Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/KyCJEEGXQHgjhmBaiuQROJd-pV8.roa
File: KyCJEEGXQHgjhmBaiuQROJd-pV8.roa (raw, json)
Hash identifier: 9J+y7Gr+3RJvTXb17r+OV+732tKMscteQZd+5UiGq30=
Subject key identifier: 2B:20:89:10:41:97:40:78:23:86:60:5A:8A:E4:11:38:97:7E:A5:5F
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0C0B
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/KyCJEEGXQHgjhmBaiuQROJd-pV8.roa
Signing time: Fri 01 Sep 2023 09:13:55 +0000
ROA not before: Fri 01 Sep 2023 09:13:55 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18049
IP address blocks: 61.61.44.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3083 (0xc0b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Sep 1 09:13:55 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=2B208910419740782386605A8AE41138977EA55F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:e3:b5:a5:75:6e:0b:e8:69:16:4c:81:ee:21:
18:4f:f9:b8:8b:18:3e:5e:19:8d:cb:7c:05:5e:f9:
9e:99:65:e6:f6:71:75:52:6e:e9:f9:91:57:61:43:
c3:99:1f:65:6b:4c:16:36:17:07:6e:f7:59:34:7d:
7d:f8:15:45:0e:a5:a4:cb:82:0b:0b:00:cc:b1:9a:
72:fa:dc:f4:f2:1d:b6:47:dc:eb:67:58:3e:9e:85:
e3:59:95:71:e7:45:eb:60:cb:44:34:a7:43:e4:cc:
37:bb:bd:5f:30:2e:af:2c:af:e1:c2:7b:07:e2:48:
d1:03:43:24:a9:2c:e7:cb:b9:78:25:93:30:f1:c0:
24:d7:58:98:1a:13:22:99:a1:fc:67:52:94:09:a0:
3c:df:d1:76:5a:23:36:9d:a3:7d:5f:9b:10:0c:f7:
6b:6e:73:8e:65:a5:1e:a4:de:09:5c:37:0a:5e:31:
29:f3:9d:2b:e1:aa:c3:e1:f9:5e:52:2b:9d:17:51:
fb:17:72:82:85:09:6a:8e:de:ca:e3:2b:04:a4:40:
90:29:26:2b:b9:6f:04:74:37:44:17:09:a2:b7:81:
87:0d:76:31:e8:49:05:1d:21:56:fd:31:89:93:76:
e7:69:a7:54:38:72:51:ea:b5:9d:1f:2e:79:27:bb:
49:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:20:89:10:41:97:40:78:23:86:60:5A:8A:E4:11:38:97:7E:A5:5F
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/KyCJEEGXQHgjhmBaiuQROJd-pV8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.44.0/22
Signature Algorithm: sha256WithRSAEncryption
a5:8a:e4:55:8a:e5:b3:7d:41:5b:b2:d3:46:44:2c:19:ef:56:
b6:9a:91:de:48:dc:90:c9:43:65:af:d0:a4:a5:1b:88:2b:4a:
80:b2:86:8f:e2:07:c6:7f:38:d7:5e:ba:ff:97:b1:a6:48:c7:
78:b2:c5:b2:d0:d2:13:65:2b:cb:64:de:dd:64:f6:5e:9b:f0:
03:41:a5:69:bb:fb:fc:e4:41:0d:e1:9a:f7:bc:ad:47:1c:b9:
a2:dc:ed:ec:2e:12:b4:4c:ae:7c:53:8c:14:31:1b:5a:b5:84:
35:68:1d:1c:35:d4:ca:e2:0f:cd:67:98:2b:d8:12:97:0a:51:
84:de:7c:36:5f:57:09:75:92:23:c3:12:1a:08:b2:53:78:bf:
89:b7:d7:a4:a5:87:9e:a1:31:53:c5:dd:39:c2:98:1d:ec:8f:
8a:54:2f:28:ba:07:c3:55:62:68:a3:2c:1c:59:5d:3e:eb:6c:
b9:3a:eb:00:a0:91:26:7f:31:4c:69:04:4b:1c:58:c1:9a:f5:
20:c6:be:84:75:fc:e9:d5:19:78:12:08:f1:e1:0d:55:83:ee:
6d:8e:58:b7:38:06:96:b0:64:77:a4:bf:0a:cd:1c:93:7a:c6:
11:0d:b4:b2:3f:07:63:78:bd:d7:a1:11:d0:84:b0:cc:33:7f:
90:92:e2:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:14 2024 by rpki-client on console-ams.rpki-client.org