Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/xw5_GaOg57nda4hcEHKSmjccjjQ.roa
File: xw5_GaOg57nda4hcEHKSmjccjjQ.roa (raw, json)
Hash identifier: tgL9BwerYw9rnWSehN60aC5obrMZ2uz4ubLgrR8KIGQ=
Subject key identifier: C7:0E:7F:19:A3:A0:E7:B9:DD:6B:88:5C:10:72:92:9A:37:1C:8E:34
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0E0B
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/xw5_GaOg57nda4hcEHKSmjccjjQ.roa
Signing time: Mon 10 Feb 2025 13:59:23 +0000
ROA not before: Mon 10 Feb 2025 13:59:23 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9922
IP address blocks: 61.61.164.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3595 (0xe0b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Feb 10 13:59:23 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=C70E7F19A3A0E7B9DD6B885C1072929A371C8E34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:83:bf:3f:96:cc:65:3e:ee:4a:e3:32:18:93:
ba:84:c3:a9:0a:07:8e:bf:22:db:bf:16:ea:19:a9:
1f:ed:c0:55:6e:6c:83:ae:8c:13:4e:61:38:02:75:
41:14:2e:dc:26:9e:bc:05:22:96:b0:44:55:f7:56:
70:b2:19:6d:1d:2e:09:a4:5c:79:b1:03:f8:de:3e:
15:89:a2:22:5d:48:d4:60:9e:7c:fa:22:af:1b:c7:
11:f7:31:b6:bf:03:1c:76:f1:6e:55:24:82:66:43:
69:0f:8b:35:99:55:6d:d9:94:ae:15:3a:20:5a:e8:
9f:0e:71:0a:a3:6e:26:40:e2:c7:9f:5c:ab:7e:39:
7d:89:59:11:ce:cc:60:56:80:7b:18:5b:da:3e:2c:
6c:69:0c:43:02:dc:50:a7:d5:01:8c:1f:60:3a:2b:
f9:ff:87:27:58:fd:ad:ba:14:ea:bf:92:53:d8:16:
c9:f8:be:85:87:54:84:6d:64:a6:93:d7:5f:2a:46:
45:d9:2c:79:b2:b8:a5:6e:2f:69:3d:01:b3:e4:62:
a5:89:67:b6:2c:37:d0:5d:9a:9e:30:fe:9d:b4:15:
8b:2b:8b:fb:e7:de:61:31:24:80:07:b9:8a:21:e8:
d8:2b:97:91:72:34:43:60:2b:6b:97:a5:e7:20:f2:
2b:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:0E:7F:19:A3:A0:E7:B9:DD:6B:88:5C:10:72:92:9A:37:1C:8E:34
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/xw5_GaOg57nda4hcEHKSmjccjjQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.164.0/22
Signature Algorithm: sha256WithRSAEncryption
7b:19:bf:69:d3:90:1a:8f:80:80:9c:a9:be:78:91:9e:c1:5a:
93:63:f4:47:13:ee:98:64:30:83:87:0f:ae:e2:3e:fe:67:86:
c4:1d:6f:b6:c3:8d:a2:62:c7:b4:c8:9b:99:de:82:77:46:e2:
9e:dc:eb:e5:ae:b9:d4:e7:37:3f:da:4b:fe:96:77:77:48:bd:
55:05:68:63:9d:9f:cd:3c:db:3b:75:e5:8e:89:16:59:32:73:
0b:bf:26:e7:4c:fb:96:6a:09:74:30:8d:44:99:eb:96:ab:6a:
6d:61:14:ce:f3:ff:6d:f5:0c:53:8c:b9:d1:04:35:1f:02:7d:
15:73:23:b9:d0:6c:12:5f:26:92:df:60:e2:9d:92:3a:7f:a8:
d7:51:27:38:9f:94:d8:e1:57:be:0e:0f:34:1f:28:4e:b7:ff:
ec:5d:74:04:48:c7:63:9d:9a:53:e1:97:c8:22:cc:24:52:08:
a9:32:1c:eb:49:85:f7:25:06:8b:47:e6:b5:48:c5:e5:56:99:
14:47:56:67:14:49:eb:64:2e:5a:09:a0:d2:4e:83:b0:61:a8:
81:df:62:10:62:3c:fa:c5:d1:44:30:ef:99:db:5a:e8:83:ea:
51:3b:02:b0:b7:b4:28:19:6f:15:68:0f:45:a7:b8:fa:c4:0a:
19:74:62:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:20:27 2025 by rpki-client