Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/kToaw64QoCyNEmgSW93gSHT7y2A.roa
File: kToaw64QoCyNEmgSW93gSHT7y2A.roa (raw, json)
Hash identifier: N2M0TUchFwSMxGoeGlwxD35lYTgnJV0WHjBmiqqaGhE=
Subject key identifier: 91:3A:1A:C3:AE:10:A0:2C:8D:12:68:12:5B:DD:E0:48:74:FB:CB:60
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0CF0
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/kToaw64QoCyNEmgSW93gSHT7y2A.roa
Signing time: Thu 13 Jun 2024 09:17:19 +0000
ROA not before: Thu 13 Jun 2024 09:17:19 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 54994
IP address blocks: 61.61.163.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3312 (0xcf0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Jun 13 09:17:19 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=913A1AC3AE10A02C8D1268125BDDE04874FBCB60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:20:ff:6c:f0:1a:be:af:93:33:31:18:e1:c8:
04:87:60:bb:87:df:3b:b9:89:57:e4:4f:49:18:5d:
2b:3a:04:13:d8:9d:66:56:63:8b:18:a1:df:7d:81:
d0:3a:42:e1:05:c5:b4:4d:0e:10:93:71:66:e8:a8:
5f:7e:4c:5b:81:65:62:42:ae:51:93:0b:89:73:b5:
bf:18:4b:b7:d8:b9:9c:6d:e0:44:53:29:ad:f3:84:
39:ed:79:e6:99:a0:62:3b:af:42:33:4f:71:2f:0e:
e5:9e:ee:03:74:8f:01:ff:3b:28:5f:e9:79:8b:00:
36:65:96:57:11:a3:d5:34:33:f6:d4:2b:7c:95:c9:
83:3d:d6:56:91:64:1b:4e:65:73:ee:4f:e0:ff:7e:
d5:ec:40:05:db:05:90:ba:d2:71:e6:7a:df:bd:2e:
1f:71:c6:fc:37:fc:95:2a:9a:8f:29:24:08:ad:d1:
8a:63:df:58:62:5a:cc:9c:44:67:db:37:47:30:b5:
5b:ca:1d:9a:cb:d2:d8:66:71:a0:03:f1:df:11:a6:
bd:00:34:b5:db:c6:df:06:63:fa:92:2c:67:93:be:
3a:06:f4:3e:72:9c:93:55:0d:54:66:1b:0e:37:56:
0b:17:72:41:d8:2d:02:3c:46:ec:f6:e3:a0:de:fa:
90:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:3A:1A:C3:AE:10:A0:2C:8D:12:68:12:5B:DD:E0:48:74:FB:CB:60
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/kToaw64QoCyNEmgSW93gSHT7y2A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.163.0/24
Signature Algorithm: sha256WithRSAEncryption
63:61:ce:26:ca:e5:94:19:d3:b6:b7:3d:67:b6:67:9d:ce:e7:
31:02:a0:0c:10:f2:25:ba:6e:f8:95:7f:bc:a8:3c:16:d7:db:
b0:a1:0a:ce:0a:69:ad:26:e8:02:eb:fa:ec:db:1e:b8:1f:85:
f8:b5:6c:d9:87:fd:ad:4b:09:48:ae:37:6c:fb:a1:47:8a:1a:
37:1f:cd:de:58:98:04:49:6d:e6:82:18:d6:17:83:59:6e:77:
42:d1:0c:ca:fe:d9:55:6d:e8:45:52:9c:92:95:07:1c:ce:ae:
a5:0b:76:c1:14:f9:ac:7c:ef:05:0f:d0:f9:38:d4:7d:a8:54:
3d:ba:32:ea:f7:b6:6c:3f:a8:d8:89:30:71:47:94:41:96:31:
76:25:0f:85:35:1b:7e:f7:db:82:4f:4f:38:a5:53:4f:4f:e9:
09:c1:43:b9:a6:3c:fd:85:d3:3c:f9:a5:6d:cd:5a:fe:25:55:
ae:75:f0:af:48:6d:1b:1f:45:a2:02:0a:07:e7:1b:88:ba:77:
44:0f:fe:08:9e:93:54:d7:43:a1:8f:ce:9f:81:14:05:36:9e:
ee:a0:bb:bd:ae:65:e9:d0:2a:b7:7a:03:c6:04:41:56:34:1f:
94:8d:8c:4f:07:34:b3:85:9e:7a:8f:bd:bc:28:f4:73:c0:94:
72:12:58:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:14 2024 by rpki-client on console-ams.rpki-client.org