Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/zXGnI3N6WLZfI-Qz4g5IGLn_fGA.roa
File: zXGnI3N6WLZfI-Qz4g5IGLn_fGA.roa (raw, json)
Hash identifier: LE1pSezo6zUJDGV0/jj4JypyzszGqlcR1kS2gpDbWjA=
Subject key identifier: CD:71:A7:23:73:7A:58:B6:5F:23:E4:33:E2:0E:48:18:B9:FF:7C:60
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0C1E
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/zXGnI3N6WLZfI-Qz4g5IGLn_fGA.roa
Signing time: Fri 01 Sep 2023 09:14:00 +0000
ROA not before: Fri 01 Sep 2023 09:14:00 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9918
IP address blocks: 61.61.128.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3102 (0xc1e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Sep 1 09:14:00 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=CD71A723737A58B65F23E433E20E4818B9FF7C60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:86:84:39:1a:34:27:fd:4f:19:b8:59:8b:70:
ec:c4:2d:5a:6e:d1:2b:79:6f:7e:a1:a4:51:fe:74:
3b:7e:c7:a5:12:14:f4:ff:41:d5:fa:4c:17:19:b8:
7e:f6:e1:1f:e3:01:10:bc:60:6d:5c:d9:56:be:99:
f4:87:1a:bd:39:4e:02:2a:a3:2c:af:e2:67:91:46:
a3:d2:06:b6:e0:0c:27:f4:41:c6:eb:a9:84:a4:ef:
07:b3:c7:46:f4:19:04:4a:8a:b9:53:76:db:7d:36:
65:c4:8b:1a:66:3a:39:1e:3b:21:be:fc:6b:89:3f:
3a:35:0b:f8:14:44:85:15:3b:d6:00:2d:d2:d9:79:
39:04:db:ac:68:8b:fd:48:93:b4:b5:b9:fc:da:22:
3e:57:b6:15:91:df:a0:36:31:da:8e:4b:2d:dd:57:
a9:6f:15:a5:f2:73:90:8b:82:48:ec:c8:4a:91:86:
07:be:a4:aa:3c:c8:40:b9:da:70:2d:b1:c0:65:5b:
77:db:62:0f:dc:a0:9b:77:a4:58:34:fd:a4:5e:9d:
05:9c:e2:c5:27:3c:3c:be:ef:ef:13:eb:5e:4e:54:
bb:de:99:0b:41:f5:ac:2c:5b:df:03:0b:2b:5b:5d:
05:db:b0:1d:29:67:c5:05:13:8f:4a:53:40:26:ed:
43:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:71:A7:23:73:7A:58:B6:5F:23:E4:33:E2:0E:48:18:B9:FF:7C:60
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/zXGnI3N6WLZfI-Qz4g5IGLn_fGA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.128.0/18
Signature Algorithm: sha256WithRSAEncryption
70:fe:d8:9e:5c:02:99:75:6d:e3:eb:96:9a:83:84:32:8f:f7:
f6:a9:5e:e2:4f:50:83:cb:9e:f4:41:9b:c1:c6:4f:35:c2:6a:
fe:a2:91:2a:ad:e4:b9:2b:df:2e:4e:17:fe:e9:69:19:dc:4f:
8f:13:cc:3f:6f:12:02:46:03:37:a8:e4:5a:67:4e:e9:50:d0:
70:2a:83:a3:bf:7c:ee:54:b4:90:ad:74:fe:1a:23:b7:02:2a:
d8:bc:2c:7a:c8:80:8b:fa:70:c1:57:14:a9:c4:19:e8:be:bd:
14:23:f1:db:19:e1:23:b3:72:13:4e:6c:12:3e:20:0b:52:02:
b4:38:ad:69:ac:e4:a0:29:06:f6:3b:3f:7c:78:8f:f6:9e:3e:
c3:99:e7:61:d0:95:22:f4:ba:8f:52:8e:29:f3:55:3f:71:9e:
73:e4:9e:87:3b:9b:b4:e4:93:f4:84:08:fd:83:6b:5c:bc:5b:
3c:ba:4e:4f:29:dd:29:06:5d:bb:75:82:8e:f5:1a:33:a7:36:
ef:28:94:4a:ae:dc:ee:e1:67:af:62:45:a9:f4:6a:04:72:e7:
18:c4:14:97:32:80:b7:31:93:1a:7c:70:c0:8a:9a:96:9d:98:
2d:3d:72:98:5b:a2:73:65:ec:87:60:6a:2c:8b:b4:92:b3:8b:
c3:2e:dd:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:21 2024 by rpki-client on console-fra.rpki-client.org