Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/Rhb4eOvngnzLv3yMBVdKidq0WQM.roa
File: Rhb4eOvngnzLv3yMBVdKidq0WQM.roa (raw, json)
Hash identifier: 3zzwfiaKejxc4zUJ6iiilkNDaFTCtauaN4zX0rbEGOI=
Subject key identifier: 46:16:F8:78:EB:E7:82:7C:CB:BF:7C:8C:05:57:4A:89:DA:B4:59:03
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0E07
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/Rhb4eOvngnzLv3yMBVdKidq0WQM.roa
Signing time: Mon 10 Feb 2025 13:59:21 +0000
ROA not before: Mon 10 Feb 2025 13:59:21 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9918
IP address blocks: 61.61.128.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3591 (0xe07)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Feb 10 13:59:21 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=4616F878EBE7827CCBBF7C8C05574A89DAB45903
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:54:69:35:7b:65:70:45:36:32:27:e2:41:29:
90:ec:b6:47:7a:46:2a:37:10:6e:8a:95:de:a5:8c:
5e:32:cd:9d:48:c3:ff:c1:90:60:10:bc:1e:93:e1:
a4:0f:d2:7d:20:50:59:f3:51:f7:97:91:7c:a8:97:
3a:0d:d7:e2:08:f5:57:76:7d:0f:c8:e1:7e:fa:04:
75:90:87:67:39:da:0e:bf:34:a3:81:5b:24:8d:c7:
89:53:91:2b:55:c8:c6:52:74:61:66:44:33:ac:14:
67:ed:17:fd:c0:cd:10:14:14:81:80:d1:93:95:63:
a7:16:d3:bd:5e:8a:04:ea:25:cb:37:f9:5a:23:b8:
19:4e:a2:6a:a7:9f:58:7b:34:a9:ec:3e:c5:e3:ea:
7f:54:0f:08:3d:d3:22:ec:c3:c4:55:6e:87:f6:c4:
fc:36:91:2e:9a:d8:04:94:68:68:b8:4c:0f:69:fd:
84:73:98:56:dc:d5:b4:36:51:e4:2d:b7:48:47:b6:
d7:ce:a4:4b:71:e3:fc:ea:28:ae:f5:3a:f7:07:bf:
04:50:fc:96:90:0c:6c:14:52:49:c3:a3:bb:f2:6e:
ce:e5:85:8d:5a:2f:17:6a:c9:9f:ec:9a:c5:8a:21:
ca:52:8e:13:16:9e:a5:f2:24:03:f1:da:1e:0c:42:
b4:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:16:F8:78:EB:E7:82:7C:CB:BF:7C:8C:05:57:4A:89:DA:B4:59:03
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/Rhb4eOvngnzLv3yMBVdKidq0WQM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.128.0/18
Signature Algorithm: sha256WithRSAEncryption
14:d0:86:e5:eb:e5:d7:9b:72:2f:ba:0c:40:71:99:cc:c2:87:
bc:66:d4:7c:3b:ad:c4:83:95:73:5b:fe:ca:2a:54:70:c8:91:
88:c2:92:6d:3a:21:24:a4:1d:d4:b6:e3:b5:06:6e:df:d8:0c:
eb:80:2a:c8:89:39:c9:b2:b5:ae:ca:8b:1f:12:28:35:c1:2f:
12:71:0c:a7:da:e5:b0:3a:0e:8f:8f:9c:9e:de:9f:22:ff:03:
c1:41:6e:1b:04:82:6a:c7:79:5d:19:fe:2d:da:16:97:5a:ba:
2e:78:f1:a8:52:4d:20:db:f8:98:13:26:3a:73:68:27:60:77:
c5:bb:5d:2c:89:bb:bf:c6:c9:e1:d8:94:a7:6c:71:dd:8f:6c:
7f:c0:63:da:66:39:e2:b4:18:ba:bc:74:6b:0e:ab:6e:24:a7:
5c:3f:f4:d1:f6:f7:59:65:ec:a0:e4:e9:ce:2f:58:9d:81:bd:
73:c1:c6:21:f4:48:bd:01:e7:03:30:1a:cf:0a:db:1f:4c:68:
e7:7f:a8:ff:68:87:33:9a:df:90:48:96:85:ce:56:17:4d:c5:
2d:cd:a7:fa:a1:05:7d:9a:0e:e5:81:c2:b7:dc:16:62:10:7d:
d5:bf:d9:34:2a:f1:67:9d:e0:24:3d:f9:e5:0e:b3:b8:6a:85:
d3:57:0b:fc
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICDgcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDc3
MkY3MTUzNDVCNTQyRTFENzA4QkNCMjU3MUZDRDcyREQyNkJGMzAeFw0yNTAyMTAx
MzU5MjFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQ2MTZGODc4RUJFNzgy
N0NDQkJGN0M4QzA1NTc0QTg5REFCNDU5MDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDoVGk1e2VwRTYyJ+JBKZDstkd6Rio3EG6Kld6ljF4yzZ1Iw//B
kGAQvB6T4aQP0n0gUFnzUfeXkXyolzoN1+II9Vd2fQ/I4X76BHWQh2c52g6/NKOB
WySNx4lTkStVyMZSdGFmRDOsFGftF/3AzRAUFIGA0ZOVY6cW071eigTqJcs3+Voj
uBlOomqnn1h7NKnsPsXj6n9UDwg90yLsw8RVbof2xPw2kS6a2ASUaGi4TA9p/YRz
mFbc1bQ2UeQtt0hHttfOpEtx4/zqKK71OvcHvwRQ/JaQDGwUUknDo7vybs7lhY1a
LxdqyZ/smsWKIcpSjhMWnqXyJAPx2h4MQrQDAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQURhb4eOvngnzLv3yMBVdKidq0WQMwHwYDVR0jBBgwFoAUR3L3FTRbVC4dcIvL
JXH81y3Sa/MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL1Iz
TDNGVFJiVkM0ZGNJdkxKWEg4MXkzU2FfTS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
UjNMM0ZUUmJWQzRkY0l2TEpYSDgxeTNTYV9NLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL1JoYjRlT3ZuZ256THYzeU1CVmRLaWRx
MFdRTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAY9PYAwDQYJ
KoZIhvcNAQELBQADggEBABTQhuXr5debci+6DEBxmczCh7xm1Hw7rcSDlXNb/soq
VHDIkYjCkm06ISSkHdS247UGbt/YDOuAKsiJOcmyta7Kix8SKDXBLxJxDKfa5bA6
Do+PnJ7enyL/A8FBbhsEgmrHeV0Z/i3aFpdaui548ahSTSDb+JgTJjpzaCdgd8W7
XSyJu7/GyeHYlKdscd2PbH/AY9pmOeK0GLq8dGsOq24kp1w/9NH291ll7KDk6c4v
WJ2BvXPBxiH0SL0B5wMwGs8K2x9MaOd/qP9ohzOa35BIloXOVhdNxS3Np/qhBX2a
DuWBwrfcFmIQfdW/2TQq8Wed4CQ9+eUOs7hqhdNXC/w=
-----END CERTIFICATE-----
Generated at Mon Apr 7 09:09:55 2025 by rpki-client