Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/qQk_E-QgP62JFZ53EZCxiXa4SOE.roa
File: qQk_E-QgP62JFZ53EZCxiXa4SOE.roa (raw, json)
Hash identifier: pSjoWU4WOTCTrbJmdbck9eHdrgnHfMRwnSEX8KQDlkA=
Subject key identifier: A9:09:3F:13:E4:20:3F:AD:89:15:9E:77:11:90:B1:89:76:B8:48:E1
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0E10
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/qQk_E-QgP62JFZ53EZCxiXa4SOE.roa
Signing time: Mon 10 Feb 2025 13:59:24 +0000
ROA not before: Mon 10 Feb 2025 13:59:24 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18049
IP address blocks: 61.61.176.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3600 (0xe10)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Feb 10 13:59:24 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=A9093F13E4203FAD89159E771190B18976B848E1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:61:79:5c:9a:8c:ba:c0:2c:17:6b:12:eb:2c:
19:32:5d:69:25:9e:7f:77:f6:d2:86:a1:cd:56:25:
23:1d:7e:b9:10:62:cb:46:d7:23:eb:7c:71:4e:a9:
4e:2f:fa:0f:93:ae:24:72:c5:9b:9c:35:cc:59:cc:
33:5f:34:cc:52:31:5d:f3:45:51:db:32:9f:49:28:
35:97:43:25:3e:8f:d5:e1:f4:cf:f0:f4:f8:18:ea:
f4:bd:80:9a:8f:dd:b7:0c:a8:70:12:0d:ea:57:55:
14:94:c3:20:2a:80:5d:d8:7d:6e:17:82:a2:5a:e5:
0d:ca:db:d9:17:81:41:9f:57:09:65:39:4f:83:49:
ae:93:f8:bb:d9:0d:b8:0b:bf:f1:9b:ee:88:27:6f:
03:d0:63:10:bf:93:01:d0:56:c9:97:a0:04:c4:e4:
7a:9a:00:96:95:88:ae:bb:5d:15:4c:12:f3:9d:00:
1b:1b:f5:21:a0:98:80:68:4d:33:d3:15:eb:1a:73:
11:aa:df:c1:18:db:b5:7d:68:9b:50:dc:88:37:5b:
68:43:61:55:99:8f:0f:a6:45:30:d7:5f:e2:9d:12:
7e:46:3e:00:36:fc:30:63:3b:2a:42:4c:69:d5:e4:
c7:54:08:a1:49:76:2b:88:24:4a:94:1b:b9:03:b2:
28:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:09:3F:13:E4:20:3F:AD:89:15:9E:77:11:90:B1:89:76:B8:48:E1
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/qQk_E-QgP62JFZ53EZCxiXa4SOE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.176.0/20
Signature Algorithm: sha256WithRSAEncryption
20:27:c5:b1:bc:49:cf:0e:28:fc:4c:20:40:53:c4:79:9f:8b:
35:3f:44:44:1d:e5:11:9a:2e:5b:15:02:33:6b:e3:29:2c:16:
38:7b:ea:72:9e:2c:fb:0a:7f:0d:3d:27:43:cc:a8:10:59:2a:
3a:0a:d8:d3:bb:a8:8b:a8:19:0d:8c:69:fe:c4:79:54:49:17:
5c:07:a6:b6:78:ec:b6:7b:3d:b2:db:71:b7:82:ef:c1:01:4c:
68:b0:d0:54:94:a0:ce:7a:4d:6e:0a:ed:89:58:aa:d4:8e:b6:
18:de:78:96:25:41:d0:be:df:1c:4d:92:ce:4b:fc:3c:e8:a1:
b6:3b:b3:7f:e5:84:9b:ce:f6:2c:cb:1b:0b:5e:b7:29:94:3f:
1d:d4:52:0c:b4:2d:74:21:d0:f6:b0:1d:9b:7e:33:02:79:39:
3a:5d:7f:af:44:68:15:05:92:e4:53:93:e0:a1:6d:31:75:d1:
7f:50:45:36:86:fd:f3:c9:61:8f:b6:d4:a1:d3:a6:31:b8:89:
4f:35:a9:81:a2:7f:f5:5b:6f:96:e9:ac:ec:af:8e:fe:37:ed:
c1:d9:34:77:d5:6f:44:ad:7b:4c:0f:72:b8:15:d1:bb:70:75:
18:85:b2:3c:c9:8b:3d:40:07:94:a7:f7:f6:cb:ad:ba:1d:11:
97:88:b4:7f
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICDhAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDc3
MkY3MTUzNDVCNTQyRTFENzA4QkNCMjU3MUZDRDcyREQyNkJGMzAeFw0yNTAyMTAx
MzU5MjRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEE5MDkzRjEzRTQyMDNG
QUQ4OTE1OUU3NzExOTBCMTg5NzZCODQ4RTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC7YXlcmoy6wCwXaxLrLBkyXWklnn939tKGoc1WJSMdfrkQYstG
1yPrfHFOqU4v+g+TriRyxZucNcxZzDNfNMxSMV3zRVHbMp9JKDWXQyU+j9Xh9M/w
9PgY6vS9gJqP3bcMqHASDepXVRSUwyAqgF3YfW4XgqJa5Q3K29kXgUGfVwllOU+D
Sa6T+LvZDbgLv/Gb7ognbwPQYxC/kwHQVsmXoATE5HqaAJaViK67XRVMEvOdABsb
9SGgmIBoTTPTFesacxGq38EY27V9aJtQ3Ig3W2hDYVWZjw+mRTDXX+KdEn5GPgA2
/DBjOypCTGnV5MdUCKFJdiuIJEqUG7kDsiglAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQUqQk/E+QgP62JFZ53EZCxiXa4SOEwHwYDVR0jBBgwFoAUR3L3FTRbVC4dcIvL
JXH81y3Sa/MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL1Iz
TDNGVFJiVkM0ZGNJdkxKWEg4MXkzU2FfTS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
UjNMM0ZUUmJWQzRkY0l2TEpYSDgxeTNTYV9NLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL3FRa19FLVFnUDYySkZaNTNFWkN4aVhh
NFNPRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAQ9PbAwDQYJ
KoZIhvcNAQELBQADggEBACAnxbG8Sc8OKPxMIEBTxHmfizU/REQd5RGaLlsVAjNr
4yksFjh76nKeLPsKfw09J0PMqBBZKjoK2NO7qIuoGQ2Maf7EeVRJF1wHprZ47LZ7
PbLbcbeC78EBTGiw0FSUoM56TW4K7YlYqtSOthjeeJYlQdC+3xxNks5L/DzoobY7
s3/lhJvO9izLGwtetymUPx3UUgy0LXQh0PawHZt+MwJ5OTpdf69EaBUFkuRTk+Ch
bTF10X9QRTaG/fPJYY+21KHTpjG4iU81qYGif/Vbb5bprOyvjv437cHZNHfVb0St
e0wPcrgV0btwdRiFsjzJiz1AB5Sn9/bLrbodEZeItH8=
-----END CERTIFICATE-----
Generated at Mon Apr 7 09:06:21 2025 by rpki-client