Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/aidX89saKMBU404BRGnbO5FGer8.roa
File: aidX89saKMBU404BRGnbO5FGer8.roa (raw, json)
Hash identifier: swJuC90DlTDfhfTjp1KrjsEnFYNjb+tMnoq3KVkMEkI=
Subject key identifier: 6A:27:57:F3:DB:1A:28:C0:54:E3:4E:01:44:69:DB:3B:91:46:7A:BF
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0D6E
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/aidX89saKMBU404BRGnbO5FGer8.roa
Signing time: Mon 26 Aug 2024 05:19:48 +0000
ROA not before: Mon 26 Aug 2024 05:19:48 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131627
IP address blocks: 61.61.144.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3438 (0xd6e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Aug 26 05:19:48 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=6A2757F3DB1A28C054E34E014469DB3B91467ABF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:c9:b8:ce:3a:bd:a7:7e:86:34:ac:85:4f:57:
a2:3c:36:25:0f:7c:f4:f6:ce:81:e1:ae:b6:d4:58:
6c:ff:35:4e:c4:32:38:a2:dc:87:19:1b:b1:d9:91:
25:de:dd:fd:ba:5d:da:39:2c:23:a1:bb:6d:b1:a6:
81:34:dc:74:28:c5:f3:ef:05:4b:96:cf:8b:61:31:
3e:e7:64:24:49:76:18:98:69:5b:33:08:cd:7f:3a:
60:35:86:c4:27:a9:f1:28:1c:43:b5:f7:b5:03:dd:
df:13:97:a4:a0:20:9a:89:a9:8b:7f:98:82:e9:cd:
27:59:c9:bc:dc:f5:a4:74:16:6d:63:f0:9c:90:a7:
46:9d:6e:2c:2f:e8:58:01:93:36:68:b7:de:89:e4:
0d:4f:45:02:b9:0a:f3:1b:29:f4:3a:f4:08:06:eb:
2f:fb:ac:8d:34:74:01:03:cf:5c:16:06:75:7a:33:
30:bc:31:d6:46:6e:1b:90:76:db:0d:51:91:32:a4:
8b:fa:f2:b1:13:e9:60:22:8d:00:a0:5f:bd:2b:c0:
23:3e:48:a9:ac:50:3d:73:25:17:2c:95:76:9a:a5:
f1:6c:92:fe:53:89:36:fc:da:b2:f1:24:ca:f3:e3:
08:4d:52:53:b7:a6:72:7d:9d:f4:04:93:0b:b4:3e:
4f:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:27:57:F3:DB:1A:28:C0:54:E3:4E:01:44:69:DB:3B:91:46:7A:BF
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/aidX89saKMBU404BRGnbO5FGer8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.144.0/21
Signature Algorithm: sha256WithRSAEncryption
82:44:f0:6f:d4:b0:1e:4a:74:89:33:a2:d5:80:e5:a1:5a:53:
ad:11:33:20:9c:01:ef:08:d8:37:4a:2c:09:d3:e0:d2:80:61:
66:d0:48:9c:a8:80:78:7f:6f:2a:25:d8:11:a7:31:1c:5c:fe:
e1:e1:db:b0:c4:66:a4:9b:3a:bf:28:f2:8f:3a:d2:34:7d:c7:
da:47:da:30:2b:cc:24:d4:89:17:96:35:0b:8f:1e:4d:14:13:
26:e3:e2:9a:9b:9a:d6:19:7b:cf:b6:76:c9:0c:da:4d:29:c4:
b9:a5:0e:d0:a8:18:6c:88:a3:05:c1:23:2d:78:81:77:4c:1b:
ad:34:d9:be:e0:cc:ef:51:53:55:48:85:29:e2:35:2e:17:04:
22:6b:61:47:6f:2b:89:75:20:cb:c3:f6:d8:ab:2f:85:99:58:
4c:f1:c1:f0:e1:d9:e8:35:da:d3:53:78:f8:b8:75:d1:87:94:
41:f8:e4:f9:13:c4:5d:32:38:19:61:32:48:43:ae:96:8f:8e:
72:fb:2e:ce:a4:e2:12:20:ee:7a:ab:e7:dc:14:b9:fe:07:11:
8f:39:a4:55:78:0a:16:a5:50:c5:68:43:c2:ce:cd:5b:25:3d:
db:98:29:c3:df:9c:22:1b:a8:f5:05:eb:d2:01:4b:8d:1e:2a:
ce:a9:38:38
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICDW4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDc3
MkY3MTUzNDVCNTQyRTFENzA4QkNCMjU3MUZDRDcyREQyNkJGMzAeFw0yNDA4MjYw
NTE5NDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDZBMjc1N0YzREIxQTI4
QzA1NEUzNEUwMTQ0NjlEQjNCOTE0NjdBQkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC6ybjOOr2nfoY0rIVPV6I8NiUPfPT2zoHhrrbUWGz/NU7EMjii
3IcZG7HZkSXe3f26Xdo5LCOhu22xpoE03HQoxfPvBUuWz4thMT7nZCRJdhiYaVsz
CM1/OmA1hsQnqfEoHEO197UD3d8Tl6SgIJqJqYt/mILpzSdZybzc9aR0Fm1j8JyQ
p0adbiwv6FgBkzZot96J5A1PRQK5CvMbKfQ69AgG6y/7rI00dAEDz1wWBnV6MzC8
MdZGbhuQdtsNUZEypIv68rET6WAijQCgX70rwCM+SKmsUD1zJRcslXaapfFskv5T
iTb82rLxJMrz4whNUlO3pnJ9nfQEkwu0Pk+nAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQUaidX89saKMBU404BRGnbO5FGer8wHwYDVR0jBBgwFoAUR3L3FTRbVC4dcIvL
JXH81y3Sa/MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL1Iz
TDNGVFJiVkM0ZGNJdkxKWEg4MXkzU2FfTS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
UjNMM0ZUUmJWQzRkY0l2TEpYSDgxeTNTYV9NLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL2FpZFg4OXNhS01CVTQwNEJSR25iTzVG
R2VyOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAM9PZAwDQYJ
KoZIhvcNAQELBQADggEBAIJE8G/UsB5KdIkzotWA5aFaU60RMyCcAe8I2DdKLAnT
4NKAYWbQSJyogHh/byol2BGnMRxc/uHh27DEZqSbOr8o8o860jR9x9pH2jArzCTU
iReWNQuPHk0UEybj4pqbmtYZe8+2dskM2k0pxLmlDtCoGGyIowXBIy14gXdMG600
2b7gzO9RU1VIhSniNS4XBCJrYUdvK4l1IMvD9tirL4WZWEzxwfDh2eg12tNTePi4
ddGHlEH45PkTxF0yOBlhMkhDrpaPjnL7Ls6k4hIg7nqr59wUuf4HEY85pFV4Chal
UMVoQ8LOzVslPduYKcPfnCIbqPUF69IBS40eKs6pODg=
-----END CERTIFICATE-----
Generated at Mon Apr 7 09:09:54 2025 by rpki-client