Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/FBey0vFHuk2-mYPcn76OZv1n4Ls.roa
File: FBey0vFHuk2-mYPcn76OZv1n4Ls.roa (raw, json)
Hash identifier: S19WM4ULb6ZYZ7HMjLweRLc3BXXRzIeABbaLB8rBCnA=
Subject key identifier: 14:17:B2:D2:F1:47:BA:4D:BE:99:83:DC:9F:BE:8E:66:FD:67:E0:BB
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0E15
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/FBey0vFHuk2-mYPcn76OZv1n4Ls.roa
Signing time: Mon 10 Feb 2025 13:59:24 +0000
ROA not before: Mon 10 Feb 2025 13:59:24 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131597
IP address blocks: 61.61.71.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3605 (0xe15)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Feb 10 13:59:24 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=1417B2D2F147BA4DBE9983DC9FBE8E66FD67E0BB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:62:d6:cb:12:c4:12:52:30:9e:9c:fc:2d:ca:
b2:52:2f:8c:a8:65:46:c8:88:a2:76:73:21:49:ea:
6d:be:51:ea:51:ec:f6:f5:81:5f:41:e1:63:72:2c:
dc:59:8c:e9:58:ca:df:3e:9f:1c:62:b1:a5:7a:0e:
b4:c4:43:8e:65:9d:b2:9d:e6:03:02:54:56:38:90:
c0:a9:5f:7b:f9:f0:5e:5c:d6:51:a8:80:93:c4:08:
7b:48:53:8e:e6:92:e0:c4:0d:54:82:5d:ca:01:42:
6f:d6:7b:9a:b8:0d:34:a9:af:18:d9:be:9c:31:bc:
bd:6a:8b:9d:e9:5b:06:37:3f:e9:be:46:91:c8:69:
23:c3:d9:c7:a8:4b:68:11:b3:bf:16:91:fe:fe:ab:
9c:5f:f4:29:28:51:41:ea:b6:e4:17:21:49:66:a6:
60:7e:ad:bb:7f:fc:8f:45:36:6f:e0:ff:af:45:df:
29:83:f2:2c:68:59:6a:09:90:ea:c8:5b:48:ff:a6:
0b:ee:51:ac:e8:d7:a7:59:4c:70:58:53:fc:a5:61:
da:dc:3b:66:7f:24:c7:53:98:bb:ee:81:1a:c0:24:
6b:f8:ef:aa:42:89:06:77:b1:ba:f6:f9:cc:e4:cd:
f0:28:f9:cc:9b:04:57:c4:74:41:6b:41:e3:fe:e2:
cd:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:17:B2:D2:F1:47:BA:4D:BE:99:83:DC:9F:BE:8E:66:FD:67:E0:BB
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/FBey0vFHuk2-mYPcn76OZv1n4Ls.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.71.0/24
Signature Algorithm: sha256WithRSAEncryption
73:b2:52:1d:7e:0b:a4:df:ce:63:bc:af:03:d0:0c:55:54:39:
40:e0:40:5d:ed:e4:20:0c:13:73:2b:6d:bf:c8:3b:e3:2f:cd:
25:dd:55:c8:bf:7b:31:3e:1b:1c:57:80:9e:8a:6f:cf:bd:14:
a1:77:b1:c9:ce:97:0f:ff:78:81:75:45:4b:d0:80:97:9a:43:
08:92:46:15:40:35:2c:e7:56:58:c8:ac:f9:75:f7:39:e3:6e:
91:eb:6b:41:13:a3:f0:35:7a:d6:ff:85:ac:24:ae:aa:f9:9b:
36:86:2b:c0:5d:d9:7f:1e:25:67:af:0c:81:81:f4:c2:7b:53:
6b:7c:0d:be:6b:a0:29:80:b5:25:26:45:27:73:0f:ae:69:1a:
48:15:56:64:bb:a0:1e:67:55:7c:27:06:7e:94:fe:68:06:8f:
99:48:ee:00:6d:4d:93:3d:5c:0e:ea:0e:8d:a5:c4:3d:ad:98:
83:6a:a4:83:f3:7b:50:b1:36:1a:a9:c1:9a:f1:76:e7:18:3d:
b1:3f:80:75:2b:24:35:e1:e3:df:1b:5e:e6:d0:78:50:9d:1b:
47:ea:45:b5:ae:b6:42:eb:db:8c:6f:1f:f6:69:89:54:73:30:
64:a3:d2:bc:d4:b6:91:49:d5:7e:61:e8:8a:f5:ee:ec:de:94:
45:13:ac:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 08:53:33 2025 by rpki-client