Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/tkc3e91b50tCFTzQd5wjbCvp32s.roa
File: tkc3e91b50tCFTzQd5wjbCvp32s.roa (raw, json)
Hash identifier: NH+CCOL46OEZaWxs8t9P/8h6+IuVEP3/OTfo6WUpakk=
Subject key identifier: B6:47:37:7B:DD:5B:E7:4B:42:15:3C:D0:77:9C:23:6C:2B:E9:DF:6B
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1207
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/tkc3e91b50tCFTzQd5wjbCvp32s.roa
Signing time: Mon 26 Aug 2024 05:18:11 +0000
ROA not before: Mon 26 Aug 2024 05:18:11 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 198949
IP address blocks: 210.242.123.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4615 (0x1207)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Aug 26 05:18:11 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=B647377BDD5BE74B42153CD0779C236C2BE9DF6B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:b3:89:a5:0f:fc:97:d8:c6:fe:01:4d:60:32:
76:9c:82:3a:bd:cb:83:fa:1f:6c:93:dd:17:68:35:
4f:27:c6:aa:5e:ef:9f:02:8f:74:ea:d0:f3:2a:39:
12:ee:02:86:06:98:fd:cd:56:73:2f:d8:f6:99:d1:
4b:ad:cc:c4:8d:87:87:36:9b:e5:10:7c:f6:46:13:
f7:18:6e:37:04:9e:14:7a:74:2a:8d:08:d4:d7:57:
79:01:27:15:89:ac:1e:e1:bb:01:fb:09:61:8e:b4:
b3:4f:7d:94:60:b5:72:08:eb:5e:80:2b:e2:49:60:
27:97:15:42:fc:29:08:3a:48:ba:49:ce:bb:83:87:
de:98:c1:65:59:20:00:4f:d0:c9:84:72:fc:11:a0:
ee:8e:ae:14:dc:2b:11:cd:a3:8f:16:43:02:5a:26:
b2:74:26:3b:5f:a2:57:74:20:f6:d1:ab:ce:e0:f0:
74:50:09:b6:7f:c0:be:3a:ec:4e:78:1d:f6:52:1b:
de:cb:f6:fd:cf:ef:e3:49:1d:8c:2c:b9:4e:29:74:
5b:24:63:1e:11:da:b1:fb:26:9b:aa:ed:60:c2:b0:
b4:a1:e4:76:29:5f:aa:3b:74:77:44:a9:09:7b:18:
08:15:db:af:34:e0:ae:83:63:9c:bf:6b:5e:2d:fd:
90:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:47:37:7B:DD:5B:E7:4B:42:15:3C:D0:77:9C:23:6C:2B:E9:DF:6B
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/tkc3e91b50tCFTzQd5wjbCvp32s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.242.123.0/24
Signature Algorithm: sha256WithRSAEncryption
11:f2:6a:10:99:8e:d2:6a:c0:ea:99:dd:f3:fb:3a:43:5d:da:
cf:a5:ed:3e:a0:d4:d1:31:f5:56:20:ab:3e:7c:8e:b3:d1:a2:
ce:c1:53:48:a5:f3:5a:35:42:b4:9e:84:19:1a:73:0f:be:21:
4d:00:6e:a1:7a:72:13:57:a1:42:cd:8f:77:9a:59:f0:02:29:
b4:dd:c2:93:f6:24:0b:a5:1c:3e:66:88:df:7d:21:ae:4a:af:
2e:d9:3e:85:cc:a7:34:a1:68:85:bc:9e:5f:f4:15:62:b6:16:
a0:19:03:fa:72:da:3f:c2:72:7b:f5:a8:31:a8:1f:67:4b:c9:
15:32:8b:42:d0:00:41:81:8b:ce:e3:8f:4f:04:3b:e7:0b:cc:
5d:e0:3b:07:ae:23:8b:ca:b8:2e:d5:c7:20:8e:ba:69:d1:27:
c2:de:73:16:27:19:ee:ee:14:5f:19:a4:5d:f3:d1:ea:a1:9c:
ba:1e:d3:39:35:04:7e:78:82:08:89:cb:ee:b4:6e:58:ad:1b:
34:1d:74:d2:43:ff:33:79:6b:bf:a0:ba:4d:1c:c3:6a:a5:e5:
ad:cd:65:51:36:c1:66:f5:8a:95:68:69:44:a1:23:cb:d8:a5:
be:bd:7b:69:fe:dc:ed:98:aa:a2:2a:db:a5:44:20:e7:85:b7:
f3:c3:58:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 13:42:58 2025 by rpki-client