Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/JYT-fH_XETR31fNjDJLAvfhJRPk.roa
File: JYT-fH_XETR31fNjDJLAvfhJRPk.roa (raw, json)
Hash identifier: D99igODa0kJA/aIPekGKQ8NjGX9hlxiOxNgBY1yBeKY=
Subject key identifier: 25:84:FE:7C:7F:D7:11:34:77:D5:F3:63:0C:92:C0:BD:F8:49:44:F9
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0E0D
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/JYT-fH_XETR31fNjDJLAvfhJRPk.roa
Signing time: Mon 10 Feb 2025 13:59:23 +0000
ROA not before: Mon 10 Feb 2025 13:59:23 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 4780
IP address blocks: 61.61.156.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3597 (0xe0d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Feb 10 13:59:23 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=2584FE7C7FD7113477D5F3630C92C0BDF84944F9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:d0:c6:9a:72:bb:3f:29:ce:70:a9:62:69:d3:
da:7f:e2:0d:79:d9:77:54:cb:29:a6:31:df:d8:86:
8d:d1:93:f8:a2:e4:18:7c:70:eb:26:e6:dc:b4:2d:
ef:8b:5a:b4:b2:41:a2:0e:da:8e:43:38:ba:36:7b:
64:45:76:45:b5:3a:0b:97:d4:01:5a:3e:cf:96:27:
ad:3f:e1:93:f1:15:89:59:ae:04:8b:53:44:d9:cb:
23:71:c2:3e:da:e4:05:47:86:15:b0:b8:72:9c:8a:
1f:67:88:07:be:2f:88:6c:39:6b:d7:82:d1:d4:db:
ea:ce:eb:98:9b:95:6b:26:e4:40:e9:cd:4d:81:48:
d1:18:7f:9a:7e:cd:ff:66:b5:aa:dd:bf:8c:37:ca:
d3:96:4a:8a:d1:6b:62:bb:f9:d1:6a:46:ac:8a:5a:
ea:39:b3:79:f0:94:42:ef:b7:4f:fe:7d:93:36:d9:
d7:0a:51:33:0d:c7:2d:8d:62:f7:ec:27:f0:46:3f:
37:ac:78:00:d2:77:87:14:3e:80:75:31:a5:7a:8b:
ce:47:70:e0:04:70:06:dd:b1:37:32:4b:b4:e8:3b:
f8:60:0b:91:3b:47:dc:72:bf:36:a4:9d:54:97:f2:
b0:e5:38:eb:b1:32:da:7c:aa:fa:35:39:e7:39:fb:
d9:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:84:FE:7C:7F:D7:11:34:77:D5:F3:63:0C:92:C0:BD:F8:49:44:F9
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/JYT-fH_XETR31fNjDJLAvfhJRPk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.156.0/22
Signature Algorithm: sha256WithRSAEncryption
31:d4:4f:07:81:eb:30:3b:e9:be:d1:ce:09:32:0b:93:f5:cc:
87:f5:70:3b:58:a9:f7:4c:dd:e7:dd:3b:a4:98:6f:9a:c6:1b:
32:e9:91:e0:8d:d8:64:86:d3:b8:b1:67:fe:ce:65:17:17:57:
a8:6f:c3:22:32:b5:24:a6:08:2b:50:af:ee:4d:8b:88:f5:00:
54:c2:9c:3e:61:0f:94:da:9e:87:5e:59:49:c6:48:e7:7c:ab:
5c:43:93:7d:ab:7c:a7:22:63:e4:77:7b:af:39:ac:f4:68:6f:
d5:2f:99:66:1c:6e:8d:42:ad:e2:ab:12:64:2c:50:23:7d:47:
e6:01:15:a2:71:bf:d3:cc:bb:93:00:fc:d6:7f:be:0d:b9:1f:
9c:db:e1:24:fc:8e:da:81:20:55:61:7f:dd:3b:9d:61:76:b5:
ae:40:e0:4a:46:09:48:61:0e:e9:bc:e0:e8:c5:95:e3:56:c2:
af:47:4b:2d:bd:83:ca:cb:96:b9:e5:63:e6:d2:80:bd:21:bf:
15:8c:2d:83:de:15:ae:98:9f:e9:9f:14:ef:e4:e6:fb:40:fd:
62:b8:2e:36:ab:08:c6:2e:4e:fd:63:7c:80:00:e4:85:19:97:
51:41:5e:bd:7a:4c:77:94:e3:3c:18:cd:7a:fe:f4:7f:73:de:
84:6c:84:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 15:03:28 2025 by rpki-client