Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/KZf31h8V-z7seHWz6CtbXaNGYUM.roa
File: KZf31h8V-z7seHWz6CtbXaNGYUM.roa (raw, json)
Hash identifier: I6d/aSeKqqzXJyHchRHSaMNzXTyG0AZpY2MRCfUf814=
Subject key identifier: 29:97:F7:D6:1F:15:FB:3E:EC:78:75:B3:E8:2B:5B:5D:A3:46:61:43
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 12F6
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/KZf31h8V-z7seHWz6CtbXaNGYUM.roa
Signing time: Mon 10 Feb 2025 14:08:56 +0000
ROA not before: Mon 10 Feb 2025 14:08:56 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131628
IP address blocks: 175.99.226.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4854 (0x12f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 10 14:08:56 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=2997F7D61F15FB3EEC7875B3E82B5B5DA3466143
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:2c:94:f4:f8:8c:3f:10:b2:dc:b2:c6:1f:b7:
13:25:13:7b:db:e5:02:20:50:f0:07:21:9e:82:9b:
58:8b:40:63:bb:2c:d3:e5:12:ad:56:b5:ea:26:4f:
53:c5:5c:d4:ea:0b:3e:3b:39:ec:25:55:4b:d8:cd:
e7:cf:d3:69:f3:f4:f3:65:89:33:a1:c6:86:a7:73:
d2:b0:a2:89:00:cf:6f:ee:42:d1:04:69:c1:62:e3:
ef:c7:c1:7a:33:8d:5b:b7:bb:fa:24:69:93:e8:69:
9b:c3:d3:57:ac:9b:87:08:6c:0a:95:d6:ab:6e:52:
34:79:eb:84:8e:46:3a:62:24:be:31:19:71:02:93:
90:7e:d7:8c:9f:46:88:e6:7b:14:10:2d:ee:d5:28:
3c:28:80:a7:5a:a2:39:44:9d:ae:bf:de:43:48:71:
91:be:7b:19:0e:ac:27:83:05:46:b2:54:b5:a2:bb:
60:8f:45:6e:7a:47:22:e6:a0:dc:75:b7:75:cc:a0:
32:91:52:bb:5d:cc:bc:33:68:33:54:2d:65:55:4b:
09:cc:98:51:e4:9d:1e:55:6e:00:b4:e7:3c:fe:a7:
00:89:b1:1e:4c:af:75:d6:4d:d5:df:0e:a5:ae:21:
79:b7:38:33:8b:47:1e:ab:0d:24:c4:dd:2d:d0:bf:
a7:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:97:F7:D6:1F:15:FB:3E:EC:78:75:B3:E8:2B:5B:5D:A3:46:61:43
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/KZf31h8V-z7seHWz6CtbXaNGYUM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.99.226.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:76:58:9a:ef:09:0f:d9:aa:2e:06:8f:f8:cf:30:81:fe:04:
78:65:37:18:c1:35:90:c2:b7:57:1c:3e:06:8e:fd:0b:a9:ea:
d1:25:9f:50:1a:74:ce:ab:88:5e:a9:93:df:00:99:96:f5:91:
76:c9:f5:d0:67:86:04:db:bf:27:e4:df:4f:1b:67:30:84:e4:
d5:6c:d9:c0:f3:3e:7d:9d:dc:e1:3e:01:1a:43:84:3a:01:a4:
41:4c:82:2c:fa:3b:67:fc:dc:e4:67:bb:11:c3:07:e9:93:1d:
10:bd:0d:d2:24:59:73:82:df:42:3e:c7:c8:2a:63:dd:6a:ef:
2c:c1:6b:58:70:78:fc:86:20:e1:75:c7:f0:73:43:49:39:48:
0c:94:e3:1b:7a:e3:67:c6:b5:27:b9:83:7c:5e:74:da:44:c2:
6d:eb:37:24:1d:ff:fd:85:0d:18:76:92:fd:f3:80:1d:81:32:
9c:e7:26:b6:03:d2:55:fe:57:17:56:84:94:69:a7:72:a7:ca:
be:20:02:9e:07:3a:65:09:29:e5:4d:da:fd:3a:3d:81:a0:94:
00:2e:fa:51:be:42:7b:1d:f9:23:60:73:38:8e:30:f4:b9:84:
d3:d8:a3:e3:50:5f:9e:ee:a4:7b:05:5a:07:6e:f1:8b:55:3a:
42:ab:15:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 16:59:07 2025 by rpki-client