Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/opxYkgEAsK6XCN-DAJWRRC4wW74.roa
File: opxYkgEAsK6XCN-DAJWRRC4wW74.roa (raw, json)
Hash identifier: iXG30SJZPB/4DhCGrtWC+Qp9bHiRwgT0aEWLBvaYA7Y=
Subject key identifier: A2:9C:58:92:01:00:B0:AE:97:08:DF:83:00:95:91:44:2E:30:5B:BE
Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Certificate serial: 0D68
Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/opxYkgEAsK6XCN-DAJWRRC4wW74.roa
Signing time: Mon 10 Feb 2025 13:51:06 +0000
ROA not before: Mon 10 Feb 2025 13:51:06 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9676
IP address blocks: 61.60.128.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3432 (0xd68)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Validity
Not Before: Feb 10 13:51:06 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=A29C58920100B0AE9708DF83009591442E305BBE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:22:a2:58:e8:6f:67:e8:4e:5e:69:ce:12:91:
13:66:50:f8:50:49:c7:6a:0a:dc:12:9c:83:68:f6:
48:29:66:da:58:62:39:8b:e5:79:81:5e:5e:5d:10:
93:2b:8c:8f:fd:ac:d2:0a:ea:58:7f:ca:35:a3:85:
09:c3:d0:30:26:c1:d9:22:4a:66:05:5c:9f:d6:ec:
2d:a8:18:c2:99:6a:8d:f5:92:28:0c:c5:e9:d3:71:
08:81:76:f2:05:b9:6e:72:67:25:35:a0:83:ce:36:
24:fc:19:38:69:1f:40:af:f8:28:fb:85:69:b0:14:
d6:cc:f8:26:07:db:8d:7b:b9:b6:cc:db:b3:4e:06:
05:3c:b0:01:bd:49:2e:20:71:53:1d:61:c5:2c:a0:
ea:67:cc:2d:2d:89:74:32:67:ef:41:1d:05:13:e1:
49:dd:f8:09:40:85:22:29:a8:e8:f3:b0:e0:57:36:
30:3e:cc:a8:71:1a:6c:7e:cb:76:a0:37:4e:fe:49:
2a:0f:83:b5:be:77:56:11:f0:ba:f6:4b:2d:38:e1:
18:67:72:e9:bc:7f:2d:74:a0:3e:a9:1e:26:42:65:
39:83:09:12:21:93:30:8f:54:1f:36:be:85:d2:4c:
16:fe:e5:fb:40:74:9e:65:ef:98:6d:13:53:a7:b3:
ab:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:9C:58:92:01:00:B0:AE:97:08:DF:83:00:95:91:44:2E:30:5B:BE
X509v3 Authority Key Identifier:
keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/opxYkgEAsK6XCN-DAJWRRC4wW74.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.60.128.0/19
Signature Algorithm: sha256WithRSAEncryption
45:76:7c:0e:4b:a0:c8:5d:84:79:39:31:5d:1c:e4:21:bf:c9:
20:95:e0:bc:79:bd:ed:12:ea:0c:6c:fa:e7:03:b0:02:71:0e:
90:91:3d:4d:ae:44:2a:62:12:cd:a6:de:47:3d:6f:1a:88:c6:
0c:b7:ab:ee:f1:f8:ad:3e:44:b7:c9:50:c5:b9:f9:13:36:7e:
80:ed:c0:34:be:ad:91:f2:98:0e:fe:c4:b0:9c:28:34:4d:69:
71:45:ac:fd:22:1c:04:67:76:7b:14:76:f0:b2:17:54:28:79:
65:fd:6f:90:87:22:89:49:21:0f:85:b0:d4:15:62:8e:d5:a8:
f0:9c:26:dc:2d:c9:32:08:78:83:12:a3:aa:78:29:b7:c4:6d:
c0:3e:f4:9b:43:79:c7:d0:98:75:00:0d:1a:fa:bc:76:75:2f:
79:9f:77:e0:23:ac:d7:91:c8:7a:a2:88:4b:b5:0f:24:3c:1d:
53:71:bd:f8:bd:28:aa:8b:cb:30:63:30:f5:8f:cb:38:97:c1:
2e:21:ed:7a:1d:3c:71:ea:16:8b:4c:d1:81:a1:35:07:df:4a:
0b:a1:f7:95:9c:19:0b:10:d8:ec:fa:f5:49:c1:74:91:0f:42:
2f:02:e5:85:b6:b6:f3:1b:7f:c6:8c:62:04:f5:13:09:c4:b8:
10:4e:71:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 13:17:19 2025 by rpki-client