Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/87THd3brvAct4JdlWIHcccYxglw.roa
File: 87THd3brvAct4JdlWIHcccYxglw.roa (raw, json)
Hash identifier: fhRJ/WKauBuPbvptYdl4kzmJlw/ckuO/1BZpcl33GNw=
Subject key identifier: F3:B4:C7:77:76:EB:BC:07:2D:E0:97:65:58:81:DC:71:C6:31:82:5C
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0D6D
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/87THd3brvAct4JdlWIHcccYxglw.roa
Signing time: Mon 26 Aug 2024 05:19:48 +0000
ROA not before: Mon 26 Aug 2024 05:19:48 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9918
IP address blocks: 61.61.0.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3437 (0xd6d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Aug 26 05:19:48 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=F3B4C77776EBBC072DE097655881DC71C631825C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:8f:82:d7:71:a3:f0:98:83:5e:40:c7:e5:f3:
94:c6:83:6b:5b:8a:a0:9c:72:44:d1:ef:20:fc:05:
2a:3e:8d:39:91:36:87:c9:8f:03:98:ef:77:73:68:
51:d3:aa:ea:ba:b0:a4:3d:22:5b:6c:a2:2b:80:3a:
2d:f8:ca:c9:2a:71:03:f8:35:d2:9e:92:01:80:db:
7e:33:5e:cf:a7:03:43:9d:17:75:72:1d:58:61:60:
2c:32:5c:ef:27:53:ee:32:b7:0a:9b:b6:b1:00:29:
88:d7:d9:d3:1a:68:4c:12:e1:ae:34:9c:6a:0a:0a:
74:86:25:5b:76:b5:18:30:c7:f7:8d:a1:13:07:04:
95:87:f0:ff:98:26:07:ce:e8:a9:4f:95:ef:5d:c0:
99:82:f6:d6:cd:4f:ca:9c:bf:51:cc:09:24:6d:8b:
9c:09:1f:1a:21:46:bf:bd:8e:b4:ba:2c:59:e7:fe:
de:10:38:f2:1b:4a:71:ff:b3:78:8d:d1:b4:19:c9:
18:c4:69:a8:8d:c6:8e:bd:31:af:5a:ed:7b:de:cd:
5b:14:93:25:c0:46:76:fb:9e:8d:3d:4b:ac:bb:ff:
c6:ab:ae:10:aa:ac:2c:d0:a0:1e:d5:c4:a0:1f:b0:
39:26:7b:96:46:a9:8c:c3:23:82:be:a7:32:6e:12:
3f:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:B4:C7:77:76:EB:BC:07:2D:E0:97:65:58:81:DC:71:C6:31:82:5C
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/87THd3brvAct4JdlWIHcccYxglw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.0.0/17
Signature Algorithm: sha256WithRSAEncryption
8b:8d:14:70:ca:cd:ff:1d:7c:85:80:b7:7d:1b:30:17:38:ca:
8d:f3:92:43:ff:6d:3e:5d:84:11:43:a2:4d:94:86:ab:74:ee:
5a:f5:39:38:17:51:3a:57:b4:7f:44:dc:1a:c7:e2:2a:63:c0:
a1:1d:ff:64:81:50:76:82:ad:0c:ca:4a:90:d0:35:29:e1:4e:
49:0e:4b:b3:81:97:2d:a6:04:88:1e:61:52:1a:7e:5f:b4:13:
02:21:57:69:d1:f5:ab:4f:b6:fc:3a:31:cb:f4:a8:ed:77:bc:
e6:a8:c9:c9:a3:ad:0b:b8:6f:86:b3:44:70:70:43:2c:f0:bf:
20:6a:90:d5:49:f7:85:b1:d8:99:58:48:51:ed:7f:4a:b1:ac:
0f:bf:bc:c3:1a:94:c7:ce:02:53:3e:99:6a:17:e0:c4:57:fb:
2f:c4:12:d9:86:81:16:70:56:ac:a2:c5:fc:1e:9f:31:5f:53:
b5:6d:fe:75:f2:13:09:cf:d7:ed:a0:98:37:b2:a6:d7:d3:1b:
53:36:d5:6f:59:15:d4:3d:fd:c6:65:82:d9:0c:8b:3f:9f:59:
1b:fc:54:87:f4:71:2d:05:ad:e0:07:c9:22:7c:e4:a5:25:20:
2a:33:ec:ee:9e:ee:03:a2:8c:f6:32:5f:e6:87:82:44:92:a3:
37:3f:a7:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:09:50 2025 by rpki-client