Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/JB8n_LtWHiLJy2LF3d2pgSgagyg.roa
File: JB8n_LtWHiLJy2LF3d2pgSgagyg.roa (raw, json)
Hash identifier: hJgLWnPO2KMCgkyJ7sjsG4afX9g9rKb/xOFg/Ivh7iw=
Subject key identifier: 24:1F:27:FC:BB:56:1E:22:C9:CB:62:C5:DD:DD:A9:81:28:1A:83:28
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0C26
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/JB8n_LtWHiLJy2LF3d2pgSgagyg.roa
Signing time: Fri 01 Sep 2023 09:14:02 +0000
ROA not before: Fri 01 Sep 2023 09:14:02 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 4780
IP address blocks: 61.61.156.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3110 (0xc26)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Sep 1 09:14:02 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=241F27FCBB561E22C9CB62C5DDDDA981281A8328
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:73:27:d0:f7:80:2a:1d:59:4d:12:4f:13:89:
43:a9:c4:45:e1:fe:1e:86:0d:7d:aa:7a:3c:5d:1c:
8d:e2:16:63:66:91:f6:81:52:14:b0:d9:3a:32:34:
d2:76:e7:d2:60:36:f4:0c:47:1e:34:c0:d8:79:ba:
04:a8:e8:ec:ea:d2:39:ce:ba:18:55:b9:66:88:a7:
83:1a:b6:59:72:7b:1b:e8:fc:bc:29:07:1a:ae:a7:
21:b7:e7:9f:04:94:24:0b:52:16:9a:25:a5:66:56:
24:52:ee:a9:d3:ea:9c:48:6a:e1:da:7c:83:99:35:
4e:99:c9:1e:d3:d1:64:92:57:a7:69:fd:5c:04:05:
12:c4:a6:90:34:ce:66:b6:55:8d:bb:8c:52:df:b9:
9b:96:92:62:82:46:d5:6e:9e:87:6e:a1:bf:bd:5d:
61:20:90:82:78:c5:53:ca:71:ef:0a:26:7f:9e:d3:
32:5e:92:26:21:2c:2d:2d:e7:8e:7f:86:0e:73:bb:
81:ef:b8:95:0d:f4:d0:28:ac:6d:62:07:39:e4:7f:
65:6e:fe:70:8a:84:72:1e:c9:c1:98:49:6c:ca:44:
ff:53:34:43:21:55:c3:61:78:eb:04:8c:53:54:0f:
27:7b:87:78:81:b1:af:99:96:ab:61:59:d9:89:d2:
49:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:1F:27:FC:BB:56:1E:22:C9:CB:62:C5:DD:DD:A9:81:28:1A:83:28
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/JB8n_LtWHiLJy2LF3d2pgSgagyg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.156.0/22
Signature Algorithm: sha256WithRSAEncryption
18:5b:05:90:98:1b:7f:d3:ef:40:e3:15:f5:2d:6f:0d:50:71:
dc:86:8e:c5:8d:c3:59:46:41:bf:c6:7d:c2:a4:fe:6f:d4:18:
20:a5:a6:d7:bc:62:de:e8:10:4c:69:f5:54:6f:8f:9f:ca:8b:
35:24:53:42:98:78:48:bc:b1:d9:d1:0c:d7:a8:3b:d9:fa:15:
b2:96:1e:b3:70:f0:ff:ec:54:c6:56:ca:d5:6f:9c:43:d7:da:
b3:fb:85:aa:f0:a7:97:98:ed:54:46:22:ee:35:4c:1a:a9:96:
a7:1f:2c:8d:9e:ee:39:68:42:f4:39:4a:58:d8:84:55:a7:ff:
35:de:db:d0:b0:dd:15:8d:94:5b:7b:79:4e:56:e1:27:be:89:
da:cc:23:e1:e7:b2:87:6b:37:01:da:d6:d9:7b:d3:c8:50:27:
35:80:da:45:cc:e0:9c:6a:09:3b:26:a9:33:a6:28:53:6f:53:
43:8f:7c:b9:40:4b:a5:9f:d3:15:b5:9c:ea:2f:97:ed:36:40:
48:ea:c4:40:1f:66:57:9a:74:1b:e2:98:8b:b5:68:ef:6d:29:
68:54:10:32:d5:25:5e:75:2a:88:cc:33:47:cb:3a:a1:a1:0a:
e3:49:0a:fc:8b:41:14:b3:8b:61:fa:ec:69:a6:ff:5e:97:09:
98:85:2b:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:21 2024 by rpki-client on console-fra.rpki-client.org