Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/PxbT4OmSUSYCqNeZkUSZXvHLJC0.roa
File: PxbT4OmSUSYCqNeZkUSZXvHLJC0.roa (raw, json)
Hash identifier: NoaUqhOr/YD2T4Je9wnjpNUnVulAmDbmYRVh50qXSaY=
Subject key identifier: 3F:16:D3:E0:E9:92:51:26:02:A8:D7:99:91:44:99:5E:F1:CB:24:2D
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0D6A
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/PxbT4OmSUSYCqNeZkUSZXvHLJC0.roa
Signing time: Mon 26 Aug 2024 05:19:47 +0000
ROA not before: Mon 26 Aug 2024 05:19:47 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9919
IP address blocks: 61.61.48.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3434 (0xd6a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Aug 26 05:19:47 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=3F16D3E0E992512602A8D7999144995EF1CB242D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:f5:90:aa:58:d5:af:5d:4f:15:8f:75:69:b2:
48:22:84:2d:c0:cf:2a:e2:0c:93:4e:7b:fc:8f:f0:
ec:60:1d:dc:8b:d0:94:d9:8d:ca:2d:da:fc:08:5a:
80:c8:a9:f4:8d:70:8f:5e:0c:72:6c:b3:61:3d:65:
88:2e:35:71:07:83:ab:26:33:31:a3:50:20:6e:85:
2d:49:46:80:e4:36:0f:93:53:20:8d:f0:61:58:be:
b8:45:d1:35:6a:cf:f3:4b:a7:10:15:55:40:08:28:
88:db:6f:b5:30:d8:cf:03:73:2e:3d:55:d5:02:ce:
f6:f0:7b:2c:a0:ff:a8:d4:30:f2:da:00:c6:bc:c9:
96:ed:02:1a:54:cc:3a:8c:08:00:f8:6e:f7:71:af:
20:91:6a:ec:0d:d8:f0:30:09:dd:7b:9b:bc:b1:09:
fb:53:7a:67:da:9a:70:6d:3c:95:8b:bd:24:75:91:
f6:cd:bb:21:32:63:0f:3f:f0:03:f8:ca:fd:50:9f:
b0:5e:f1:15:ba:45:d7:96:03:24:1b:92:92:54:42:
e5:98:d9:95:d0:e4:83:10:c8:5e:43:d9:88:37:3d:
8e:2d:48:a1:6b:5a:0b:db:65:af:a4:97:9d:95:d0:
57:ad:4d:38:36:e9:d2:31:55:89:0f:da:92:59:e4:
f4:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:16:D3:E0:E9:92:51:26:02:A8:D7:99:91:44:99:5E:F1:CB:24:2D
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/PxbT4OmSUSYCqNeZkUSZXvHLJC0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.48.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:33:b8:03:0d:70:25:3c:7a:4d:8f:68:5a:26:28:3d:df:f6:
b6:49:94:61:ef:aa:5a:24:1a:bc:34:ac:e6:e1:1f:95:f8:a1:
b1:81:50:83:66:93:59:de:b5:ba:4f:c6:1f:8e:ef:23:d0:dc:
8e:b3:56:47:02:d0:7a:f3:ff:48:15:6e:06:07:2c:8f:65:8c:
4c:06:e6:f8:77:f1:4a:d6:87:ce:8f:a3:bf:61:4b:54:2b:96:
ac:47:4b:b7:7f:df:31:df:c9:a3:89:9f:4a:1a:37:d6:53:56:
50:13:8e:ff:81:9d:de:06:f9:09:db:57:26:31:ea:a3:78:de:
fa:81:b4:1d:60:03:53:4a:c4:6e:e8:6e:41:3c:03:22:28:8d:
9e:a1:cd:62:2a:71:91:0f:83:bc:cc:45:ec:cc:f6:bc:fb:2e:
15:28:13:67:02:2f:72:0e:97:3d:95:f2:d1:99:3a:7c:6a:c7:
f9:92:c2:20:84:52:e4:79:13:0d:bc:04:6a:ca:91:1a:b4:29:
4f:95:1f:ff:53:55:e3:e8:40:09:b3:71:68:be:eb:7a:e1:c2:
fa:bf:3e:a1:2e:63:51:60:65:44:cd:73:91:26:42:c0:3d:ea:
d7:3d:33:f5:72:69:ab:bd:35:4a:d3:0b:63:da:0f:95:dd:36:
69:21:41:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:09:54 2025 by rpki-client