Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/49zp7Z_uY0HRPNKRQ3U077hIh28.roa
File: 49zp7Z_uY0HRPNKRQ3U077hIh28.roa (raw, json)
Hash identifier: OdG79AZ4SuTY5mbtWXLtdcGajwP774Udcb9DcfSFxEI=
Subject key identifier: E3:DC:E9:ED:9F:EE:63:41:D1:3C:D2:91:43:75:34:EF:B8:48:87:6F
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0E0E
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/49zp7Z_uY0HRPNKRQ3U077hIh28.roa
Signing time: Mon 10 Feb 2025 13:59:23 +0000
ROA not before: Mon 10 Feb 2025 13:59:23 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131627
IP address blocks: 61.61.70.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3598 (0xe0e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Feb 10 13:59:23 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=E3DCE9ED9FEE6341D13CD291437534EFB848876F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:84:82:a9:f8:e8:16:d1:3d:64:80:df:8c:8b:
7c:0c:dc:4c:04:5c:56:93:36:77:f4:2f:25:b8:1d:
c8:cb:4c:7a:c5:58:87:59:3c:59:71:16:2f:38:e0:
94:24:e5:1f:5a:f9:1b:35:be:34:fa:2e:33:b1:c6:
e9:20:9d:dd:51:82:c0:e6:93:63:e4:e2:f4:39:2e:
b8:a5:b2:86:8d:d2:bc:03:eb:40:3f:24:24:d3:eb:
fd:95:52:7f:3e:4a:90:6a:7f:9c:83:d7:f3:07:8c:
25:ec:d4:8c:33:4b:27:f5:af:e7:ce:b6:e2:d1:b8:
77:6a:97:93:fa:4f:a4:10:be:3f:07:90:db:d0:27:
44:3c:2e:49:8f:f5:89:5a:5d:f3:85:97:d6:36:9f:
bf:5c:36:ec:6a:3a:5d:cf:3a:1f:1b:7a:9f:3a:a1:
f2:cf:d2:ea:3f:dd:b6:47:67:2d:60:d6:bc:f8:ae:
8e:a6:8d:84:72:3b:70:6b:4d:4f:38:0e:d5:12:fc:
03:31:b1:2b:94:e5:e1:9c:b9:55:a4:75:3f:92:99:
45:b0:d1:28:25:14:f3:1b:29:4a:2b:02:26:33:11:
1e:71:a2:43:62:3c:03:02:f0:28:8a:bb:4c:05:b7:
b3:90:d5:b1:d3:27:6c:43:e2:10:e5:9d:9a:50:24:
f5:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:DC:E9:ED:9F:EE:63:41:D1:3C:D2:91:43:75:34:EF:B8:48:87:6F
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/49zp7Z_uY0HRPNKRQ3U077hIh28.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.70.0/23
Signature Algorithm: sha256WithRSAEncryption
04:95:f2:48:6f:3c:63:d0:04:b0:28:0f:57:63:b0:5d:90:86:
59:a0:8d:b9:e3:e6:d8:58:bc:84:15:26:c2:a8:48:4f:fb:af:
43:e2:81:ef:8c:ed:d0:28:c0:7d:61:79:30:f1:30:0c:18:34:
17:82:04:24:18:23:59:ee:8a:ba:58:ae:66:be:b9:17:8b:19:
5d:0e:74:f5:2a:6e:17:ef:0e:33:de:74:d5:00:6c:17:eb:f0:
12:ca:61:6b:05:65:e5:21:a4:e6:ef:04:5f:f2:18:f3:38:85:
2d:42:ed:21:30:b4:93:dc:99:bb:d5:5a:d5:49:3e:1e:c3:75:
23:13:38:54:50:df:70:db:90:ca:b2:df:aa:83:7e:20:88:55:
b6:38:a8:e5:e9:c5:7d:2e:86:d3:d6:ed:f7:4b:6b:8d:d1:d6:
a5:d9:6d:72:87:6b:3a:b2:8c:19:31:1b:3b:e7:02:c3:d8:a2:
9a:cf:aa:e8:71:dc:74:08:dd:b3:07:49:ea:b5:65:93:94:54:
bc:a1:9b:72:df:b9:3c:49:0b:c4:9c:d9:bb:15:4d:10:af:6f:
c6:63:c0:42:56:ec:55:e7:22:f4:13:d9:8a:8a:0e:3c:f3:8a:
34:12:3c:03:7e:9b:ca:4c:11:77:68:6f:e0:5e:ff:43:00:95:
79:33:a3:d6
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICDg4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDc3
MkY3MTUzNDVCNTQyRTFENzA4QkNCMjU3MUZDRDcyREQyNkJGMzAeFw0yNTAyMTAx
MzU5MjNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEUzRENFOUVEOUZFRTYz
NDFEMTNDRDI5MTQzNzUzNEVGQjg0ODg3NkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCnhIKp+OgW0T1kgN+Mi3wM3EwEXFaTNnf0LyW4HcjLTHrFWIdZ
PFlxFi844JQk5R9a+Rs1vjT6LjOxxukgnd1RgsDmk2Pk4vQ5LrilsoaN0rwD60A/
JCTT6/2VUn8+SpBqf5yD1/MHjCXs1IwzSyf1r+fOtuLRuHdql5P6T6QQvj8HkNvQ
J0Q8LkmP9YlaXfOFl9Y2n79cNuxqOl3POh8bep86ofLP0uo/3bZHZy1g1rz4ro6m
jYRyO3BrTU84DtUS/AMxsSuU5eGcuVWkdT+SmUWw0SglFPMbKUorAiYzER5xokNi
PAMC8CiKu0wFt7OQ1bHTJ2xD4hDlnZpQJPVtAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQU49zp7Z/uY0HRPNKRQ3U077hIh28wHwYDVR0jBBgwFoAUR3L3FTRbVC4dcIvL
JXH81y3Sa/MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL1Iz
TDNGVFJiVkM0ZGNJdkxKWEg4MXkzU2FfTS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
UjNMM0ZUUmJWQzRkY0l2TEpYSDgxeTNTYV9NLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvS0dULzQ5enA3Wl91WTBIUlBOS1JRM1UwNzdo
SWgyOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAE9PUYwDQYJ
KoZIhvcNAQELBQADggEBAASV8khvPGPQBLAoD1djsF2Qhlmgjbnj5thYvIQVJsKo
SE/7r0Pige+M7dAowH1heTDxMAwYNBeCBCQYI1nuirpYrma+uReLGV0OdPUqbhfv
DjPedNUAbBfr8BLKYWsFZeUhpObvBF/yGPM4hS1C7SEwtJPcmbvVWtVJPh7DdSMT
OFRQ33DbkMqy36qDfiCIVbY4qOXpxX0uhtPW7fdLa43R1qXZbXKHazqyjBkxGzvn
AsPYoprPquhx3HQI3bMHSeq1ZZOUVLyhm3LfuTxJC8Sc2bsVTRCvb8ZjwEJW7FXn
IvQT2YqKDjzzijQSPAN+m8pMEXdob+Be/0MAlXkzo9Y=
-----END CERTIFICATE-----
Generated at Sat Apr 5 16:36:16 2025 by rpki-client