Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/3yA4UjxwFXt1_uecGzIE8dEL0EA.roa
File: 3yA4UjxwFXt1_uecGzIE8dEL0EA.roa (raw, json)
Hash identifier: g3zgJhNR30Mbq8JZ3sTLSGBwYyW/EMPEHEIJoFBcl58=
Subject key identifier: DF:20:38:52:3C:70:15:7B:75:FE:E7:9C:1B:32:04:F1:D1:0B:D0:40
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0D5A
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/3yA4UjxwFXt1_uecGzIE8dEL0EA.roa
Signing time: Mon 26 Aug 2024 05:19:43 +0000
ROA not before: Mon 26 Aug 2024 05:19:43 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 4780
IP address blocks: 61.61.156.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3418 (0xd5a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Aug 26 05:19:43 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=DF2038523C70157B75FEE79C1B3204F1D10BD040
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:9a:9d:5f:f1:9c:c0:8f:f6:5d:0f:ef:8b:c6:
67:f6:7b:93:d4:a7:b7:59:54:8c:12:9a:33:50:ec:
ad:51:98:11:50:7e:c6:14:0b:a1:63:67:6a:d2:45:
22:94:85:20:d1:bd:3d:ad:2d:55:87:a1:a8:4c:d9:
62:70:a4:9c:4e:64:53:de:19:4e:7b:f4:8c:23:de:
dd:2c:94:55:85:ed:36:ed:46:df:3c:f9:12:e6:f3:
70:57:42:05:54:cc:dd:86:bd:b0:08:04:f3:c7:15:
4c:f2:78:3b:5f:d4:74:e5:0f:0b:a9:79:ba:5a:5a:
2f:89:30:e6:ec:be:1c:2a:66:fa:84:d7:c5:19:6c:
55:1e:02:ac:9b:3d:e6:e6:cf:6c:21:dd:dd:c3:28:
d8:66:fa:93:4a:8d:03:7e:6d:bf:58:cf:40:fb:f9:
0c:7d:24:4c:f3:b2:7c:00:02:28:13:ef:1d:aa:b8:
04:88:2b:df:de:58:08:51:33:0e:51:cf:6e:87:5e:
64:8e:e4:ac:d4:69:80:8c:c4:4e:89:29:41:83:30:
94:ec:22:79:3c:10:a8:cd:f5:98:4d:a4:a1:b3:91:
df:93:b8:0e:95:a7:d0:ed:bd:b5:d5:42:72:ae:e0:
8e:1f:47:90:a8:43:ac:14:16:49:52:16:12:dc:be:
16:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:20:38:52:3C:70:15:7B:75:FE:E7:9C:1B:32:04:F1:D1:0B:D0:40
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/3yA4UjxwFXt1_uecGzIE8dEL0EA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.156.0/22
Signature Algorithm: sha256WithRSAEncryption
a1:de:ee:0c:06:96:2b:47:bd:3f:df:fb:56:c9:0a:e1:e6:a9:
7f:cc:95:db:e9:41:fd:17:70:b1:df:b0:d2:6a:dc:c0:82:51:
04:e1:aa:68:6a:7c:42:b3:86:73:c1:dc:fa:a0:92:b8:ae:e9:
bd:50:3e:30:74:e4:3b:e6:b7:ef:06:0b:35:53:48:2e:0c:eb:
66:40:91:e4:39:93:d5:01:c1:43:9f:38:fc:e1:65:46:4a:57:
18:fe:7e:fa:71:9d:73:49:a3:d1:b8:ca:9f:97:8e:83:4a:22:
a5:66:1e:42:b6:84:01:67:ad:b2:36:78:f1:ea:29:f4:47:20:
a2:d0:b2:5b:34:53:5e:f0:d9:2c:4b:91:57:8f:a4:29:64:79:
6c:b6:c7:e6:e1:7a:7b:6f:29:88:fe:10:13:d9:59:fc:2c:34:
31:39:7b:06:ed:7e:03:21:8c:4c:ee:df:bd:48:4f:aa:fa:b0:
96:4e:15:c8:a6:45:d3:40:26:e8:85:fd:8c:8c:12:99:36:c8:
74:bb:6d:41:1e:1e:4d:cd:39:de:25:a7:60:10:0a:71:db:63:
16:ee:6b:af:4c:ed:97:f3:94:09:a3:ee:3e:3c:fa:0a:7b:2c:
6a:0f:66:85:68:d3:7e:1e:bf:f8:73:66:87:a6:d2:f8:b4:ab:
2a:11:0f:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:20:31 2025 by rpki-client