07:9f:2a:
94:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:DE:12:B3:A1:12:C1:0E:BE:74:82:76:29:43:BD:CA:B5:2D:5D:BD
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xd4Ss6ESwQ6-dIJ2KUO9yrUtXb0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
36.224.0.0/12
Signature Algorithm: sha256WithRSAEncryption
97:68:36:35:cb:44:10:ff:8d:2a:89:60:ec:cf:d0:29:1f:3b:
40:83:80:96:11:c0:5a:96:19:60:20:e4:6a:8a:7e:d2:a0:1c:
84:a6:55:8c:36:a0:60:70:b4:45:d2:fd:88:ff:c5:bd:93:88:
07:73:97:41:b0:68:82:0f:b1:b5:3d:04:ab:1f:60:0b:b8:cc:
4a:a8:97:ad:4d:37:f8:94:2b:c3:f8:e2:2c:93:1d:18:16:fc:
17:d0:4d:e4:28:63:4b:24:8c:79:61:69:2e:77:45:65:76:74:
a5:c5:75:3a:75:33:a4:a5:de:a7:6a:83:ad:68:fe:3f:f9:0f:
be:f7:1c:46:17:59:20:38:1f:cf:91:a3:04:b3:cf:ba:7b:a5:
69:46:22:6d:2a:15:c5:15:48:fb:27:f4:b6:9b:40:65:67:21:
54:e9:73:0c:0f:ec:da:47:b9:b2:7e:bc:00:27:32:08:c9:cf:
b4:7a:8e:83:41:d6:fd:e5:01:df:e5:d3:e7:c1:b5:6d:5c:a0:
77:dc:84:3d:ac:ac:8d:48:39:63:7b:b7:31:67:29:62:73:b4:
6b:3c:14:c7:a7:e1:28:6c:d2:a1:1b:1e:b8:de:e2:22:26:ef:
c4:d1:3e:4a:10:ca:db:7e:9e:b5:4e:7a:2f:a9:2b:f1:fc:a8:
8c:9b:12:8e
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICFEMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTAx
NDM0NDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEM1REUxMkIzQTExMkMx
MEVCRTc0ODI3NjI5NDNCRENBQjUyRDVEQkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDlEIgjv5797RLrKiYysdcHFnr0kQb2NPCOEljaHD4fR115wdD4
vtDcrMT0JCmhzwgiezXG02fWtZoaBAQkkLYwrvE/UFO+s8xgj+GYS0kMMt2E3Qjy
t+xW2m4C/abevSRi2nkr2EgxwGLmcljzK0USQCK6RtMrH0oRQwaoN3FAf6iR/eaO
eS3tfz4BK10+rRhLZWoJsCMvJcMpePNUBduk8VF/NJTrZKUAE0zVStu76R4f5O+q
UW4V2sKXafJl1u0n6us7X87yJwg4zqIYbqqfOoVFFQ2f8yGPbQWcINZRry59uh17
2+g70PhQ7WzTQmwUU90u7MhAuU8reAefKpTDAgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQUxd4Ss6ESwQ6+dIJ2KUO9yrUtXb0wHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC94ZDRTczZFU3dRNi1kSUoyS1VP
OXlyVXRYYjAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMEJOAw
DQYJKoZIhvcNAQELBQADggEBAJdoNjXLRBD/jSqJYOzP0CkfO0CDgJYRwFqWGWAg
5GqKftKgHISmVYw2oGBwtEXS/Yj/xb2TiAdzl0GwaIIPsbU9BKsfYAu4zEqol61N
N/iUK8P44iyTHRgW/BfQTeQoY0skjHlhaS53RWV2dKXFdTp1M6Sl3qdqg61o/j/5
D773HEYXWSA4H8+RowSzz7p7pWlGIm0qFcUVSPsn9LabQGVnIVTpcwwP7NpHubJ+
vAAnMgjJz7R6joNB1v3lAd/l0+fBtW1coHfchD2srI1IOWN7tzFnKWJztGs8FMen
4Shs0qEbHrje4iIm78TRPkoQytt+nrVOei+pK/H8qIybEo4=
-----END CERTIFICATE-----
Generated at Wed Feb 12 03:38:02 2025 by rpki-client on console.sobornost.net