Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/-WvPtYlZI2MuilMqUnwWLNJdRok.roa
File: -WvPtYlZI2MuilMqUnwWLNJdRok.roa (raw, json)
Hash identifier: V7RAfPmUtznyYnPmpKHOURmaDUxkMbsCReKZp6C+klo=
Subject key identifier: F9:6B:CF:B5:89:59:23:63:2E:8A:53:2A:52:7C:16:2C:D2:5D:46:89
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0D68
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/-WvPtYlZI2MuilMqUnwWLNJdRok.roa
Signing time: Mon 26 Aug 2024 05:19:47 +0000
ROA not before: Mon 26 Aug 2024 05:19:47 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9919
IP address blocks: 61.61.128.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3432 (0xd68)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Aug 26 05:19:47 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=F96BCFB5895923632E8A532A527C162CD25D4689
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:32:7f:59:79:18:0f:52:df:76:58:dc:5b:b2:
89:dd:bc:af:cd:7f:a5:39:f3:ec:c9:8c:b1:9f:e8:
a8:48:f1:9a:02:38:cf:2e:95:0f:9f:2c:f4:d5:b3:
fb:2d:25:27:4b:30:ff:36:fe:ef:20:35:2a:49:d1:
22:0c:af:2e:77:1c:2d:a3:87:6c:67:2c:bf:df:89:
e4:5d:28:09:23:51:5b:d8:4a:53:12:72:d2:57:02:
f1:4c:d4:92:02:fa:30:3c:d2:f9:c8:48:02:f6:6b:
6b:75:e2:86:92:48:ec:0f:03:0f:b2:cf:ee:8a:49:
02:dd:32:3e:b9:d8:0a:cd:94:a3:34:74:00:60:ac:
f6:e2:90:a0:7f:10:cb:bb:6a:88:fd:36:4c:a5:96:
2a:04:c0:87:24:08:c4:95:5f:16:49:92:c7:87:66:
15:d0:50:2f:f0:9e:e5:ef:15:8d:ad:2e:a4:8c:fb:
98:e6:5b:a3:07:78:42:89:f5:5f:d9:2b:05:d3:6b:
d6:22:ed:95:e9:be:f9:b0:ec:d8:f0:d9:00:62:8b:
ee:3e:b1:3a:40:20:3f:00:b3:25:5a:60:11:9f:39:
1e:a7:aa:d8:e9:1c:ff:53:6a:e2:f6:eb:76:96:1f:
51:45:7c:f2:b0:3e:13:ac:0e:db:7f:1c:44:15:76:
d9:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:6B:CF:B5:89:59:23:63:2E:8A:53:2A:52:7C:16:2C:D2:5D:46:89
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/-WvPtYlZI2MuilMqUnwWLNJdRok.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.128.0/18
Signature Algorithm: sha256WithRSAEncryption
3c:66:52:b1:4a:27:34:56:14:e9:38:e8:e3:27:ee:c0:8e:2f:
97:04:fd:73:61:cf:74:f5:5a:dd:1d:48:9a:01:ba:b7:ea:71:
16:5a:1a:06:8d:44:1f:20:e7:9b:17:3a:d1:35:8d:b1:fe:76:
12:6b:ca:fc:04:84:b0:bc:ab:9d:af:c0:ee:14:86:dc:f8:34:
72:25:cc:13:6c:38:a7:1e:25:c3:e7:c3:46:50:1f:99:83:98:
3b:8e:70:72:6b:af:9a:49:69:0c:c4:8c:7c:5f:94:3f:43:11:
28:a3:58:2e:3f:71:41:98:1a:46:5e:4f:80:d4:d5:97:5f:02:
bb:c2:5d:8e:cd:83:1a:0e:3d:72:c3:c5:65:01:f9:51:ec:93:
d3:68:ea:07:2c:cc:96:72:bb:0e:32:01:51:ec:78:19:b7:10:
45:87:0d:e3:a3:6a:9b:de:65:e5:02:06:67:dc:66:1b:75:92:
e2:15:91:b3:77:63:93:c3:c3:2b:a0:52:e4:11:17:0d:6b:94:
f2:ba:d1:22:66:2d:88:26:6c:b9:6b:4b:a0:5b:c4:22:7e:a0:
2e:3b:37:d0:4e:11:b2:fd:74:f3:7d:6c:2f:be:01:45:a1:ba:
a0:39:0d:4e:33:e3:5c:36:05:ce:f3:0f:8b:ea:fc:2d:6f:bf:
13:ad:8b:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:07:37 2025 by rpki-client