Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/ftqJzZ8kD7q0RFepI1X1stIrCa4.roa
File: ftqJzZ8kD7q0RFepI1X1stIrCa4.roa (raw, json)
Hash identifier: cY28HA7DaBTxRjrxz71YTBTqDbigC4n5L17tkFC9uv8=
Subject key identifier: 7E:DA:89:CD:9F:24:0F:BA:B4:44:57:A9:23:55:F5:B2:D2:2B:09:AE
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0DF2
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/ftqJzZ8kD7q0RFepI1X1stIrCa4.roa
Signing time: Mon 10 Feb 2025 13:59:16 +0000
ROA not before: Mon 10 Feb 2025 13:59:16 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18049
IP address blocks: 61.61.60.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3570 (0xdf2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Feb 10 13:59:16 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=7EDA89CD9F240FBAB44457A92355F5B2D22B09AE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:45:a4:3a:ef:bd:8a:8d:1a:c2:a7:a3:ac:7d:
6a:01:e2:2e:75:a2:0d:c7:68:75:07:54:0d:ca:d6:
65:14:f1:13:fa:c4:93:7c:8e:57:61:d0:03:f2:f2:
22:de:f9:40:e3:79:54:81:2e:46:dc:98:1e:a6:f3:
32:2f:b6:e2:fa:c2:08:f9:d4:ff:0a:73:d7:49:54:
61:83:43:8f:58:39:6d:55:de:54:af:fe:8a:a7:97:
00:4c:d2:91:46:8e:46:ea:6d:bf:49:f9:41:09:cb:
62:05:6e:1d:62:32:f0:72:b4:49:b1:13:b5:a8:99:
d5:0e:c5:7b:40:34:d1:9b:11:36:59:4a:c7:8a:60:
8f:3e:6f:70:a5:42:c3:15:1e:21:8c:f0:35:f9:66:
27:67:df:18:ad:05:9a:47:66:9e:2f:4c:a6:11:59:
1f:f1:cc:93:b6:73:19:08:95:6d:41:1b:7e:58:1a:
5f:6b:20:6b:45:92:d3:88:5d:f9:55:54:a0:d1:69:
4d:00:55:fe:7b:61:be:d9:1c:b6:34:dd:a6:cb:29:
4d:a5:53:4d:9e:33:6c:51:65:16:c9:f4:1e:8d:b8:
6e:b3:10:aa:26:aa:d6:1a:3c:2b:87:61:81:30:ed:
01:dc:44:8a:ee:6c:dd:31:db:7d:fe:50:d6:31:0f:
26:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:DA:89:CD:9F:24:0F:BA:B4:44:57:A9:23:55:F5:B2:D2:2B:09:AE
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/ftqJzZ8kD7q0RFepI1X1stIrCa4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.60.0/22
Signature Algorithm: sha256WithRSAEncryption
4c:51:1a:23:b8:8f:b0:83:db:86:10:24:73:9d:99:97:97:fc:
2f:81:9d:09:42:4b:a0:c1:ef:27:97:59:d2:15:d2:30:72:90:
28:32:74:59:d9:9c:60:41:10:cb:d0:b9:27:1a:c9:a3:4d:f5:
05:c2:c9:38:e5:f1:02:4a:0f:52:c6:e0:c4:79:89:13:4a:85:
b7:12:ab:04:a2:25:94:98:f9:e0:d1:bb:9b:6e:6d:a5:d7:ad:
f5:ee:19:36:4f:d8:f0:97:ba:7c:bc:ca:c1:f9:bd:bc:b8:5d:
7c:b0:d1:e5:22:95:d7:80:63:b0:3b:02:ec:63:92:4c:8b:fd:
96:31:5e:94:f4:26:a8:3a:86:b3:72:59:d5:3e:96:8f:72:62:
c9:75:5b:83:41:c1:6e:b0:93:64:c4:40:e9:38:c2:de:b5:1a:
4a:bd:e0:fb:72:17:50:c9:1f:53:23:cf:7f:f8:ff:59:f2:79:
0e:41:5c:56:2e:33:de:7d:68:24:bb:af:39:d5:e1:d5:fd:ef:
74:d8:30:1b:f9:66:18:28:6e:69:1f:ba:96:04:aa:ea:4d:40:
b9:77:9b:dc:82:6f:7b:a0:71:17:b1:4e:35:e5:b6:24:f0:21:
99:8d:df:93:99:33:a7:34:41:79:cf:2f:f8:61:ea:cc:f8:fd:
00:c2:02:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:07:29 2025 by rpki-client