Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/LC5yxSDormos4HOh6Qr6CN0qs68.roa
File: LC5yxSDormos4HOh6Qr6CN0qs68.roa (raw, json)
Hash identifier: GK+jf3X35ONxwcj0U3rLC2ZGO0Vkkoa9zpJWl4YDtPA=
Subject key identifier: 2C:2E:72:C5:20:E8:AE:6A:2C:E0:73:A1:E9:0A:FA:08:DD:2A:B3:AF
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 1346
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/LC5yxSDormos4HOh6Qr6CN0qs68.roa
Signing time: Mon 10 Feb 2025 14:09:18 +0000
ROA not before: Mon 10 Feb 2025 14:09:18 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 24164
IP address blocks: 203.77.54.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4934 (0x1346)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 10 14:09:18 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=2C2E72C520E8AE6A2CE073A1E90AFA08DD2AB3AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:f1:07:a2:cf:8d:c8:7d:b0:e1:a5:b9:21:91:
eb:c9:2f:21:c2:25:ed:c8:01:20:a3:94:89:4b:59:
f2:1d:0d:f3:48:ce:63:02:64:8e:85:d7:1d:d8:b7:
74:a6:da:c3:51:6d:6a:5e:89:0c:7f:9f:da:72:e2:
ef:c5:57:b5:ab:51:dc:db:c5:83:e9:ad:ef:ce:a0:
5d:a3:45:75:30:73:2b:68:a2:c1:a1:22:bb:e9:fd:
ea:37:a1:b6:5a:3c:de:a6:cb:4f:4e:60:fb:b3:4f:
e3:fc:6b:19:ff:12:27:53:5d:e5:e8:bf:9b:f4:cd:
dc:55:01:4d:a1:d5:68:99:41:e7:aa:2d:b9:39:cb:
75:49:5a:c4:d1:82:d5:13:c3:e4:ae:46:cc:76:b1:
0a:4d:2c:83:a8:1b:11:2f:95:6c:29:f1:69:bd:a2:
c6:8f:a8:19:3d:93:3e:0e:82:a9:a3:6a:e2:f6:84:
05:92:25:aa:31:0c:57:2b:08:19:cd:ec:2e:86:f4:
39:dc:de:0a:70:5d:e2:0e:e5:1f:87:91:b5:5e:69:
43:54:20:8f:ac:7c:d5:00:75:b7:5c:3b:d0:bf:7c:
54:4d:62:f3:91:4a:9f:c4:24:cd:50:97:32:eb:e5:
84:9a:11:bc:df:9d:14:85:bc:89:f1:da:a3:9b:72:
34:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:2E:72:C5:20:E8:AE:6A:2C:E0:73:A1:E9:0A:FA:08:DD:2A:B3:AF
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/LC5yxSDormos4HOh6Qr6CN0qs68.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.77.54.0/23
Signature Algorithm: sha256WithRSAEncryption
30:4e:e6:73:99:05:f2:c3:b8:a5:01:0f:e4:49:a9:36:f5:42:
12:7f:bc:44:62:0a:e5:dd:0e:5d:0c:57:d7:4e:3b:97:2c:8e:
16:a2:db:69:e7:b6:bf:2b:63:70:18:4c:a1:82:20:f5:d4:70:
44:e9:3e:93:fa:3a:d8:76:73:36:b9:52:c6:24:74:27:7b:a8:
f5:c7:73:e4:a4:1d:cc:19:8e:84:0a:d8:b8:b5:71:09:b9:9c:
2b:2b:46:93:fa:0c:6e:1b:41:23:60:d1:44:ae:d3:eb:97:4a:
70:0b:53:cb:d2:56:5b:dd:7b:15:db:79:93:59:4a:48:a2:0f:
1c:ed:e6:14:b8:82:bd:86:c2:3f:67:16:17:1d:5e:d8:bf:57:
9a:40:c2:8e:56:94:66:98:72:ff:ed:14:d5:e2:25:9b:f3:46:
51:d8:4b:5b:51:3f:e4:73:a5:a6:60:c0:80:2a:44:4f:52:4f:
5f:61:8c:d9:10:e6:3a:8e:c9:ad:33:2d:fb:c1:f9:44:65:d1:
3c:0f:8e:1e:87:ae:cd:13:4d:c0:0d:7b:c9:d6:e4:c8:b0:5d:
4e:28:a9:40:16:13:3e:bd:dc:69:07:53:57:dd:7d:e3:6f:4e:
6b:0f:b8:a5:65:85:49:1b:a7:91:f8:d6:97:06:37:d6:41:07:
0c:3c:82:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 16:56:38 2025 by rpki-client