Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/M1xXZ6Y5rolxAx_rBtGdcYN5aSY.roa
File: M1xXZ6Y5rolxAx_rBtGdcYN5aSY.roa (raw, json)
Hash identifier: ir5d342EM2pjofrjJivQF1WD5e9N26fDJzIEgKRoU5Q=
Subject key identifier: 33:5C:57:67:A6:39:AE:89:71:03:1F:EB:06:D1:9D:71:83:79:69:26
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0D64
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/M1xXZ6Y5rolxAx_rBtGdcYN5aSY.roa
Signing time: Mon 26 Aug 2024 05:19:46 +0000
ROA not before: Mon 26 Aug 2024 05:19:46 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18049
IP address blocks: 61.61.64.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3428 (0xd64)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Aug 26 05:19:46 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=335C5767A639AE8971031FEB06D19D7183796926
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:ee:6d:ff:88:b5:00:6e:fd:d8:f7:e1:72:f7:
3b:04:53:ce:65:15:49:fd:c3:1a:62:3e:8a:34:fa:
aa:cd:52:a5:b4:22:85:de:ea:7d:63:c2:f3:7f:17:
2d:68:85:c6:64:7c:0c:2e:07:73:b8:94:5a:88:21:
93:50:4e:56:2e:b2:e3:69:95:af:e4:0a:df:70:ee:
1a:78:5c:6c:52:cb:95:60:0c:43:e1:21:fb:cb:5f:
b7:ca:9c:7a:db:6b:39:0a:ae:00:87:ab:22:1e:99:
25:c7:34:77:5b:2f:84:5a:d0:49:c5:4f:4b:a1:6e:
89:0a:1f:b0:95:35:3c:d2:10:20:be:80:4c:73:3e:
24:20:70:15:f9:93:6b:00:f8:c2:cb:d6:4f:fd:33:
6c:e0:a4:7b:04:b8:09:ae:b6:f8:7e:86:a9:31:42:
b3:9c:9e:aa:6e:c2:41:a9:0c:6c:30:b1:6a:e7:31:
f2:57:19:74:5b:c7:6c:2a:eb:26:3f:91:73:32:b4:
9c:51:e7:f0:f9:14:fe:ea:70:80:86:07:ed:d6:31:
af:74:cf:d1:16:e1:cf:d2:0d:9a:7a:0c:52:f3:3a:
80:82:8d:90:03:15:b2:c9:83:0f:66:83:ea:6a:e8:
b4:11:41:33:ff:6e:f5:2f:6e:a7:c5:f6:26:93:5e:
20:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:5C:57:67:A6:39:AE:89:71:03:1F:EB:06:D1:9D:71:83:79:69:26
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/M1xXZ6Y5rolxAx_rBtGdcYN5aSY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.64.0/22
Signature Algorithm: sha256WithRSAEncryption
a6:86:f8:bd:7b:2b:79:ed:cc:61:53:96:63:a9:a1:5f:98:71:
c9:f8:04:b1:a6:d9:c3:24:a6:59:af:40:94:84:b6:22:31:2c:
4d:08:7f:e1:ba:8b:c6:bd:c1:68:f0:b3:9b:38:73:47:2a:d8:
52:d9:7c:28:9c:8f:f7:00:cd:d1:57:87:25:93:da:02:a1:78:
e0:cb:2e:ba:8b:27:eb:12:36:78:7b:6d:24:ed:8f:ab:67:f1:
fb:03:0a:75:57:93:1e:54:70:2e:16:0a:7a:2e:1f:39:ce:7f:
61:d1:cd:b4:ef:57:38:2a:a6:ca:a1:1d:12:2f:ef:18:ca:e2:
2c:3a:03:0e:d5:76:ae:74:ef:bc:60:0d:2f:1c:98:b0:b2:cb:
ac:9a:75:8b:d7:22:d1:4b:51:dc:34:18:05:54:b1:b6:11:d4:
c1:64:c4:07:01:5e:e6:6e:f5:9f:a4:f3:7d:fd:2a:df:11:7d:
27:af:ca:1f:a5:3b:42:b5:f9:f3:ee:cc:96:fe:96:40:89:fd:
3b:85:ca:0c:b8:aa:ec:56:42:f6:fd:b7:7f:65:e0:b7:61:9f:
e1:e9:eb:27:74:d2:f2:f1:00:1b:b1:34:6c:52:23:d6:d4:f0:
ba:47:80:18:55:99:46:88:c3:c2:7e:00:ac:d0:c1:b3:25:ac:
e4:b4:13:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:01:44 2025 by rpki-client