Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/AmzgnD7J8_CSmwfqmOxQULdyzdQ.roa
File: AmzgnD7J8_CSmwfqmOxQULdyzdQ.roa (raw, json)
Hash identifier: SAvYJSFs7Vnlqk57KhWwFZ0BaJPX175nRvX9NaexaYo=
Subject key identifier: 02:6C:E0:9C:3E:C9:F3:F0:92:9B:07:EA:98:EC:50:50:B7:72:CD:D4
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 131A
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/AmzgnD7J8_CSmwfqmOxQULdyzdQ.roa
Signing time: Mon 10 Feb 2025 14:09:06 +0000
ROA not before: Mon 10 Feb 2025 14:09:06 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131634
IP address blocks: 124.108.136.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4890 (0x131a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 10 14:09:06 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=026CE09C3EC9F3F0929B07EA98EC5050B772CDD4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:ce:9e:a4:0c:37:fc:fd:db:8f:b5:82:f2:f5:
fe:75:bf:0b:2a:1d:c8:c1:84:db:24:df:a1:02:6e:
29:71:b7:44:0d:b3:a8:18:15:3c:7c:9d:dd:68:de:
7f:9d:3b:8e:cc:24:bc:53:fa:05:e7:99:2e:75:54:
f9:ea:ba:47:5b:cb:21:ca:0a:86:a7:93:d0:0c:ef:
13:af:01:3d:ac:43:00:44:57:8e:50:eb:ac:68:d7:
c7:9b:69:4f:87:03:1b:17:ce:aa:0b:e0:bd:78:86:
ab:2d:e8:75:6c:0c:ed:3e:37:fd:64:44:23:b1:32:
65:99:b6:3e:ef:68:46:42:b7:2c:d1:bf:1a:20:40:
c5:6f:9c:c7:f7:a6:58:37:0d:1c:35:67:f8:91:a8:
46:0a:c5:ad:5d:d4:6f:e9:3a:0e:e5:90:b8:59:c6:
97:64:5a:92:8c:e8:24:8d:c7:4e:c7:fe:2b:c3:e6:
2b:ae:bc:61:bd:0a:40:3e:2f:8f:e8:be:ee:4e:08:
4b:94:96:a9:ee:d4:46:dc:69:1c:bd:fe:5e:47:4b:
22:3b:15:3c:fe:99:a1:0e:d4:55:64:bd:6d:1c:6c:
99:2b:64:09:45:55:5f:6b:86:0e:cb:91:45:fe:f3:
3d:b6:87:a3:ed:97:e4:65:c9:b7:f6:a8:2a:84:93:
3e:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:6C:E0:9C:3E:C9:F3:F0:92:9B:07:EA:98:EC:50:50:B7:72:CD:D4
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/AmzgnD7J8_CSmwfqmOxQULdyzdQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.108.136.0/22
Signature Algorithm: sha256WithRSAEncryption
7c:2e:10:db:1d:3a:ae:90:5a:79:14:4a:9f:45:f3:24:ae:1f:
d0:dc:43:ce:5a:af:e6:b3:ab:b7:3c:f5:27:a5:56:44:c0:be:
bf:df:ce:e8:04:eb:57:27:e1:8d:c4:e6:d3:31:a8:3b:a8:65:
1d:3e:dc:9c:6e:40:6c:71:b5:89:ac:db:d6:12:8e:f4:dd:fe:
ea:f6:7d:69:d5:d6:7c:08:35:1e:8c:6f:8c:db:a7:0d:22:f6:
9e:41:7c:de:91:7d:55:3d:1b:e0:21:33:61:37:6c:f6:db:0b:
61:22:80:7c:2a:3e:06:48:3f:2e:af:88:70:11:f3:96:23:5c:
c9:c7:6d:d9:f5:c9:14:20:ed:61:92:91:f0:e4:08:94:56:b8:
b7:1f:1e:ac:a2:9a:ca:91:4d:fb:c9:8a:17:7b:19:98:6b:7f:
7b:9f:52:ca:ce:93:c1:87:0f:e4:00:be:e1:e5:f7:42:4e:b4:
c3:0e:3f:97:34:a4:99:bd:43:6d:57:13:74:cb:61:0f:19:6b:
ff:87:40:7a:4e:b5:9d:7e:15:5c:c8:92:93:a4:fd:4b:9f:a8:
1d:ff:2a:47:02:bf:2c:0f:e1:23:aa:cb:bb:63:4a:b7:5f:14:
4c:7a:1c:bf:fb:1f:78:79:74:9f:a9:bb:22:79:7c:70:f4:7b:
82:20:3f:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 17:01:52 2025 by rpki-client