Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/9tOntslQFjLCtEMRo9S6XIKT_YY.roa
File: 9tOntslQFjLCtEMRo9S6XIKT_YY.roa (raw, json)
Hash identifier: q0IMaHge8pzSMmXSlMf1LcoQKjx33jBejDnUOIoqFDg=
Subject key identifier: F6:D3:A7:B6:C9:50:16:32:C2:B4:43:11:A3:D4:BA:5C:82:93:FD:86
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 131D
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/9tOntslQFjLCtEMRo9S6XIKT_YY.roa
Signing time: Mon 10 Feb 2025 14:09:07 +0000
ROA not before: Mon 10 Feb 2025 14:09:07 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 24164
IP address blocks: 203.77.38.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4893 (0x131d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 10 14:09:07 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=F6D3A7B6C9501632C2B44311A3D4BA5C8293FD86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:ad:32:d7:61:e2:38:44:4a:6c:18:2f:9b:2b:
1d:56:f5:d3:e3:99:4d:c9:43:05:00:d1:ec:d1:28:
03:aa:04:06:db:90:74:04:2e:4c:c9:70:1d:e9:8d:
1b:b5:5c:97:a3:c2:5c:51:f8:68:3a:bf:ae:96:e7:
c9:83:cc:61:51:5a:23:bd:65:69:29:1c:b7:1b:09:
55:7a:0b:c6:70:14:8d:f4:8e:fc:89:88:dc:ae:06:
f5:82:2c:ee:c0:4c:4c:16:e8:46:f6:9f:f7:c1:78:
ea:58:26:9f:d0:0d:99:cb:6b:d9:51:2e:bf:fa:08:
cd:53:64:1f:8c:19:d5:fc:12:08:53:7e:d2:34:37:
79:a9:e7:62:5b:af:d4:8c:d6:16:d2:eb:a9:22:f1:
00:9f:83:4e:e0:05:38:80:be:4b:5a:f1:41:d7:01:
74:bb:32:bf:e6:6a:66:c4:de:40:88:c6:ef:79:0f:
55:e5:ad:ca:2b:47:92:5d:68:94:72:5c:db:71:83:
85:52:bc:43:f9:8a:ca:cb:ae:ff:42:2d:a4:05:f6:
5a:3a:22:fa:05:62:28:5a:03:9f:6c:cc:51:6a:15:
cc:80:b9:90:eb:e8:f7:89:40:57:ae:d8:34:75:cc:
13:55:90:a8:d7:6f:dc:92:5b:7f:90:9b:82:4d:09:
87:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:D3:A7:B6:C9:50:16:32:C2:B4:43:11:A3:D4:BA:5C:82:93:FD:86
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/9tOntslQFjLCtEMRo9S6XIKT_YY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.77.38.0/23
Signature Algorithm: sha256WithRSAEncryption
91:c9:d4:46:cb:d9:9b:66:e3:63:a7:61:72:78:94:36:88:d1:
4c:aa:21:1b:d5:88:57:ba:c2:e7:7b:fb:10:dd:bc:24:f1:6e:
41:d5:35:fa:e5:60:da:2e:d6:23:a6:ad:9d:81:a4:da:81:cd:
ad:16:68:68:ad:b7:e1:aa:1c:67:35:dc:c4:f1:b9:ba:04:15:
27:91:53:54:fe:0b:5f:39:71:e4:13:97:3e:29:e6:b1:f5:21:
29:35:84:49:8a:4d:94:3c:c6:b7:54:35:46:a3:1f:d2:67:4e:
05:63:40:af:f9:bb:d2:89:19:15:96:b9:38:a0:dc:13:d8:be:
b3:e7:77:c3:fd:e6:4b:94:00:05:13:28:95:31:a0:e8:76:9c:
fa:84:47:b4:8b:28:cb:66:c7:c0:78:55:9a:84:b1:de:61:71:
2a:40:f0:c5:d0:95:b0:88:59:04:19:a2:da:a8:41:6d:7e:83:
86:1e:7f:cb:c6:53:65:e8:fd:15:79:0d:0a:72:78:db:bb:93:
e9:31:6d:e2:6f:00:de:ec:9e:37:4e:ba:6d:26:46:6e:e4:62:
03:d0:e8:3c:55:f8:00:dc:bb:5b:61:eb:d6:f4:43:d8:e4:13:
60:9c:c8:11:05:ea:00:68:76:8d:ac:39:20:1c:97:08:ac:e5:
76:10:d9:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 16:44:21 2025 by rpki-client