Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/XvDp09Ny8NK_FLZpWjS5Wm6USmg.roa
File: XvDp09Ny8NK_FLZpWjS5Wm6USmg.roa (raw, json)
Hash identifier: FK81LqXIaFQDyGLikfEHRTrRAB59sSqyzfuCXDql+WU=
Subject key identifier: 5E:F0:E9:D3:D3:72:F0:D2:BF:14:B6:69:5A:34:B9:5A:6E:94:4A:68
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0E12
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/XvDp09Ny8NK_FLZpWjS5Wm6USmg.roa
Signing time: Mon 10 Feb 2025 13:59:24 +0000
ROA not before: Mon 10 Feb 2025 13:59:24 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 54994
IP address blocks: 61.61.69.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3602 (0xe12)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Feb 10 13:59:24 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=5EF0E9D3D372F0D2BF14B6695A34B95A6E944A68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:c7:2f:c8:38:ce:81:a3:dd:4e:50:c8:5b:8c:
cb:38:d5:91:7e:dc:a8:2a:bf:da:9a:6c:f4:8e:dc:
4c:d2:99:b1:60:f3:76:37:40:b7:1a:00:c4:40:51:
b3:90:b7:0d:5a:0f:33:7c:44:ed:0b:e4:bb:e7:0e:
a2:c7:b2:44:32:30:aa:a2:02:83:2e:fa:e9:9b:43:
b7:db:3f:06:69:62:69:b2:68:c1:53:2d:4a:7a:4b:
9a:f3:aa:45:ad:d4:d1:7e:bd:4c:b6:f9:f5:65:10:
b6:28:f4:9a:ba:6d:dd:61:2e:27:03:1a:41:22:de:
d3:cf:9b:f2:50:bd:d7:4c:84:f8:4b:12:08:04:24:
cb:38:99:85:be:d3:fd:85:bf:f6:37:84:ad:ef:ee:
af:db:d5:78:eb:5d:3a:3e:e3:c8:4a:02:6d:cb:90:
c8:af:27:fd:52:51:98:b9:00:1d:6e:f2:40:01:28:
7a:72:ab:57:03:bc:13:ee:82:52:cd:15:6b:62:d4:
7b:68:5e:76:78:bb:01:57:85:25:5f:3d:60:a1:aa:
58:de:2d:15:e0:25:e9:30:30:4f:55:19:aa:3c:84:
02:ec:c5:f9:70:9a:96:9d:ea:17:8e:ef:83:d8:8c:
30:ae:4d:1b:36:d0:bc:b5:87:51:6c:bd:50:79:0a:
dd:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:F0:E9:D3:D3:72:F0:D2:BF:14:B6:69:5A:34:B9:5A:6E:94:4A:68
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/XvDp09Ny8NK_FLZpWjS5Wm6USmg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.69.0/24
Signature Algorithm: sha256WithRSAEncryption
32:f5:cf:3c:12:35:cd:3f:46:33:f4:f7:de:14:4a:b5:a6:a5:
be:55:8a:2f:51:03:3d:f4:25:fd:4d:70:44:66:ff:c7:c4:43:
27:11:88:06:9f:10:60:06:9d:eb:ac:f4:02:a8:5a:03:e1:69:
de:c3:77:3b:30:01:37:10:f3:69:46:75:dd:f7:fb:cc:5a:87:
30:d6:e6:eb:ca:84:3b:fc:54:49:76:8d:78:b6:2a:04:43:fc:
11:56:8b:0c:f7:6e:ee:30:b0:c4:20:a8:fd:04:e1:62:38:da:
c1:3d:1d:52:01:4c:38:b5:54:2c:91:b8:cf:dc:4b:dc:4e:a6:
3a:cf:47:0b:12:4b:ec:df:c7:8c:23:46:d3:27:76:86:bc:b6:
33:34:16:14:6a:d9:5b:9b:bf:0f:1d:50:0b:d6:5a:24:89:b7:
88:a8:c3:7d:19:8a:44:ba:ca:46:33:31:88:58:de:6c:b8:07:
de:86:85:c6:35:42:2e:ea:2b:8d:72:7b:99:92:49:3e:ed:25:
aa:06:0a:ce:00:ba:3e:6e:99:af:ea:50:6b:df:e3:fe:34:21:
66:54:b1:9a:39:fd:43:b1:a4:a0:96:52:27:f3:61:13:94:a9:
4c:d8:19:cd:72:8a:2e:96:e3:4e:e9:66:f4:0f:00:07:d1:f7:
c4:8e:bc:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 07:22:53 2025 by rpki-client