Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/jDkazVUaVpNbOx6OHfw6Hph_IiI.roa
File: jDkazVUaVpNbOx6OHfw6Hph_IiI.roa (raw, json)
Hash identifier: RrKezydskRUoKILFHYFwFFWYspz35EmxY6nAnZY6G6U=
Subject key identifier: 8C:39:1A:CD:55:1A:56:93:5B:3B:1E:8E:1D:FC:3A:1E:98:7F:22:22
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0E0F
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/jDkazVUaVpNbOx6OHfw6Hph_IiI.roa
Signing time: Mon 10 Feb 2025 13:59:23 +0000
ROA not before: Mon 10 Feb 2025 13:59:23 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9922
IP address blocks: 61.61.76.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3599 (0xe0f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Feb 10 13:59:23 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=8C391ACD551A56935B3B1E8E1DFC3A1E987F2222
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:99:8b:f3:d4:62:05:e1:8a:ec:27:b2:0e:45:
ba:b6:99:22:43:26:34:16:c0:05:31:2c:0f:a2:c3:
36:e8:b4:7e:7d:4a:0c:04:1b:57:b6:a8:86:c9:3a:
e0:be:ba:55:00:6b:ec:88:7b:05:d5:67:c2:9a:f0:
75:2f:44:60:65:97:1f:27:df:a9:18:e8:ae:0f:69:
04:fa:f5:f5:fd:0d:59:c4:c4:48:94:d5:98:52:df:
dd:23:bd:a2:fd:d7:58:1f:c0:29:46:3e:bf:84:dd:
b8:22:43:c7:85:c9:f1:c7:b1:37:08:68:67:6d:5c:
cd:b7:90:b9:a8:73:8b:49:2b:92:01:4f:ef:dc:3c:
6e:ff:3a:c9:36:42:b7:aa:f5:70:02:dc:ee:75:93:
e5:eb:bf:79:a3:b9:31:89:1e:89:d4:e6:0a:b6:0d:
9c:ca:ef:61:c9:5c:26:27:8c:32:1e:76:19:7f:35:
57:33:74:79:22:d2:8a:c9:1b:c8:b7:ce:e6:0a:ba:
f5:6a:e9:30:f7:e5:61:a3:7e:c5:8f:03:c2:f5:66:
2b:92:7a:cc:dd:d9:26:0c:9b:7e:0b:d7:fb:a1:5c:
45:cd:5b:96:53:ca:00:3a:d3:03:2b:49:5a:c7:bf:
61:b8:80:5f:dd:8c:b4:fb:a4:11:dd:4d:83:6a:dd:
df:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:39:1A:CD:55:1A:56:93:5B:3B:1E:8E:1D:FC:3A:1E:98:7F:22:22
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/jDkazVUaVpNbOx6OHfw6Hph_IiI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.76.0/22
Signature Algorithm: sha256WithRSAEncryption
0b:d2:cf:17:56:6c:15:a3:d8:10:4b:8d:61:b4:08:ad:8b:bb:
96:e5:06:8e:a9:2c:62:f2:5b:78:3d:3d:ab:6d:bb:74:a7:b2:
4d:65:37:48:08:eb:4f:9f:52:08:7e:c8:2e:a2:e7:6a:fd:8e:
e3:a1:9b:75:22:73:cc:e2:5b:7c:76:26:59:31:a2:bc:3c:a3:
5e:e5:6d:f6:4a:d6:66:d8:2f:b8:21:49:b4:41:e7:69:36:6d:
58:e3:5f:ae:90:c4:96:58:69:63:43:26:7a:d9:ea:e9:65:f4:
a8:02:06:1e:3a:bf:a2:5e:f6:77:d7:c3:ad:ba:f6:0d:49:70:
65:ba:34:f6:96:8c:44:fc:19:30:f5:5a:d7:8d:83:da:a7:97:
cb:30:eb:24:c7:41:f0:e7:97:4d:b1:5b:ce:84:6b:14:08:92:
09:6b:fe:29:dc:56:d7:c9:64:9d:53:4e:97:28:f3:ee:da:08:
bc:89:ad:82:02:88:1e:24:b4:75:35:39:65:9e:7d:08:17:61:
ad:18:7b:fa:03:de:f9:23:da:a1:60:28:27:69:cf:51:e8:15:
a0:5b:03:90:a2:42:17:a2:e0:e4:72:b4:b2:3f:5a:17:57:70:
ca:b0:64:51:33:c9:52:2c:17:e2:f8:ec:b0:3f:74:f4:19:3b:
71:51:42:04
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICDg8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDc3
MkY3MTUzNDVCNTQyRTFENzA4QkNCMjU3MUZDRDcyREQyNkJGMzAeFw0yNTAyMTAx
MzU5MjNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDhDMzkxQUNENTUxQTU2
OTM1QjNCMUU4RTFERkMzQTFFOTg3RjIyMjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDdmYvz1GIF4YrsJ7IORbq2mSJDJjQWwAUxLA+iwzbotH59SgwE
G1e2qIbJOuC+ulUAa+yIewXVZ8Ka8HUvRGBllx8n36kY6K4PaQT69fX9DVnExEiU
1ZhS390jvaL911gfwClGPr+E3bgiQ8eFyfHHsTcIaGdtXM23kLmoc4tJK5IBT+/c
PG7/Osk2Qreq9XAC3O51k+Xrv3mjuTGJHonU5gq2DZzK72HJXCYnjDIedhl/NVcz
dHki0orJG8i3zuYKuvVq6TD35WGjfsWPA8L1ZiuSeszd2SYMm34L1/uhXEXNW5ZT
ygA60wMrSVrHv2G4gF/djLT7pBHdTYNq3d+vAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQUjDkazVUaVpNbOx6OHfw6Hph/IiIwHwYDVR0jBBgwFoAUR3L3FTRbVC4dcIvL
JXH81y3Sa/MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL1Iz
TDNGVFJiVkM0ZGNJdkxKWEg4MXkzU2FfTS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
UjNMM0ZUUmJWQzRkY0l2TEpYSDgxeTNTYV9NLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL2pEa2F6VlVhVnBOYk94Nk9IZnc2SHBo
X0lpSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAI9PUwwDQYJ
KoZIhvcNAQELBQADggEBAAvSzxdWbBWj2BBLjWG0CK2Lu5blBo6pLGLyW3g9Patt
u3Snsk1lN0gI60+fUgh+yC6i52r9juOhm3Uic8ziW3x2Jlkxorw8o17lbfZK1mbY
L7ghSbRB52k2bVjjX66QxJZYaWNDJnrZ6ull9KgCBh46v6Je9nfXw6269g1JcGW6
NPaWjET8GTD1WteNg9qnl8sw6yTHQfDnl02xW86EaxQIkglr/incVtfJZJ1TTpco
8+7aCLyJrYICiB4ktHU1OWWefQgXYa0Ye/oD3vkj2qFgKCdpz1HoFaBbA5CiQhei
4ORytLI/WhdXcMqwZFEzyVIsF+L47LA/dPQZO3FRQgQ=
-----END CERTIFICATE-----
Generated at Mon Apr 7 09:14:42 2025 by rpki-client