Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/ulfXhiuh2fjfvYYvyUggaw8hg_8.roa
File: ulfXhiuh2fjfvYYvyUggaw8hg_8.roa (raw, json)
Hash identifier: vwIPN67iJyUQhYEoY9jYnDgrSwuuNQRPPcpnNAcNfHA=
Subject key identifier: BA:57:D7:86:2B:A1:D9:F8:DF:BD:86:2F:C9:48:20:6B:0F:21:83:FF
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0D63
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/ulfXhiuh2fjfvYYvyUggaw8hg_8.roa
Signing time: Mon 26 Aug 2024 05:19:46 +0000
ROA not before: Mon 26 Aug 2024 05:19:46 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 4780
IP address blocks: 211.78.24.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3427 (0xd63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Aug 26 05:19:46 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=BA57D7862BA1D9F8DFBD862FC948206B0F2183FF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:59:6a:f2:0d:8d:0b:a9:2b:bb:f5:5b:fb:da:
82:49:80:e9:9c:97:10:d7:94:6b:a6:61:b0:11:b2:
48:7d:42:5f:50:06:2d:a5:44:61:4b:b1:c3:4f:c6:
96:1c:09:c0:19:5f:bc:47:aa:0f:e4:e0:09:07:b7:
f7:8b:47:98:7f:ce:14:54:70:7b:d1:73:f1:05:30:
57:b8:92:1f:42:3d:45:c1:91:56:97:94:39:ca:2c:
21:40:05:2e:a9:36:a3:71:91:55:e6:95:fc:00:30:
85:88:cf:38:31:54:a3:3a:d7:e4:32:af:ef:1c:2c:
62:da:31:78:a1:46:15:a4:0a:f7:09:bc:ca:63:4d:
8c:43:2c:9f:39:13:8e:69:77:11:af:e3:f7:e4:84:
81:b4:7d:62:2f:ee:13:cc:10:80:a0:a1:00:5d:96:
9e:f0:01:19:0e:8e:1e:2c:d3:d2:8e:70:59:fa:2a:
bd:ec:f5:14:2e:5a:16:5f:bf:a9:90:24:0d:7e:29:
20:43:a8:d2:03:75:16:56:89:0d:be:c7:73:c6:ab:
6d:b8:50:2a:67:30:a3:3e:0d:d6:26:83:59:58:36:
ba:6e:4a:6b:71:51:49:d8:60:98:c7:95:d5:67:89:
69:f9:20:e9:9f:9f:52:4c:96:b2:67:1b:05:4b:87:
85:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:57:D7:86:2B:A1:D9:F8:DF:BD:86:2F:C9:48:20:6B:0F:21:83:FF
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/ulfXhiuh2fjfvYYvyUggaw8hg_8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.78.24.0/21
Signature Algorithm: sha256WithRSAEncryption
0d:f9:41:fa:72:bb:19:22:78:d3:3c:0e:a0:6d:79:f6:46:0a:
35:bc:20:dd:e0:11:2b:16:f4:f8:7c:c8:65:90:c0:bc:a6:4f:
92:42:99:79:8c:9f:d4:93:07:38:f3:09:1b:b7:3c:88:32:cf:
b3:2a:e6:a7:f3:f8:40:eb:85:ba:db:b7:fe:d4:5c:00:08:3b:
c7:f2:a7:99:f4:88:77:9c:56:7b:eb:b6:1e:43:29:90:51:b7:
d2:62:20:5f:f6:54:b6:c8:1c:cf:fc:0a:9a:d1:a8:9d:88:e2:
c9:05:1b:0b:86:54:62:a7:27:6b:e9:c8:22:66:b0:21:d7:d3:
17:c7:88:2f:16:fb:4e:07:1a:2d:b7:48:c5:41:90:fd:e3:0a:
eb:3b:3c:be:ff:67:63:df:fc:69:55:04:8c:b6:e8:4b:ea:13:
14:9f:46:ef:37:cf:30:03:cf:f6:f2:7e:a1:8f:b1:02:60:cc:
7d:87:ef:7e:c1:b0:64:b0:8f:64:ad:25:dc:70:48:08:dc:19:
35:95:bb:d2:6e:30:f0:9e:1f:29:56:ff:f4:21:af:e5:4f:0f:
6e:1d:ff:28:d4:4d:c7:ad:cd:55:a2:eb:48:ff:5d:4c:80:ef:
e4:52:3a:bc:cd:9b:14:af:de:d7:51:48:99:ca:a8:31:0b:03:
7d:ef:dc:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:07:36 2025 by rpki-client