Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/k2qatI63Z6PQOCCF25kpoBaTaYg.roa
File: k2qatI63Z6PQOCCF25kpoBaTaYg.roa (raw, json)
Hash identifier: vwirCyk4GaJ7LgbOupGR2RT1VE6Nx6h4Oh0AaiDcTrw=
Subject key identifier: 93:6A:9A:B4:8E:B7:67:A3:D0:38:20:85:DB:99:29:A0:16:93:69:88
Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Certificate serial: 0D59
Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/k2qatI63Z6PQOCCF25kpoBaTaYg.roa
Signing time: Mon 10 Feb 2025 13:51:03 +0000
ROA not before: Mon 10 Feb 2025 13:51:03 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9676
IP address blocks: 61.63.128.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3417 (0xd59)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Validity
Not Before: Feb 10 13:51:03 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=936A9AB48EB767A3D0382085DB9929A016936988
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:62:e5:c0:92:a4:9a:c6:ed:2d:eb:39:94:4e:
b2:c9:c9:cc:9e:ea:c4:80:64:d2:26:31:6a:ea:1e:
af:64:e6:6e:ce:e0:b5:84:3e:51:2e:fa:91:23:fb:
75:58:c8:08:05:68:bd:be:d6:8c:56:ed:93:07:b1:
c1:8d:59:b7:c9:4c:f9:30:d5:87:78:23:94:87:a0:
9d:e6:b5:06:ec:bf:16:a2:77:b1:42:89:ac:d0:60:
97:dd:bc:2b:23:79:dc:11:cc:ad:bd:09:8f:9b:39:
5e:85:b0:02:63:bb:be:60:c8:0a:79:5d:5c:85:01:
26:68:26:ee:c0:77:db:0a:5d:3e:88:80:33:6a:ff:
3b:46:70:f7:c6:40:24:1a:25:e0:57:33:81:55:fe:
f9:c5:1a:21:ca:5d:7f:bd:01:be:d4:8a:b1:86:4b:
fc:73:b3:ef:cf:5d:de:2d:0a:c0:62:22:29:dd:08:
b4:c4:ab:04:f4:88:50:d4:9e:ea:ea:01:61:94:3b:
5d:c7:a3:9f:5d:61:ac:ee:fa:9c:99:c6:0f:00:42:
0b:fe:bd:f1:a8:7e:c6:b8:92:5c:68:d6:9e:d8:4a:
46:58:d0:2a:db:11:1f:24:df:28:e7:29:7c:71:ae:
4b:84:79:1c:e0:8e:5f:67:9e:84:6b:17:06:2e:9d:
67:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:6A:9A:B4:8E:B7:67:A3:D0:38:20:85:DB:99:29:A0:16:93:69:88
X509v3 Authority Key Identifier:
keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/k2qatI63Z6PQOCCF25kpoBaTaYg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.63.128.0/19
Signature Algorithm: sha256WithRSAEncryption
5a:36:13:eb:a0:6d:ce:6d:8d:19:b1:9f:16:bd:87:2c:66:41:
d4:13:15:28:48:88:0f:f6:cc:ca:3b:cf:a3:80:9f:f4:3c:91:
52:da:97:4a:ab:51:1a:b9:bb:ca:ff:05:c8:09:63:d4:05:00:
c4:00:0e:52:e3:6b:6c:16:c9:10:0d:f3:5c:e9:78:18:7e:8d:
86:91:d6:e5:ed:83:92:3e:44:dc:50:0c:ba:0d:4f:4a:6d:8f:
ec:3d:66:fc:66:43:40:e1:c2:3c:f5:44:b4:07:99:5f:42:18:
ed:9f:95:cc:51:f4:a0:8f:dc:ad:43:f5:48:4f:41:aa:70:ef:
af:52:5f:a0:49:a0:68:ad:dd:02:8c:ea:37:99:b5:65:03:d1:
90:e3:36:6d:6f:4b:a3:63:eb:e3:db:07:c8:8c:87:ad:2f:9b:
47:02:55:68:81:f6:b5:d4:2f:d6:ed:33:15:c6:4a:08:e3:2c:
01:2f:3f:d1:60:e0:60:ce:dc:cd:8a:44:09:90:16:bd:33:f5:
4b:09:7e:ae:c3:b2:23:85:eb:bc:a5:ac:e2:63:5d:f6:a6:66:
3d:16:d1:6c:17:03:e3:ee:54:40:94:a6:bc:6a:22:10:56:ec:
69:10:7f:cf:90:ed:e5:8e:63:98:82:d6:44:7a:b4:0f:7d:81:
61:c8:5a:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 13:12:36 2025 by rpki-client