Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/bYA1u7wQtMpNUgXiJ28mmbtoccg.roa
File: bYA1u7wQtMpNUgXiJ28mmbtoccg.roa (raw, json)
Hash identifier: gvk4x5V0y8GsfU9UDlmWJWEmNUtjBLgNnb4pa0E/hm4=
Subject key identifier: 6D:80:35:BB:BC:10:B4:CA:4D:52:05:E2:27:6F:26:99:BB:68:71:C8
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 18C0
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/bYA1u7wQtMpNUgXiJ28mmbtoccg.roa
Signing time: Fri 22 Aug 2025 09:02:25 +0000
ROA not before: Fri 22 Aug 2025 09:02:25 +0000
ROA not after: Sat 22 Aug 2026 08:14:28 +0000
asID: 142005
IP address blocks: 210.61.114.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6336 (0x18c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Aug 22 09:02:25 2025 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=6D8035BBBC10B4CA4D5205E2276F2699BB6871C8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:42:0f:de:b3:be:ac:c7:a7:a5:a4:4d:7c:2b:
7c:84:5f:16:8d:51:05:f6:4b:b1:fa:2d:80:0c:77:
7f:76:70:c3:f7:ae:bd:dc:5f:9b:20:84:d6:d2:be:
f6:66:63:fa:ac:31:83:a8:9b:a8:25:79:4d:08:68:
dd:57:14:33:7c:97:49:6a:e7:e3:5d:e1:87:33:8b:
44:21:b2:94:f6:c7:85:e6:cc:e8:cf:89:49:38:82:
35:a5:18:3a:5b:47:41:4a:32:0a:b3:f1:84:6a:54:
80:ab:fc:f0:07:e0:79:f6:2f:83:e6:50:50:95:b9:
b9:df:c8:43:97:c2:e0:0a:7d:d2:15:1c:b4:38:9a:
61:6b:4d:64:f8:1a:00:44:d9:da:ae:26:6e:00:5c:
ec:fb:ab:77:c1:e7:7d:bc:97:95:ee:3a:74:ee:ef:
a8:ac:a1:1d:8c:c2:cc:7e:42:9d:95:88:9d:d6:f7:
7d:34:9a:ac:05:38:58:92:02:cd:ab:98:f1:63:21:
72:2e:fc:d0:38:af:23:e9:a4:2c:8f:6f:8a:d7:b2:
78:7d:19:82:5a:2b:c1:17:db:b7:ec:1b:31:fb:8e:
37:3c:59:2b:44:b9:58:aa:30:7d:9b:77:cc:a1:44:
42:c6:cb:6f:5b:b1:4c:82:7a:95:d5:53:db:08:84:
10:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:80:35:BB:BC:10:B4:CA:4D:52:05:E2:27:6F:26:99:BB:68:71:C8
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/bYA1u7wQtMpNUgXiJ28mmbtoccg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.61.114.0/24
Signature Algorithm: sha256WithRSAEncryption
d3:38:e7:aa:f7:c8:26:75:8c:3f:18:1d:6f:cd:90:6f:53:3a:
49:6d:3d:1c:0e:3d:a4:74:74:88:f6:30:96:06:c9:28:80:18:
d2:78:71:13:6c:a9:27:ef:f6:fa:9c:8b:a7:08:1e:8c:e9:7a:
ac:9b:d7:af:bf:b5:cb:20:62:d2:ac:d8:36:f0:ab:ed:9d:4e:
ba:cc:61:5b:75:91:bf:78:a9:ee:26:4c:e4:5f:3d:a5:8a:52:
7b:55:31:03:5c:5a:c8:ca:db:d2:63:0c:de:d4:ea:2b:8f:f7:
e6:ba:53:40:ed:b1:6f:d0:7f:53:a3:97:b0:84:7a:e1:47:83:
bb:e7:fc:ed:23:8c:63:a5:a6:81:ef:a5:85:27:16:87:f5:4f:
f6:eb:6f:6d:85:ad:43:75:0c:d2:6d:73:af:8f:82:da:03:21:
f8:f9:13:2a:18:2e:d3:db:d8:f8:31:95:fa:40:54:b1:cb:01:
63:26:fa:12:7a:e3:3a:8f:c1:34:8c:5e:10:aa:87:5c:08:a2:
38:71:f7:25:00:4a:48:97:f3:72:4e:eb:1d:49:ba:de:65:1b:
ce:79:56:3f:3a:63:4e:74:31:8c:be:5d:ca:b9:3c:48:7b:8d:
7d:08:c8:8a:61:ed:72:1b:4e:58:a5:74:4a:c6:05:b4:b4:23:
c8:a2:79:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 04:48:15 2025 by rpki-client