Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/W_BMnNsGL-KukyJJuRFybVheSyw.roa
File: W_BMnNsGL-KukyJJuRFybVheSyw.roa (raw, json)
Hash identifier: dSKFBnv5oyelWPDenIyUAmTnzH+MZrbVxIKUczwAUEs=
Subject key identifier: 5B:F0:4C:9C:DB:06:2F:E2:AE:93:22:49:B9:11:72:6D:58:5E:4B:2C
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0DED
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/W_BMnNsGL-KukyJJuRFybVheSyw.roa
Signing time: Mon 10 Feb 2025 13:59:14 +0000
ROA not before: Mon 10 Feb 2025 13:59:14 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9918
IP address blocks: 61.61.0.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3565 (0xded)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Feb 10 13:59:14 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=5BF04C9CDB062FE2AE932249B911726D585E4B2C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:52:98:ce:b8:69:7a:f3:6b:26:9d:74:2a:84:
19:ed:ed:67:9d:b3:b5:7f:5d:46:45:54:3f:86:3d:
63:d4:cf:9c:2b:b8:a7:0a:43:83:a1:9d:1d:e0:53:
66:fc:1a:df:36:59:30:3d:81:bc:a0:f1:22:0f:92:
86:cc:f0:43:b0:3c:8f:fe:4d:01:93:0a:b6:c5:3e:
a1:c5:c5:f7:7a:c1:6b:ee:ee:23:6d:bf:b9:0f:f9:
dd:43:16:f7:4a:05:a5:58:26:c8:3f:79:83:d4:e7:
4d:e9:1b:b5:9f:97:26:40:3d:0b:d7:da:fe:6b:85:
d3:f3:8b:43:a1:d7:5a:c4:ed:1e:1d:67:9f:c6:16:
1c:de:10:80:1e:f1:8d:4c:d0:3d:68:59:95:77:26:
e0:b6:67:0b:4f:06:0d:89:a2:cc:e5:9e:d2:31:63:
5b:14:67:e6:78:69:61:3f:cb:8d:fe:2f:4a:47:32:
62:8a:5a:37:9b:98:ed:d5:9b:0a:de:9e:29:9b:34:
b4:f3:9b:36:3d:55:64:3a:62:2c:15:e5:cb:96:0b:
89:59:d0:e7:27:bc:a2:93:77:a7:e6:36:6c:5c:c2:
b5:f4:68:c8:a8:42:80:89:7f:97:cd:96:3f:43:0a:
54:40:a3:a8:3f:43:de:71:65:01:84:c7:ae:a4:ba:
ba:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:F0:4C:9C:DB:06:2F:E2:AE:93:22:49:B9:11:72:6D:58:5E:4B:2C
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/W_BMnNsGL-KukyJJuRFybVheSyw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.0.0/17
Signature Algorithm: sha256WithRSAEncryption
a1:cb:ab:7e:fd:e0:df:81:4d:27:0b:4d:d4:bc:27:23:cd:e0:
c6:6b:6d:c9:f4:57:a3:8e:7c:a3:22:90:64:0e:38:89:7f:df:
dc:b7:e3:76:63:4f:b1:ec:bf:cb:28:6b:4e:97:16:c8:40:64:
1b:7f:33:a2:53:d8:c0:63:7e:f2:82:64:18:15:44:0e:b9:17:
8a:5a:a2:b0:d3:69:59:d7:83:40:2e:3e:fc:55:9e:f2:b4:8c:
44:12:3e:31:e0:ef:26:13:53:b2:ba:14:5c:52:f5:78:70:40:
61:f0:4a:31:f8:48:87:2a:fe:0f:27:1b:7b:d4:65:5e:8d:20:
bf:8b:fe:30:cc:9f:23:7e:72:b9:85:91:58:0b:0c:24:ee:47:
a9:a8:eb:ec:d4:3f:8d:ed:ea:fb:1a:3e:1e:b4:c0:b9:56:f7:
59:3e:dc:ca:99:75:be:f0:a6:19:62:b0:45:1a:5a:c3:a8:50:
30:de:82:3b:77:3e:a5:6a:e7:1c:71:b4:b6:c3:06:18:3c:33:
4c:5d:5c:79:80:97:18:97:31:97:5d:3c:13:cf:45:7b:d3:00:
83:46:b3:87:e3:95:d4:26:7b:fa:3e:48:ba:f2:b4:0a:c6:e1:
f5:f6:64:6e:fd:6e:c4:12:ce:d2:be:06:29:68:7e:50:c6:2b:
a6:c2:3f:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:12:35 2025 by rpki-client