Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/tzp5aGWsW0KodeqKdREH-ZUSunE.roa
File: tzp5aGWsW0KodeqKdREH-ZUSunE.roa (raw, json)
Hash identifier: kwmozAGfu3v333gbfmWK3pFm3/el+ZOj8W/RJBude4A=
Subject key identifier: B7:3A:79:68:65:AC:5B:42:A8:75:EA:8A:75:11:07:F9:95:12:BA:71
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0C21
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/tzp5aGWsW0KodeqKdREH-ZUSunE.roa
Signing time: Fri 01 Sep 2023 09:14:01 +0000
ROA not before: Fri 01 Sep 2023 09:14:01 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9919
IP address blocks: 61.61.0.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3105 (0xc21)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Sep 1 09:14:01 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=B73A796865AC5B42A875EA8A751107F99512BA71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:d7:76:bf:10:ab:4e:51:a8:0f:04:87:e7:ad:
70:3c:ae:33:4b:58:15:c2:62:9e:dc:88:68:44:67:
62:73:9b:28:a6:97:a8:09:c0:fc:b0:61:2a:15:ef:
d3:c9:5c:63:8e:78:3f:b8:18:67:30:a2:7e:b3:3f:
97:28:5d:9c:0e:e0:22:7d:a5:9b:22:41:f4:42:39:
34:f4:ea:dc:55:ea:27:23:96:a4:a5:2f:ff:3d:92:
00:93:da:ab:21:cf:3d:70:30:b3:d7:80:54:40:f7:
b2:c3:0d:07:a4:7a:1d:2f:9b:ba:8d:bc:09:8f:68:
d5:f3:62:dd:ae:8d:13:24:13:93:f9:85:18:de:6e:
6b:79:08:ab:30:c1:48:13:9f:f4:57:74:ee:1b:4d:
66:05:51:cf:05:a1:7e:95:4f:3e:67:ad:38:a3:b4:
be:6e:b7:5f:49:ee:ba:a8:39:1f:2c:6e:1e:d8:44:
8a:b3:70:3f:5b:92:4b:63:2e:e7:c9:60:c4:5c:c1:
29:ce:84:2e:d0:22:3a:15:bd:c2:31:02:5e:5b:73:
e5:e6:14:0c:93:81:df:18:57:52:57:12:e1:9d:95:
e8:58:3c:12:fe:e7:1f:0e:c4:6e:d6:2f:45:e6:00:
27:7b:96:10:2b:e9:17:9c:71:39:4a:67:e5:a3:fd:
40:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:3A:79:68:65:AC:5B:42:A8:75:EA:8A:75:11:07:F9:95:12:BA:71
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/tzp5aGWsW0KodeqKdREH-ZUSunE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.0.0/17
Signature Algorithm: sha256WithRSAEncryption
9d:b9:f3:4e:a5:88:a7:fe:b0:c3:c6:88:59:a8:40:31:e5:4d:
f5:5f:3a:d9:1f:64:36:b1:67:ff:cd:34:cd:1d:b8:23:be:89:
e3:63:4d:24:9f:c4:cf:81:a1:98:c4:af:35:52:25:54:dd:4a:
c0:bf:32:84:b7:cc:1d:43:a7:52:ef:a8:78:33:aa:ec:80:fc:
21:58:80:d2:65:77:a8:ef:6f:f8:25:3f:48:84:d5:42:98:ca:
c0:d0:a0:0e:1f:ab:c2:6d:2f:bf:c3:c4:34:27:ee:6d:a0:e9:
95:5b:ce:2c:e3:7e:fe:60:9b:f2:6c:82:3c:79:db:91:6f:c5:
08:3b:74:39:e1:f7:99:7b:ed:c2:1e:b8:17:61:a4:fb:b8:16:
3e:a1:47:da:0a:fc:d5:8a:bf:5f:0f:5a:a1:12:ae:00:4c:0b:
a5:34:8b:b9:71:0b:aa:d5:60:b8:17:8b:5a:b9:c9:29:df:94:
06:20:64:1a:25:5c:97:a9:2f:15:f9:4a:ea:4a:f7:50:b0:27:
a3:2b:b3:42:0f:01:ec:03:35:4f:ee:28:a4:c3:b8:c5:01:91:
2c:ff:5f:72:ed:5f:f8:2c:a7:39:ea:2e:7b:49:f7:8b:7b:6d:
d0:89:d4:d1:1b:21:ef:13:d7:24:ba:57:12:cb:5c:67:78:a9:
34:61:c2:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:14 2024 by rpki-client on console-ams.rpki-client.org