Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/26FK5E0bLZrXUs7Ghhvy5g9YMfQ.roa
File: 26FK5E0bLZrXUs7Ghhvy5g9YMfQ.roa (raw, json)
Hash identifier: z+COLOVNVwNtOgBFaxTY36v0qf66MwQE516ixOMNiEY=
Subject key identifier: DB:A1:4A:E4:4D:1B:2D:9A:D7:52:CE:C6:86:1B:F2:E6:0F:58:31:F4
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0C1F
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/26FK5E0bLZrXUs7Ghhvy5g9YMfQ.roa
Signing time: Fri 01 Sep 2023 09:14:00 +0000
ROA not before: Fri 01 Sep 2023 09:14:00 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18049
IP address blocks: 61.61.56.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3103 (0xc1f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Sep 1 09:14:00 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=DBA14AE44D1B2D9AD752CEC6861BF2E60F5831F4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:af:1c:90:d7:34:3a:83:44:7d:36:a5:cd:ae:
d4:0e:3b:a9:da:88:9a:ba:99:57:70:a7:4b:14:4c:
bf:98:7f:60:c1:96:ab:2f:84:03:c9:04:77:34:ec:
b2:74:d0:21:98:a0:d2:25:45:e9:dd:28:18:c6:99:
92:40:b6:5a:4f:ac:5d:1d:82:e0:11:9a:7c:8a:22:
0e:31:90:d2:80:66:dd:aa:1b:ad:1f:7e:73:e0:a4:
aa:14:f7:b0:b3:07:72:98:03:26:5d:35:cf:c6:cd:
65:c2:29:c9:de:f1:26:f6:25:cd:a9:46:0e:fe:76:
79:86:cb:a8:cb:27:b1:cc:61:18:b6:81:9f:f5:1c:
dd:e2:e9:0b:56:23:02:6e:d3:52:56:b6:e4:89:3f:
b1:66:1d:64:88:87:e7:11:4f:03:67:57:2c:cb:f9:
8d:95:b5:f3:6c:03:75:1d:66:44:02:70:e7:d6:4b:
fe:5e:70:3b:64:48:34:33:69:cb:76:4a:81:3f:87:
31:69:cd:f3:68:00:ad:b7:3f:c6:cd:7a:69:54:4e:
86:2d:44:0c:f6:74:e9:cf:44:3e:ab:51:55:50:07:
fa:ee:f7:7a:0e:6c:01:8c:f6:00:a6:e0:4b:a3:ac:
7f:d7:5f:28:b9:35:ee:53:eb:44:f2:86:2f:c3:48:
02:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:A1:4A:E4:4D:1B:2D:9A:D7:52:CE:C6:86:1B:F2:E6:0F:58:31:F4
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/26FK5E0bLZrXUs7Ghhvy5g9YMfQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.56.0/22
Signature Algorithm: sha256WithRSAEncryption
93:5f:89:49:ef:df:30:ee:1f:15:b4:79:a8:e7:3a:a5:8f:50:
be:b3:f4:63:b6:38:6b:51:c0:68:f4:8f:3a:6b:bc:42:a2:0c:
67:5c:e6:14:d2:de:bc:fd:b5:1d:1c:9c:df:a4:9d:7c:12:c5:
e9:a6:df:47:97:85:4b:4c:da:ed:36:a8:62:c8:b4:95:20:c7:
3e:16:0b:64:5b:16:e3:a3:d0:1f:a9:a4:1a:6e:45:c9:7b:d3:
d3:d8:23:84:05:7d:e0:e5:b5:ea:a3:d9:1d:fe:a1:90:ab:d2:
70:03:64:60:4a:a8:30:12:2d:b9:0e:13:f8:ff:2b:cf:9a:8c:
d9:d6:3e:aa:cf:7e:0c:7d:c2:49:68:ec:75:92:31:8f:5c:50:
9e:8c:df:9d:15:c1:f9:5c:2b:4d:b8:76:42:bc:ae:3e:4d:57:
80:ff:f2:4d:d5:fa:3e:0d:62:83:19:ac:92:6c:eb:c8:79:c5:
56:0a:ba:a7:f1:a0:41:fd:b0:7b:8c:e5:6f:11:7f:46:fd:09:
3e:7f:7a:72:0f:85:01:38:99:cd:8f:8d:45:63:59:e6:9b:a4:
f5:51:bb:0f:e3:6d:df:07:7f:73:fc:4e:13:9c:25:51:6a:cf:
07:20:54:38:18:82:aa:be:d7:c6:11:7e:f5:21:5e:ae:9c:9a:
84:27:1e:db
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICDB8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDc3
MkY3MTUzNDVCNTQyRTFENzA4QkNCMjU3MUZDRDcyREQyNkJGMzAeFw0yMzA5MDEw
OTE0MDBaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKERCQTE0QUU0NEQxQjJE
OUFENzUyQ0VDNjg2MUJGMkU2MEY1ODMxRjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDHrxyQ1zQ6g0R9NqXNrtQOO6naiJq6mVdwp0sUTL+Yf2DBlqsv
hAPJBHc07LJ00CGYoNIlRendKBjGmZJAtlpPrF0dguARmnyKIg4xkNKAZt2qG60f
fnPgpKoU97CzB3KYAyZdNc/GzWXCKcne8Sb2Jc2pRg7+dnmGy6jLJ7HMYRi2gZ/1
HN3i6QtWIwJu01JWtuSJP7FmHWSIh+cRTwNnVyzL+Y2VtfNsA3UdZkQCcOfWS/5e
cDtkSDQzact2SoE/hzFpzfNoAK23P8bNemlUToYtRAz2dOnPRD6rUVVQB/ru93oO
bAGM9gCm4EujrH/XXyi5Ne5T60Tyhi/DSAL7AgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQU26FK5E0bLZrXUs7Ghhvy5g9YMfQwHwYDVR0jBBgwFoAUR3L3FTRbVC4dcIvL
JXH81y3Sa/MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL1Iz
TDNGVFJiVkM0ZGNJdkxKWEg4MXkzU2FfTS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
UjNMM0ZUUmJWQzRkY0l2TEpYSDgxeTNTYV9NLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvS0dULzI2Rks1RTBiTFpyWFVzN0doaHZ5NWc5
WU1mUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAI9PTgwDQYJ
KoZIhvcNAQELBQADggEBAJNfiUnv3zDuHxW0eajnOqWPUL6z9GO2OGtRwGj0jzpr
vEKiDGdc5hTS3rz9tR0cnN+knXwSxemm30eXhUtM2u02qGLItJUgxz4WC2RbFuOj
0B+ppBpuRcl709PYI4QFfeDlteqj2R3+oZCr0nADZGBKqDASLbkOE/j/K8+ajNnW
PqrPfgx9wklo7HWSMY9cUJ6M350VwflcK024dkK8rj5NV4D/8k3V+j4NYoMZrJJs
68h5xVYKuqfxoEH9sHuM5W8Rf0b9CT5/enIPhQE4mc2PjUVjWeabpPVRuw/jbd8H
f3P8ThOcJVFqzwcgVDgYgqq+18YRfvUhXq6cmoQnHts=
-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:14 2024 by rpki-client on console-ams.rpki-client.org