Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/0U2pXt2pHxaosEH7hPpNXm6ytus.roa
File: 0U2pXt2pHxaosEH7hPpNXm6ytus.roa (raw, json)
Hash identifier: drNTwzve6FaLi4I8YXdWvYf/HDIHpiuEhPyMHCL+L5g=
Subject key identifier: D1:4D:A9:5E:DD:A9:1F:16:A8:B0:41:FB:84:FA:4D:5E:6E:B2:B6:EB
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 1359
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/0U2pXt2pHxaosEH7hPpNXm6ytus.roa
Signing time: Mon 10 Feb 2025 14:09:23 +0000
ROA not before: Mon 10 Feb 2025 14:09:23 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 135596
IP address blocks: 60.198.155.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4953 (0x1359)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 10 14:09:23 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=D14DA95EDDA91F16A8B041FB84FA4D5E6EB2B6EB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:ca:2e:fd:d4:26:57:8d:8c:14:ca:26:da:cb:
2a:5d:f7:7f:1f:89:c5:c6:7b:4c:75:e2:9d:75:a2:
a6:08:2b:ca:bb:b5:92:61:61:ed:e3:26:d1:97:2f:
49:69:d1:8f:3e:3a:c7:22:29:74:28:35:10:23:e5:
69:07:e9:93:10:b5:55:90:25:2e:9b:44:ea:cd:45:
bb:76:38:bc:a5:ea:c5:31:ff:bb:29:16:33:e2:87:
76:a5:ea:d9:e2:ba:53:60:cc:53:6b:bf:65:e3:8a:
61:53:b5:48:f0:9b:16:71:87:0a:7f:cf:4a:b8:14:
78:7d:4b:27:3a:18:e4:de:82:4f:56:15:e5:c5:98:
39:cd:6b:9f:84:1f:71:f2:82:cd:f7:98:e2:61:cd:
54:72:cb:29:64:2d:c8:3b:8c:2f:ec:d9:a7:4f:c2:
65:ba:43:08:36:f4:d2:db:8a:1f:ab:f1:ae:6e:03:
0c:c4:8f:39:1c:b0:7d:86:5a:3b:73:43:f0:8a:c8:
81:46:4b:8c:0a:9b:0d:66:24:6d:15:96:28:f9:09:
7b:5d:eb:b6:20:a8:59:1f:a0:d9:5b:6c:ea:1f:03:
32:e6:ac:99:82:a2:58:ec:78:fd:8f:90:ee:0b:66:
1a:03:a0:75:dc:2b:01:ad:1d:07:50:73:37:f3:11:
22:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:4D:A9:5E:DD:A9:1F:16:A8:B0:41:FB:84:FA:4D:5E:6E:B2:B6:EB
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/0U2pXt2pHxaosEH7hPpNXm6ytus.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.198.155.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:ca:a2:2e:94:5c:b9:43:23:76:f4:e0:fa:ed:11:f1:4f:a3:
b5:b5:ec:3d:2f:ab:52:eb:f6:f4:99:2b:cc:bf:51:40:f8:72:
d0:fd:5d:89:b5:d5:39:70:bc:8d:d4:67:c1:68:91:ce:b8:76:
17:18:a2:23:b7:0f:58:e7:4f:a0:d1:06:65:e9:a8:23:00:26:
1f:2b:24:ac:63:83:60:5b:1e:c8:5a:de:cb:15:50:eb:bc:7a:
27:1e:0a:d6:0a:3d:02:cd:d9:bc:69:93:22:2f:e3:eb:6c:43:
16:c9:db:d2:a9:73:d5:ea:8d:b3:ce:95:1d:c7:c8:57:c2:e1:
93:75:5e:ac:6c:f6:e3:47:37:1c:db:56:3b:a6:37:cb:53:bf:
23:07:12:0e:c5:d5:30:69:67:3c:ee:70:54:cf:39:31:2c:eb:
0d:d0:b2:4d:87:d9:22:26:00:e0:e2:76:4d:1e:b4:fe:7b:cb:
6f:8d:2c:9a:fb:0b:03:47:2e:26:6a:92:a1:8f:db:86:2c:7e:
5a:17:85:17:03:a7:15:7b:30:18:27:7d:98:bc:c5:2d:4c:cd:
f2:75:19:64:d8:00:b2:ca:53:9a:b8:b9:7f:12:db:f6:63:f4:
57:6d:a4:d9:37:61:04:e3:89:5a:59:95:f7:da:0b:c0:75:2c:
59:10:09:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 18:09:00 2025 by rpki-client