Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/G9sNDeYN9TSx2s50RAodEnMokaY.roa
File: G9sNDeYN9TSx2s50RAodEnMokaY.roa (raw, json)
Hash identifier: o37qvREc6bX3M1h30Bq2ZG2w4jTWzNRtI36r6wIGzy4=
Subject key identifier: 1B:DB:0D:0D:E6:0D:F5:34:B1:DA:CE:74:44:0A:1D:12:73:28:91:A6
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0E11
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/G9sNDeYN9TSx2s50RAodEnMokaY.roa
Signing time: Mon 10 Feb 2025 13:59:24 +0000
ROA not before: Mon 10 Feb 2025 13:59:24 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 36408
IP address blocks: 61.61.69.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3601 (0xe11)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Feb 10 13:59:24 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=1BDB0D0DE60DF534B1DACE74440A1D12732891A6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:70:1a:5d:95:66:3a:06:84:0a:47:12:a6:7c:
07:12:63:c9:ac:86:66:8a:88:70:a8:a1:97:01:69:
b6:46:17:ca:2e:46:28:cf:63:e8:ce:ad:71:e8:97:
f2:71:59:13:10:3e:22:c9:17:b9:e0:52:1e:c5:eb:
de:50:e7:7a:45:64:55:f9:ad:c2:a1:3c:b4:79:6b:
ad:24:3f:fe:20:b7:a6:34:ec:4d:3f:1a:c3:1a:68:
10:e8:ac:e5:a1:43:8a:3e:5a:b1:17:fe:f1:55:91:
ad:7c:88:da:51:39:c1:d5:c4:d3:b4:98:da:22:5e:
0a:51:2b:4c:37:58:f1:41:52:78:a7:bb:65:9b:6c:
f0:d7:a3:9b:1b:e8:e5:b5:9c:6b:ba:96:65:53:5e:
08:94:93:df:01:c0:28:e8:ef:7a:d1:74:f7:df:64:
0c:cf:ce:a6:30:41:ab:b9:90:5e:77:41:79:bd:e0:
4c:dd:79:c8:3e:15:72:88:29:86:1b:c3:31:1b:62:
38:1d:8d:92:0e:dd:ed:c6:6d:3a:9c:91:b5:5c:93:
3c:f5:b9:a3:67:ff:60:82:31:4c:e4:c3:bc:73:e8:
9f:94:97:32:9e:75:76:a9:b0:21:e5:db:3c:c8:76:
05:ad:30:b4:17:18:a2:ee:f7:5f:77:35:8c:d4:87:
fe:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:DB:0D:0D:E6:0D:F5:34:B1:DA:CE:74:44:0A:1D:12:73:28:91:A6
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/G9sNDeYN9TSx2s50RAodEnMokaY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.69.0/24
Signature Algorithm: sha256WithRSAEncryption
71:37:13:2d:71:1c:ff:57:cf:6a:88:ca:fd:24:07:e4:46:dc:
16:ca:73:3e:d4:2b:b0:d5:3c:73:3f:a4:e1:2a:d8:2b:35:eb:
a3:4d:d9:18:2c:e7:39:35:c2:90:1a:cf:ad:40:b3:58:a4:01:
52:ef:b7:1a:d7:b4:57:04:78:7c:a6:68:83:59:0b:6d:c3:9d:
22:fe:94:66:f2:fe:84:03:e5:a8:ec:3d:81:23:fa:9f:23:83:
7f:d2:60:9b:4c:be:37:57:f5:8b:ab:8a:f0:6b:6f:f1:f1:cf:
3c:bd:0d:76:f8:57:2b:30:cb:64:c2:55:b3:b1:f4:3b:8b:56:
32:7c:b5:06:57:88:fe:d8:ca:eb:b3:64:db:6d:6f:33:b4:9c:
47:78:f8:0c:ac:ab:33:90:cf:a3:8d:a3:a2:f1:e1:3c:53:90:
60:b5:0c:79:81:6c:c6:88:f2:9c:71:7b:b7:33:38:81:42:f1:
c9:20:57:3d:03:37:d3:ad:00:a8:d6:30:b7:40:e9:34:26:d5:
52:0c:23:3a:b5:10:9c:4c:4a:58:40:53:7c:d3:cb:8c:b5:9e:
6c:56:8a:91:ea:e0:eb:17:ac:f4:58:d5:cb:1c:21:aa:ac:e9:
3d:65:29:db:9b:87:5f:71:f4:95:91:75:26:1c:11:ae:a3:40:
01:ea:9a:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:07:34 2025 by rpki-client