Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/3GqTBYIEDUMMeNw_ZxlIKkYj8eE.roa
File: 3GqTBYIEDUMMeNw_ZxlIKkYj8eE.roa (raw, json)
Hash identifier: duBKnqblITAKL+UI6kMapr3yNjL1vFFwAi6sFIAU6XE=
Subject key identifier: DC:6A:93:05:82:04:0D:43:0C:78:DC:3F:67:19:48:2A:46:23:F1:E1
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0D73
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/3GqTBYIEDUMMeNw_ZxlIKkYj8eE.roa
Signing time: Mon 26 Aug 2024 05:19:50 +0000
ROA not before: Mon 26 Aug 2024 05:19:50 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18049
IP address blocks: 61.61.52.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3443 (0xd73)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Aug 26 05:19:50 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=DC6A930582040D430C78DC3F6719482A4623F1E1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:06:c2:39:d9:17:b4:af:7a:8b:f1:cc:5b:f8:
cb:12:44:f4:52:6d:54:6c:d2:ae:80:9d:e6:a1:44:
7e:76:6e:47:13:96:25:7d:23:6c:f9:b8:5d:0e:cd:
42:df:13:68:52:a9:a8:00:20:92:99:53:c4:1e:81:
34:9b:53:3a:b9:f3:3f:71:d3:c4:df:8d:59:ad:14:
9a:41:05:a7:94:5e:78:0f:33:71:99:a2:2b:91:36:
a5:ee:e2:6e:51:f7:f8:aa:ee:8a:78:27:ed:d7:d5:
85:b0:f1:52:6d:29:2d:f0:c3:22:10:1b:ed:28:63:
e2:dd:7a:37:cf:ea:c1:47:b6:ad:59:45:a6:48:75:
94:73:62:4f:9a:ce:be:e9:f1:2d:f0:21:55:4d:6e:
33:07:d3:db:27:ca:3d:8e:67:d0:b5:c6:eb:8f:f3:
20:ca:98:3e:f7:c7:b0:01:c1:da:45:a6:5d:56:e7:
e9:6b:21:a9:09:4c:3b:67:d5:00:b2:d5:20:cc:5f:
58:24:8e:43:33:6a:c6:5e:ea:73:79:87:74:ee:b6:
89:98:61:4d:a5:a0:54:0e:7a:31:47:ab:dc:e5:b1:
ca:eb:83:34:36:85:0d:fd:57:2c:1c:77:4f:70:81:
ef:63:8f:32:54:be:17:b1:df:df:fa:6d:96:36:0e:
f7:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:6A:93:05:82:04:0D:43:0C:78:DC:3F:67:19:48:2A:46:23:F1:E1
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/3GqTBYIEDUMMeNw_ZxlIKkYj8eE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.52.0/22
Signature Algorithm: sha256WithRSAEncryption
43:cc:13:ea:4c:51:c1:43:13:a7:40:30:58:c8:ba:31:1d:b2:
37:54:4b:16:1e:cb:bb:bf:5e:e4:9d:d6:d1:13:c9:1b:e4:14:
e9:4b:33:7d:99:d5:e3:46:bd:7b:b1:12:92:96:71:15:94:7f:
d0:59:ea:e7:3b:20:60:d9:a3:da:da:8d:06:4b:1b:4b:60:54:
0e:27:b5:66:bb:a4:44:ca:af:65:e3:34:10:16:a9:34:e1:27:
eb:02:b3:9a:ae:82:f7:22:e2:d8:a8:13:e5:48:e5:f6:5d:01:
35:fd:8b:0b:c2:b3:dd:09:34:52:ba:9d:a5:f2:bf:b7:69:ae:
2d:ba:ca:2f:ca:e9:b3:79:06:c1:73:fc:f2:42:a4:dc:88:cc:
d7:7a:0b:36:2b:47:36:1f:3a:68:15:27:2d:82:05:d1:26:71:
43:f5:b1:24:c2:25:74:51:9a:ab:5c:6d:03:ff:bc:49:0f:e0:
6f:6b:2e:29:ec:b3:78:e1:81:bb:09:3c:d0:5d:25:69:08:0c:
8a:66:ff:8e:4d:83:3c:08:8b:a4:01:fa:a1:d6:2e:5f:1e:d0:
7b:36:19:82:9f:e8:88:e6:6d:2d:68:29:50:74:f4:c5:21:65:
62:96:fa:5c:50:46:19:48:5f:9a:fe:77:49:7e:77:a7:06:8b:
b0:0d:c5:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:18:06 2025 by rpki-client