Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/FvepF4vrlDEpTLc7MQDEhgkVwbM.roa
File: FvepF4vrlDEpTLc7MQDEhgkVwbM.roa (raw, json)
Hash identifier: NiExlr0eKOjKTI6HmwjXwhSKMUcIXaGra1MDc8HGrEU=
Subject key identifier: 16:F7:A9:17:8B:EB:94:31:29:4C:B7:3B:31:00:C4:86:09:15:C1:B3
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 1318
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/FvepF4vrlDEpTLc7MQDEhgkVwbM.roa
Signing time: Mon 10 Feb 2025 14:09:05 +0000
ROA not before: Mon 10 Feb 2025 14:09:05 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131611
IP address blocks: 60.198.160.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4888 (0x1318)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 10 14:09:05 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=16F7A9178BEB9431294CB73B3100C4860915C1B3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:9d:d2:78:44:a9:52:1f:5f:18:86:b9:46:d9:
93:31:b0:63:3a:09:15:b5:f2:0a:06:c5:bc:97:7e:
5e:59:21:ef:df:fb:a2:e7:e8:8f:bf:de:1d:cd:20:
a9:22:6b:5b:bc:ec:23:1d:3e:51:42:98:ce:97:d1:
bd:18:82:5b:58:17:f9:56:9c:be:7c:ff:74:79:d7:
54:55:7f:0b:02:f5:55:76:85:0f:1e:f9:e6:4c:fb:
fb:d2:6a:db:8f:62:1a:47:23:ef:da:86:7d:9b:59:
c3:50:9b:38:20:7b:67:6f:44:8a:a0:38:3f:8b:33:
03:41:d5:be:99:a1:9f:ac:85:8b:32:03:f3:d1:68:
11:b6:1b:c4:22:05:da:d1:98:b2:79:bf:55:71:eb:
c7:0a:cf:85:2a:1c:12:a2:03:39:61:aa:38:27:f4:
b1:f4:0b:54:ec:a8:d3:a3:ff:f1:3d:23:72:28:d5:
cc:a6:39:28:9a:02:8e:37:ce:90:5d:49:31:cb:af:
9a:4f:2c:61:ee:36:8a:7f:29:37:ca:de:23:e9:1b:
22:15:1a:11:04:8a:97:98:96:0d:f0:3c:15:ce:17:
3f:ab:80:0b:56:16:79:f1:84:9f:c1:ea:d6:03:6e:
be:40:76:db:44:28:df:cf:04:96:a8:fb:cb:b5:53:
0c:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:F7:A9:17:8B:EB:94:31:29:4C:B7:3B:31:00:C4:86:09:15:C1:B3
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/FvepF4vrlDEpTLc7MQDEhgkVwbM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.198.160.0/19
Signature Algorithm: sha256WithRSAEncryption
2f:e1:c1:8c:ba:c3:92:3f:91:25:d9:82:6d:19:2d:50:94:1d:
a0:a6:fc:dc:df:97:ce:45:20:7f:89:f6:6f:3d:d5:82:c5:15:
a1:63:84:c0:a1:32:b5:e6:ea:f0:e7:96:ce:8d:7e:69:b1:d4:
46:70:e0:b1:52:b0:17:dc:25:f2:eb:49:ed:14:6f:01:ab:6c:
c7:85:d4:23:cc:a3:e3:d8:fe:26:4f:9c:de:20:97:59:99:d1:
c6:bd:28:47:fa:6d:ef:5f:d3:c8:1a:f1:0f:e8:a8:64:f9:32:
5a:0e:d4:14:54:a2:40:54:ae:98:0c:26:3a:2f:ff:56:38:c8:
c5:b0:f6:c4:c7:fa:bf:6e:54:25:de:36:dc:85:29:a8:67:4c:
23:1f:5d:5a:10:f3:27:a3:ed:8f:2e:c9:b7:5c:13:0c:b8:07:
f8:50:68:36:b8:5b:0e:32:57:3f:59:04:0b:0d:bc:4f:39:e6:
6b:1f:9c:dc:6a:a0:ba:60:e8:da:85:ac:39:17:1e:25:7b:72:
d8:95:36:3f:3f:fb:4d:e0:11:92:cc:29:7a:f8:a3:2c:39:47:
1b:d7:97:45:a8:bc:28:b9:d9:af:17:cb:42:70:2b:ae:61:a5:
a7:63:a1:43:8f:ff:e8:47:53:7e:dd:30:e1:75:85:9d:2e:b7:
d4:68:b6:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:40:22 2025 by rpki-client