Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/R-YTvLXYfVrwvgIKWmfscw6JH7s.roa
File: R-YTvLXYfVrwvgIKWmfscw6JH7s.roa (raw, json)
Hash identifier: BPo+83bXfWPQomHmOoxEeRV067We+i2wjcugVUDPEEo=
Subject key identifier: 47:E6:13:BC:B5:D8:7D:5A:F0:BE:02:0A:5A:67:EC:73:0E:89:1F:BB
Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Certificate serial: 0D61
Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/R-YTvLXYfVrwvgIKWmfscw6JH7s.roa
Signing time: Mon 10 Feb 2025 13:51:05 +0000
ROA not before: Mon 10 Feb 2025 13:51:05 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9676
IP address blocks: 61.63.192.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3425 (0xd61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Validity
Not Before: Feb 10 13:51:05 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=47E613BCB5D87D5AF0BE020A5A67EC730E891FBB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:62:6a:ec:3a:00:5d:53:5c:e6:81:7b:ef:8e:
08:21:9b:f5:71:7c:29:11:38:9b:04:91:5d:6e:f1:
72:7b:19:e3:db:ab:ef:94:76:86:ba:12:39:9d:01:
a4:e1:1e:fd:3a:e7:9f:b2:70:44:05:a8:08:e3:da:
c4:16:ed:69:1c:cf:06:64:2d:74:d0:5c:14:4c:68:
6c:ba:c2:6e:f3:7a:e7:11:ce:9a:ca:17:8a:5e:30:
9e:23:df:03:90:a9:01:ce:6c:5b:78:c8:04:1c:49:
1a:d3:f8:6f:6a:4e:16:ad:bf:32:db:c7:64:80:41:
93:f1:d9:99:8c:39:70:99:6b:06:a6:a4:cc:b6:40:
79:e9:26:52:78:17:be:a9:c6:6f:e1:eb:45:bb:ed:
a0:bf:43:97:ed:14:d6:f3:f7:f6:75:e3:78:4d:3d:
b3:e1:1a:75:ef:15:e6:51:07:58:87:be:6b:c7:a7:
f1:e9:fd:ac:03:04:c2:82:c8:a7:3c:0a:bf:93:df:
45:3e:10:f2:59:d9:13:fc:d7:53:c0:1b:94:ab:ba:
fa:be:8c:86:bd:29:48:bf:fe:eb:63:42:20:5c:f3:
b4:6b:a0:9a:42:e7:b2:43:42:ec:99:47:58:82:ba:
ca:e8:3a:bb:dc:63:86:cf:77:b8:ec:eb:6c:09:5f:
e1:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:E6:13:BC:B5:D8:7D:5A:F0:BE:02:0A:5A:67:EC:73:0E:89:1F:BB
X509v3 Authority Key Identifier:
keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/R-YTvLXYfVrwvgIKWmfscw6JH7s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.63.192.0/18
Signature Algorithm: sha256WithRSAEncryption
63:84:75:6a:89:49:0e:74:7c:a6:28:10:45:78:2f:06:3b:72:
dd:a1:76:bb:11:fb:14:ed:89:74:3b:03:c6:85:8b:c1:76:62:
b2:ec:ec:49:38:5d:d3:02:48:3b:40:4e:d0:c3:21:5f:d2:fb:
ab:9a:85:28:68:42:ad:02:3b:5a:55:04:74:e7:41:25:a5:20:
83:ce:1d:01:5e:24:3d:4e:21:37:3b:19:b0:58:5d:57:a3:ac:
0e:59:31:3f:73:99:4a:26:bd:be:35:a4:35:0a:01:bb:13:92:
f9:70:9d:7c:20:9e:0f:99:8f:c2:5f:be:8c:6b:71:5c:cb:dc:
66:35:30:00:2f:85:5c:5c:c3:98:ef:ef:54:da:a6:08:07:f6:
8b:bc:89:b3:97:0a:8d:1e:a7:6a:58:e5:44:5d:85:29:62:f3:
e7:7b:4b:73:00:32:72:85:d0:e1:ff:9f:a1:fe:d8:94:aa:6b:
c0:49:a4:ba:bf:b3:04:58:c5:b2:10:56:ed:1e:e6:d1:2f:01:
cb:f3:6d:85:cd:66:4d:98:92:b4:51:84:90:54:70:21:0a:cf:
06:cb:e4:a3:a9:3d:04:91:d6:97:05:c4:2f:37:11:09:ff:e7:
30:87:db:6f:98:c2:b5:8d:4e:03:37:81:3c:43:01:67:a0:42:
14:b5:1b:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 13:21:58 2025 by rpki-client