Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/UBS4JWjvueOqWBcNYWYHNN-tyKs.roa
File: UBS4JWjvueOqWBcNYWYHNN-tyKs.roa (raw, json)
Hash identifier: O+e8BVqpqkgw7l7oXkyrEWOMsRmxe2MEotxYgPz4QWI=
Subject key identifier: 50:14:B8:25:68:EF:B9:E3:AA:58:17:0D:61:66:07:34:DF:AD:C8:AB
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0D74
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/UBS4JWjvueOqWBcNYWYHNN-tyKs.roa
Signing time: Mon 26 Aug 2024 05:19:50 +0000
ROA not before: Mon 26 Aug 2024 05:19:50 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131602
IP address blocks: 211.78.8.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3444 (0xd74)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Aug 26 05:19:50 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=5014B82568EFB9E3AA58170D61660734DFADC8AB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:07:1f:55:cb:03:6c:34:b2:c3:ab:54:84:6d:
e1:16:3b:df:c2:95:b9:d8:d2:d3:79:d2:b1:37:57:
b6:3e:3f:9b:de:65:d1:4d:f4:fc:81:65:19:f0:1c:
60:65:00:ec:3a:1f:12:76:8e:37:48:7a:2b:7c:8d:
be:dc:3b:0c:5e:4c:db:14:8f:b4:4a:ca:f2:89:6f:
92:71:16:79:e4:d1:7e:29:41:69:f7:2b:72:0b:1a:
d1:e6:01:96:b7:d6:c6:9c:5c:af:cb:13:39:aa:7e:
46:12:35:48:39:2d:93:c8:ef:86:eb:90:a0:e4:96:
d9:1f:93:62:08:0d:b0:42:41:20:65:84:0c:60:d8:
13:21:3e:41:90:cd:f8:d6:01:f1:ba:97:82:fd:89:
51:5f:1c:77:ad:89:91:6a:74:0a:52:94:77:43:29:
55:46:ad:92:d8:02:5d:d9:de:b7:95:06:cf:d5:1e:
88:ab:b2:cd:1c:57:20:b4:f8:ca:3d:3b:07:78:9d:
33:78:19:14:e0:46:0f:43:e5:42:cc:ce:8b:74:8e:
c7:84:aa:c6:fa:ac:00:de:cd:8f:de:2a:3b:c6:0e:
bb:f6:e8:b7:9a:36:43:7e:26:0e:62:04:ff:13:19:
61:6a:43:c0:ba:75:1f:47:31:37:17:6b:d9:a4:11:
0f:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:14:B8:25:68:EF:B9:E3:AA:58:17:0D:61:66:07:34:DF:AD:C8:AB
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/UBS4JWjvueOqWBcNYWYHNN-tyKs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.78.8.0/22
Signature Algorithm: sha256WithRSAEncryption
15:09:84:24:d4:36:fb:04:df:7d:aa:7f:68:6b:d9:17:f2:52:
17:51:5f:12:b8:28:12:dc:0d:4a:98:31:21:b5:ae:55:7e:82:
6e:45:2b:27:94:3c:d7:e0:47:54:c2:0b:6e:a3:f4:37:79:11:
40:94:a0:68:2f:60:e5:db:18:30:9d:ce:cf:42:38:95:5c:d6:
f3:5b:d6:0a:17:9a:e3:c4:0b:66:6e:75:50:0b:b6:31:52:8b:
fe:b1:b4:25:4e:a2:8a:d8:7d:48:f5:b1:97:92:34:bc:ec:37:
3e:66:5d:a7:6f:37:9b:b1:74:c1:48:92:df:e2:7f:b0:a8:57:
af:42:ba:8f:56:d5:7d:df:98:f9:1d:f3:20:bc:23:9b:da:3a:
4b:c1:a9:5f:ac:af:3a:d6:be:38:3e:cb:3f:18:8a:ec:5f:0e:
ce:7a:8a:4b:6c:6c:db:9a:c7:ed:47:98:7f:cf:79:bf:48:38:
90:90:59:18:65:bd:fd:47:ea:e7:48:1c:91:9b:95:58:86:dd:
a7:41:5b:13:a0:a2:1f:58:4b:77:f2:98:86:cb:6b:dc:e4:31:
30:de:81:9e:fb:64:e7:22:48:b5:e5:ce:4c:05:f0:fe:4c:bf:
83:82:a0:cf:06:dd:cf:1f:cc:86:10:8f:5f:0d:2c:d3:3e:53:
f0:f6:aa:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 08:54:38 2025 by rpki-client