Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/hvowUnBRQ6c4aQV8CRzVLbHXU5M.roa
File: hvowUnBRQ6c4aQV8CRzVLbHXU5M.roa (raw, json)
Hash identifier: 4JZNRQanlv+nAxaLGTnq6ijTbF52DPYJK0ihfWbT+zs=
Subject key identifier: 86:FA:30:52:70:51:43:A7:38:69:05:7C:09:1C:D5:2D:B1:D7:53:93
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0C24
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/hvowUnBRQ6c4aQV8CRzVLbHXU5M.roa
Signing time: Fri 01 Sep 2023 09:14:02 +0000
ROA not before: Fri 01 Sep 2023 09:14:02 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18049
IP address blocks: 61.61.36.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3108 (0xc24)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Sep 1 09:14:02 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=86FA3052705143A73869057C091CD52DB1D75393
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:e0:c9:60:5c:a2:d4:e9:f8:ff:73:b5:17:64:
82:af:6c:4e:4f:bc:d5:7c:7b:c9:ad:9d:b9:13:56:
fc:47:df:93:3d:db:fc:4c:91:a3:43:84:8d:bd:44:
a3:e6:ce:fa:b7:a5:c9:58:1c:0d:df:2f:4c:43:dc:
64:25:82:58:f1:a4:a3:d5:0d:7b:ba:cd:d6:3e:06:
1e:02:ca:62:a9:ff:a2:9a:06:15:b4:d7:b2:19:d5:
81:19:85:4d:84:46:d7:ac:45:af:ca:11:4f:d2:a3:
c4:f0:9d:c9:d2:bd:c4:6d:1b:6e:a1:bf:b2:81:97:
ba:29:7d:e3:8f:bb:bc:b0:1f:39:9c:d2:cd:3f:4f:
b7:71:0f:de:4d:b1:81:a4:7d:df:d6:bb:80:5c:a6:
e0:cf:9e:64:59:e3:6e:2d:3a:d1:4c:ca:c2:e5:20:
36:10:91:be:2c:23:d9:48:8a:2b:56:c8:d8:b3:fb:
b9:ab:97:59:2f:1a:56:fd:68:b7:1d:5b:a8:40:b7:
87:ca:b1:26:c0:f3:7a:36:86:41:f9:ff:8e:68:11:
75:95:fb:2b:d0:84:f5:0a:13:75:b2:60:d1:07:51:
26:88:a6:e7:7e:a0:2e:dd:72:f9:79:82:a8:bc:6c:
92:70:6e:97:b9:bc:11:47:31:62:8d:79:68:b1:27:
c2:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:FA:30:52:70:51:43:A7:38:69:05:7C:09:1C:D5:2D:B1:D7:53:93
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/hvowUnBRQ6c4aQV8CRzVLbHXU5M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.36.0/22
Signature Algorithm: sha256WithRSAEncryption
7b:3f:f1:41:54:da:bb:9f:96:a4:d8:ea:d3:4c:d3:dc:34:85:
53:f7:49:46:f0:d5:c6:b2:dc:4c:bb:7e:b5:97:b4:b7:b3:04:
04:70:aa:4e:1e:d3:68:f9:ba:4f:40:7b:b0:aa:04:18:3f:89:
b8:b1:4d:df:cd:1c:b1:51:d8:a1:1c:b0:3f:75:77:28:a1:4c:
25:0f:15:2e:f7:17:f8:01:56:60:e7:83:fd:eb:0d:47:20:90:
0a:9c:bd:a4:a6:31:ee:18:4c:88:8b:f1:7b:f9:87:cc:75:b0:
ec:f5:00:4e:c4:e6:15:8d:51:81:ae:04:74:c6:cd:62:9d:c4:
29:5f:81:b6:6e:96:29:a2:7c:66:d5:99:e8:f7:4c:f7:3b:d0:
ee:a1:c8:08:e1:f7:3b:4f:ce:12:9b:ce:97:a1:b4:5f:e3:44:
d0:d8:2d:56:a2:7b:e1:d8:44:23:ef:34:79:57:6a:69:da:7d:
d0:22:f3:41:b5:72:65:d8:58:9c:b6:7c:fd:c2:e0:9e:dd:f8:
4e:8b:a5:66:f6:d5:f7:e3:86:b6:3f:07:de:37:99:f7:7f:15:
1f:46:1f:d9:d7:6e:91:5b:25:54:3b:d7:9c:aa:06:21:ac:4b:
01:e6:77:45:f9:17:7e:04:51:dd:fe:e3:46:bf:40:5c:bb:11:
6d:dc:5f:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:14 2024 by rpki-client on console-ams.rpki-client.org