Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/0dcCCbmBZyu-YYmua156D9u4c7I.roa
File: 0dcCCbmBZyu-YYmua156D9u4c7I.roa (raw, json)
Hash identifier: b7KWXt45OXNtA9hh6Cg67JIqQ0ux0hdptWQsSJ+qxbI=
Subject key identifier: D1:D7:02:09:B9:81:67:2B:BE:61:89:AE:6B:5E:7A:0F:DB:B8:73:B2
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 136B
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/0dcCCbmBZyu-YYmua156D9u4c7I.roa
Signing time: Mon 10 Feb 2025 14:09:26 +0000
ROA not before: Mon 10 Feb 2025 14:09:26 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 24158
IP address blocks: 2001:4546:1000:8f00::/56 maxlen: 64
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4971 (0x136b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 10 14:09:26 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=D1D70209B981672BBE6189AE6B5E7A0FDBB873B2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:99:b5:6e:2f:19:8b:14:3f:02:72:07:99:cc:
df:84:b8:24:69:74:67:5e:71:31:2e:c2:bd:e9:1a:
30:ef:4b:30:0a:39:d9:3f:38:9f:93:32:39:31:30:
94:d8:06:6a:29:79:64:3b:ef:f7:8a:bf:0a:6b:54:
c4:a9:7e:54:ca:6c:99:5e:53:69:75:8b:25:4f:8b:
05:6b:c6:fc:38:3f:9b:9b:6b:12:49:11:96:9e:9b:
30:14:95:ef:b0:66:f3:24:c2:bc:e3:4d:a0:98:e4:
f8:ab:9e:dc:96:f8:7e:24:94:38:64:5c:8f:2c:ae:
9c:dc:67:44:1b:da:64:21:56:33:d8:a6:78:eb:ff:
aa:79:71:50:94:d5:9c:b4:b5:2c:4f:41:68:9c:e5:
5d:41:71:62:00:2b:84:75:fe:f9:4d:aa:b1:16:8a:
30:b4:6e:50:4a:48:81:34:2f:45:c7:e6:6e:24:47:
d7:e5:b7:8c:07:f3:aa:27:c7:0b:f2:62:36:25:2b:
24:3f:74:2f:6e:39:26:eb:35:09:e9:64:c2:70:e1:
a1:90:26:28:dd:bc:98:32:fc:35:22:84:ab:95:ba:
42:34:82:b1:b2:72:f6:f4:ec:fd:e3:b3:6a:09:7d:
4b:77:ca:b5:04:75:88:80:9b:6c:68:32:bf:57:55:
7d:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:D7:02:09:B9:81:67:2B:BE:61:89:AE:6B:5E:7A:0F:DB:B8:73:B2
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/0dcCCbmBZyu-YYmua156D9u4c7I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:4546:1000:8f00::/56
Signature Algorithm: sha256WithRSAEncryption
80:a3:7a:9d:b7:c3:e9:57:a0:87:ff:f6:ee:51:3d:0a:4b:c3:
79:24:2b:86:12:5e:2d:fb:34:94:4b:97:cf:39:4a:77:02:55:
93:86:72:b2:4a:42:31:bd:e0:f3:c7:79:a9:c7:72:ae:0c:ed:
d0:59:ff:1a:6e:5f:8b:94:4d:f8:e8:7a:57:13:1d:e3:5f:c8:
a1:5a:1a:bb:13:e0:2c:82:d3:63:00:35:ae:95:36:f3:19:2c:
af:9b:10:8d:cc:bc:a2:1e:ea:51:d8:25:71:6c:bc:d0:14:0b:
1e:26:38:6e:e1:00:cb:2d:97:a2:96:55:bc:cc:0a:95:84:c5:
fa:0c:f8:2b:4d:af:f2:34:88:82:f4:50:9a:9d:59:04:7c:69:
15:3e:b0:8e:a8:d9:5f:3d:2a:a3:90:8a:91:8d:cd:57:e7:79:
78:5a:64:90:a2:84:83:23:f1:ca:d2:2e:53:5a:6a:bb:e4:ba:
c3:45:7b:f0:e3:d5:05:7e:1d:05:ce:fb:a5:16:3b:86:94:1e:
ed:9f:27:07:6d:41:ed:8f:2e:60:7f:bb:8e:e8:66:d5:00:cf:
60:45:a9:04:a5:fd:cd:52:ef:20:50:0d:2b:91:6e:94:11:19:
3b:49:a1:2d:26:bf:33:1e:b5:38:cc:50:73:a4:4e:84:fc:93:
e0:79:e1:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 16:56:38 2025 by rpki-client