Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/hHI6QEQsZMvhboGutTi8ANntZQs.roa
File: hHI6QEQsZMvhboGutTi8ANntZQs.roa (raw, json)
Hash identifier: x2QvmlKKcKpTA3fe4+XFar3TOK0nMekOs7Rq8v35efs=
Subject key identifier: 84:72:3A:40:44:2C:64:CB:E1:6E:81:AE:B5:38:BC:00:D9:ED:65:0B
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0C27
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/hHI6QEQsZMvhboGutTi8ANntZQs.roa
Signing time: Fri 01 Sep 2023 09:14:02 +0000
ROA not before: Fri 01 Sep 2023 09:14:02 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131627
IP address blocks: 61.61.70.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3111 (0xc27)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Sep 1 09:14:02 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=84723A40442C64CBE16E81AEB538BC00D9ED650B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:5f:0c:5d:6c:8a:8f:d9:9a:47:56:64:0d:28:
24:55:fb:32:6c:4b:75:fa:3b:59:f2:19:8c:f1:49:
7d:29:e6:f1:83:e6:34:6e:7b:5b:21:8f:01:1c:ac:
20:19:ae:d5:85:15:ab:5a:fb:c3:84:00:3c:dc:74:
15:92:67:e9:dc:a5:3b:cc:aa:c0:89:18:56:38:da:
0b:5c:f5:d2:3e:93:3c:0e:eb:99:47:7b:63:64:32:
18:cc:d5:4a:2c:e7:4f:72:02:0e:66:48:c6:7d:c3:
49:1a:7a:ed:bf:44:90:e2:67:5d:9b:aa:cf:8e:6c:
b6:aa:1b:78:47:d7:4f:d5:b3:60:a4:3f:63:da:64:
06:59:3a:e4:8f:b0:e2:04:6e:67:c0:83:23:8b:6a:
cb:52:1e:12:5c:63:d0:17:7d:37:e7:bf:e4:cb:49:
46:74:43:e6:05:9e:0a:c0:e9:67:b8:07:23:66:44:
b7:b1:57:0c:45:3d:c9:16:15:d8:57:b4:b0:05:a6:
de:d7:41:d2:59:cb:0c:bd:0c:80:97:02:4c:e4:59:
86:96:e3:38:9a:0e:7d:c1:1f:a9:14:b9:5c:ad:59:
f2:7c:77:a3:92:27:19:66:8b:b3:b6:ad:c1:9c:f3:
6c:ff:77:3d:5d:ee:4e:d7:bf:18:10:02:30:9f:5c:
ce:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:72:3A:40:44:2C:64:CB:E1:6E:81:AE:B5:38:BC:00:D9:ED:65:0B
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/hHI6QEQsZMvhboGutTi8ANntZQs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.70.0/23
Signature Algorithm: sha256WithRSAEncryption
1a:a8:f3:36:06:c8:86:1a:31:8b:e3:57:fb:16:75:1c:26:f1:
d3:6a:0c:71:bd:77:45:9c:67:c1:e0:b0:1f:39:a8:67:a6:2f:
96:02:78:87:52:1b:0c:12:a9:85:4b:e3:c5:cd:2e:b5:54:1f:
07:59:2e:d3:45:1c:05:ae:e2:0a:96:9b:59:91:9d:dc:0f:8e:
c3:76:eb:7e:3a:a7:9a:86:08:9a:94:9c:95:10:27:19:03:a3:
0e:50:48:60:c6:ca:69:bf:3b:8a:67:4d:57:bf:36:41:81:b7:
2f:9c:6d:2a:55:53:f8:5b:e9:b3:8f:0a:92:ee:0d:f1:65:6c:
c0:c8:ec:27:a0:19:22:a1:e3:44:08:59:94:56:4e:4f:db:70:
c6:e4:72:0f:d6:4d:66:4b:60:37:95:2c:20:ca:3f:b1:1a:bf:
34:2a:b6:96:89:c8:31:b5:96:ca:2f:e3:d3:26:ab:f6:c4:39:
86:bf:b7:f5:93:ae:62:c7:df:7c:16:fa:f0:93:c9:5c:75:38:
73:40:20:c1:67:ca:05:78:02:a8:f5:8f:84:7e:37:95:d5:55:
b5:18:57:11:e6:38:67:97:17:6a:c8:11:c2:96:5b:08:84:76:
01:51:e6:2d:88:f7:72:f8:57:04:47:3e:2e:fe:fe:59:03:2b:
2b:6b:59:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:21 2024 by rpki-client on console-fra.rpki-client.org