Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/xvegpzUJXk1UddfkbC_v7hkv5z0.roa
File: xvegpzUJXk1UddfkbC_v7hkv5z0.roa (raw, json)
Hash identifier: f+vKMGadWNjZVjoInAsv6WnEoCRCs6l52mECmXFkexY=
Subject key identifier: C6:F7:A0:A7:35:09:5E:4D:54:75:D7:E4:6C:2F:EF:EE:19:2F:E7:3D
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0C2D
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/xvegpzUJXk1UddfkbC_v7hkv5z0.roa
Signing time: Fri 01 Sep 2023 09:14:03 +0000
ROA not before: Fri 01 Sep 2023 09:14:03 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 4780
IP address blocks: 61.61.0.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3117 (0xc2d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Sep 1 09:14:03 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=C6F7A0A735095E4D5475D7E46C2FEFEE192FE73D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:7a:18:bc:a3:ce:73:b6:13:57:2a:c2:7e:a2:
b6:4a:39:61:f5:1e:4f:a6:98:78:82:51:70:12:02:
f7:83:76:cb:1b:62:9b:f8:9b:1f:d7:47:02:20:cb:
c2:ac:a8:03:23:68:a7:46:c1:4a:b5:9c:f0:66:8b:
a7:69:d9:e9:3a:6d:fc:24:6c:21:69:8e:06:d3:86:
13:b0:51:d2:4e:f5:bf:5d:4a:6a:ed:c3:07:09:c9:
4d:d6:59:d0:68:d0:63:1b:fa:1b:7c:49:8b:4e:33:
01:7d:30:a3:d8:79:d8:86:d0:db:0a:4e:b7:7f:08:
4a:9a:16:6d:ea:c7:dd:fb:18:a1:3b:c5:fb:a1:77:
33:29:db:c2:6e:c2:79:1b:19:34:03:8d:06:5d:c6:
f4:7b:06:13:d4:05:c2:18:47:2e:5b:0f:dc:86:78:
d2:6c:53:00:d4:d5:ab:91:9f:0d:bd:8d:d1:e1:11:
a3:01:71:cc:88:f7:b4:91:3c:0b:5a:90:48:f5:85:
c6:d0:60:d8:5e:28:7a:85:c0:2a:6a:32:0d:5c:8d:
a3:2b:55:24:0c:3a:0c:ac:c5:4d:68:6f:51:cb:16:
92:0b:27:fd:5b:05:af:4d:e3:96:5a:e9:9d:45:57:
1a:33:ad:e2:41:db:9f:71:ef:05:74:c7:24:c2:91:
77:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:F7:A0:A7:35:09:5E:4D:54:75:D7:E4:6C:2F:EF:EE:19:2F:E7:3D
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/xvegpzUJXk1UddfkbC_v7hkv5z0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.0.0/17
Signature Algorithm: sha256WithRSAEncryption
53:99:09:a4:22:20:95:da:0e:8c:07:69:32:32:75:1a:f5:51:
0c:78:13:3f:66:46:e2:cb:9d:4d:7b:50:98:e6:a2:09:4e:40:
57:f6:1d:3f:98:33:56:38:0b:ba:71:3f:1f:c7:f6:90:13:9d:
ab:15:b7:bd:63:c7:f7:f9:ca:69:4f:ae:68:34:57:f9:4c:ae:
bd:e5:cf:3d:d2:eb:c5:18:ad:41:58:a2:ed:11:41:b3:81:78:
b5:ca:2d:d0:af:a8:e5:83:a3:25:ad:7b:df:4e:ec:72:e3:42:
4b:da:48:68:ed:11:a3:2d:cc:93:a8:82:d1:50:94:b2:31:ab:
c6:13:e0:93:50:aa:ea:39:6f:9a:d1:6b:74:e7:8f:50:9c:c6:
da:f6:73:55:43:dd:75:61:6f:45:1f:a4:18:f2:be:af:66:15:
1c:94:58:e5:64:71:38:48:4c:48:63:cd:f5:75:97:ab:63:2a:
0e:4e:b2:10:db:94:56:51:0a:e0:65:b8:8d:a2:6d:b4:b2:1b:
97:ef:62:9d:2b:2f:50:4e:6f:53:39:e1:aa:15:d3:bc:be:7b:
32:4c:fa:b0:e9:ec:53:34:91:d6:d2:23:08:d5:0c:ef:42:a4:
3b:83:f6:2b:62:ee:50:7a:8a:2b:1a:08:7e:1f:bb:d2:bf:8a:
f3:8c:08:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:14 2024 by rpki-client on console-ams.rpki-client.org