Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/9IkvXZX_NRtEAIxgyelKnq1QT0o.roa
File: 9IkvXZX_NRtEAIxgyelKnq1QT0o.roa (raw, json)
Hash identifier: AiI/nXiQZgtO56L9Z7XIZr/vWH3tS3ZYtKU2qY2TCXc=
Subject key identifier: F4:89:2F:5D:95:FF:35:1B:44:00:8C:60:C9:E9:4A:9E:AD:50:4F:4A
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 1301
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/9IkvXZX_NRtEAIxgyelKnq1QT0o.roa
Signing time: Mon 10 Feb 2025 14:08:58 +0000
ROA not before: Mon 10 Feb 2025 14:08:58 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 24164
IP address blocks: 203.77.36.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4865 (0x1301)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 10 14:08:58 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=F4892F5D95FF351B44008C60C9E94A9EAD504F4A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:f4:43:b2:8c:88:8e:d4:c7:a8:5d:db:b6:ea:
7c:b0:3f:de:ef:73:a7:bc:76:aa:4a:ed:ed:e0:52:
ee:2f:db:38:9f:69:82:0d:22:c0:2c:b0:d9:64:56:
6f:c9:73:2c:27:fc:30:38:99:a1:d8:e2:ca:c9:f9:
65:a3:d5:ad:b1:6e:48:04:47:0b:7f:cd:76:e0:44:
72:43:ed:93:5e:04:ef:df:84:5b:06:29:38:2d:58:
67:b3:5c:68:0d:72:da:61:00:5a:43:44:ff:f2:09:
1d:87:b6:24:89:6c:5e:48:9b:c6:b6:b0:34:29:dc:
01:36:6f:ae:73:f2:2a:b3:6a:f6:47:6f:a2:d9:63:
e5:95:a2:2c:dc:a7:da:dc:a0:36:be:f2:08:b9:76:
b2:0c:24:b5:31:5b:24:6d:97:da:75:f9:e5:02:2f:
22:e5:f3:4a:b4:28:bf:48:9e:86:4a:3c:13:46:53:
12:7c:bb:ba:21:64:d1:42:bc:f8:33:5e:fa:b8:2b:
99:20:25:b6:35:df:20:2a:fc:55:5d:cc:d8:c0:64:
18:a7:86:1e:96:83:d4:15:bf:9b:ec:0d:80:f7:bb:
c3:de:7f:f7:c5:0d:fc:28:ec:8a:38:46:c1:ed:a2:
9a:ea:63:13:da:db:70:c5:af:83:13:c0:5f:d1:6d:
01:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:89:2F:5D:95:FF:35:1B:44:00:8C:60:C9:E9:4A:9E:AD:50:4F:4A
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/9IkvXZX_NRtEAIxgyelKnq1QT0o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.77.36.0/23
Signature Algorithm: sha256WithRSAEncryption
41:aa:90:64:05:a6:91:f7:d8:82:2e:9a:a4:76:ca:88:57:a8:
de:b6:26:51:3b:d5:3a:82:47:1e:5c:58:17:fe:63:ae:48:e7:
c0:20:48:5f:99:ba:91:df:88:c2:f2:c3:86:2f:33:5e:78:e1:
0a:98:ee:0d:3d:55:fd:26:2e:21:eb:6d:8e:e8:e8:d5:26:95:
c8:f0:08:15:f9:6c:ef:d5:c9:68:ed:12:65:b2:72:a5:ee:6e:
3d:f9:54:c0:41:e4:b4:bc:9d:70:85:c5:3e:b8:8c:a3:82:d0:
12:28:61:e6:b8:78:61:c7:03:be:ac:5e:25:99:a1:53:ca:ad:
dc:0c:03:74:3e:03:8f:84:bb:aa:16:77:4a:83:9a:1a:f8:9e:
9f:fe:e9:1b:91:9b:c7:d4:5f:1f:01:48:7d:57:0d:dc:4b:73:
8d:8c:64:94:18:2b:39:cc:16:35:5b:30:27:01:c3:ff:8b:0b:
4f:f9:57:68:26:f0:94:16:f6:81:cf:b3:f6:69:33:93:5c:61:
4b:89:94:9d:4e:c0:b4:9e:f8:53:4d:7d:28:86:eb:db:55:d3:
2d:ad:43:16:43:12:82:fd:93:42:57:d1:c8:67:71:c6:a9:bc:
34:43:c2:26:56:92:9b:d0:e8:bf:7f:17:5e:71:87:de:3e:57:
af:25:b2:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 17:01:53 2025 by rpki-client