Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/5YNk7Olc24Gg0fWcGao4bfvyep0.roa
File: 5YNk7Olc24Gg0fWcGao4bfvyep0.roa (raw, json)
Hash identifier: k1uahQNDFlVzu6I5hxIEG2/+Rso9PB2WVaiIl3ldSJg=
Subject key identifier: E5:83:64:EC:E9:5C:DB:81:A0:D1:F5:9C:19:AA:38:6D:FB:F2:7A:9D
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 1343
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/5YNk7Olc24Gg0fWcGao4bfvyep0.roa
Signing time: Mon 10 Feb 2025 14:09:17 +0000
ROA not before: Mon 10 Feb 2025 14:09:17 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 24163
IP address blocks: 60.198.32.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4931 (0x1343)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 10 14:09:17 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=E58364ECE95CDB81A0D1F59C19AA386DFBF27A9D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:57:1e:ab:e4:26:e7:ff:3e:3c:ca:6f:2d:34:
a8:cb:45:56:c9:56:8b:e0:04:b2:7c:02:7b:08:d7:
8e:40:7d:0e:81:d4:9b:a1:d5:37:ca:2c:f3:8b:8b:
c3:4d:6d:4b:9a:75:32:b9:b6:77:08:8b:5c:df:ff:
74:50:6c:ab:d5:37:bc:91:6f:86:db:b0:80:8e:f3:
cf:82:41:fc:d4:f1:c9:ec:34:da:b3:f2:05:62:ba:
34:07:44:83:c2:7b:fd:03:a6:5a:a9:f3:2a:0a:bb:
69:ca:cc:f1:4b:c9:55:aa:23:27:3e:45:07:c7:5a:
98:c3:0a:e1:60:be:1b:93:f0:59:25:7d:71:20:c7:
d0:dc:9f:3f:f1:5b:53:1e:a9:23:cb:fb:5a:35:f3:
46:9b:34:cd:5e:36:a0:a5:a3:f9:ce:e4:e0:72:52:
5e:e1:03:ae:bb:af:19:9d:11:36:e4:5d:df:28:e4:
bb:e3:97:6a:86:d2:82:94:11:d9:e9:dc:10:cc:39:
1f:33:98:de:63:02:4f:2a:bd:3f:8d:54:6e:1b:77:
fc:fc:f1:7d:4d:51:33:21:37:2f:c4:40:69:dc:39:
b9:58:82:bb:7f:40:0f:3e:46:1e:75:ef:5d:37:29:
14:b5:b2:c7:61:5d:26:56:fe:a4:b2:b0:55:21:8d:
b9:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:83:64:EC:E9:5C:DB:81:A0:D1:F5:9C:19:AA:38:6D:FB:F2:7A:9D
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/5YNk7Olc24Gg0fWcGao4bfvyep0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.198.32.0/23
Signature Algorithm: sha256WithRSAEncryption
99:d0:16:6b:48:d3:be:6a:4c:87:7e:87:91:0c:db:df:5a:70:
dc:fe:91:fb:04:e1:0e:d3:30:12:e9:ce:aa:e5:9d:10:5e:38:
b9:93:59:b9:f3:ab:9a:cd:be:73:98:40:f8:da:0c:0f:b2:80:
28:6b:ac:03:e1:a9:50:79:3b:98:5e:59:87:4d:de:43:e4:bb:
a2:98:21:2c:d4:e7:7e:8a:26:8f:d7:53:6c:66:97:cb:cc:27:
d0:37:08:71:4d:c4:5e:bb:99:3b:55:7b:8b:f4:bb:60:03:86:
9c:86:73:ef:77:a6:c0:7a:5e:36:b8:c2:65:7f:74:26:fb:52:
b8:a7:77:f3:1c:a5:7b:81:ea:5a:dd:f1:aa:d8:50:14:66:2d:
b9:5d:f1:ca:8b:50:25:dc:a2:a7:a5:0c:c0:05:c7:24:35:50:
4f:5b:66:da:79:a5:77:df:95:7c:ad:37:1b:7a:1f:b8:bf:25:
61:ff:11:9d:68:c8:d4:ca:d9:5f:ed:55:71:da:5e:1f:ce:85:
7b:ae:39:5a:03:38:d5:9e:ad:50:b0:d1:0a:29:8e:93:ed:e1:
c3:13:17:50:ff:50:b6:94:6c:33:e0:0b:f4:99:e2:ec:27:06:
72:38:3c:9f:2e:ed:4f:2f:e7:ab:f0:55:e4:93:19:01:8e:66:
47:69:ed:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 16:48:58 2025 by rpki-client