Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/QkzHtM2ZJiKggp1jsjhPgLrgltI.roa
File: QkzHtM2ZJiKggp1jsjhPgLrgltI.roa (raw, json)
Hash identifier: r2kWQFhbzJI74qHPu4YXLhPsdzWfyXw72R7xKREclSc=
Subject key identifier: 42:4C:C7:B4:CD:99:26:22:A0:82:9D:63:B2:38:4F:80:BA:E0:96:D2
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 1375
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/QkzHtM2ZJiKggp1jsjhPgLrgltI.roa
Signing time: Mon 10 Feb 2025 14:09:28 +0000
ROA not before: Mon 10 Feb 2025 14:09:28 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 24158
IP address blocks: 2001:4546:1000:da00::/56 maxlen: 64
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4981 (0x1375)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 10 14:09:28 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=424CC7B4CD992622A0829D63B2384F80BAE096D2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:b7:e3:6c:fd:05:32:94:c0:dc:c2:e7:9f:5a:
2a:5e:d4:a2:cd:ad:4f:d1:bf:7a:a0:ff:63:ae:f5:
e7:d8:7c:c9:87:7f:9d:0a:8d:8b:d5:d2:06:d8:6d:
26:0e:44:a3:22:49:67:39:0b:bd:ff:6b:7b:52:9a:
ac:5a:2d:7a:bf:ab:63:16:ae:cd:9a:2e:90:2a:ae:
fc:88:db:bc:31:36:53:a9:70:ae:27:38:6b:50:f2:
d6:92:21:be:4a:a0:c5:3a:c1:0f:62:cb:00:13:a0:
8e:cd:cb:46:e2:76:9a:a0:d2:f3:dd:5c:2c:b5:38:
7c:6d:76:cc:e7:80:e1:ee:8a:c9:87:7f:fc:07:86:
32:46:bd:06:15:49:11:a3:5f:c8:d9:e2:81:7b:be:
b1:82:e3:03:86:ef:0a:28:99:f7:58:8f:a2:03:59:
d8:25:c8:a8:ad:e9:3c:12:f1:98:6a:81:44:c2:00:
9a:87:91:2f:f6:f0:d7:83:7a:ce:62:6c:7a:cf:32:
5d:ae:c0:c7:a0:90:ad:bc:73:2f:9b:d1:fb:4c:87:
21:fc:bc:73:9b:50:d7:75:9b:86:97:52:50:8c:08:
63:6d:2a:ad:5d:d4:b6:ff:c9:d2:c6:20:01:20:8f:
95:97:55:c4:22:46:0b:13:c6:45:32:98:2e:e9:8d:
64:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:4C:C7:B4:CD:99:26:22:A0:82:9D:63:B2:38:4F:80:BA:E0:96:D2
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/QkzHtM2ZJiKggp1jsjhPgLrgltI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:4546:1000:da00::/56
Signature Algorithm: sha256WithRSAEncryption
4b:a5:bc:2f:a2:a6:a2:de:43:96:d9:a5:e5:1a:ca:2a:f7:76:
1e:bb:9d:a9:10:fa:28:63:f4:c8:d5:a2:c4:7a:54:5e:4f:54:
6a:7d:a5:92:dd:54:af:97:6d:8a:45:45:a1:7f:bd:0b:32:25:
d3:19:33:19:ce:7f:8c:8f:3d:0c:c6:1c:80:5e:50:c3:26:7d:
8c:80:21:65:53:81:b3:ec:cb:40:02:be:24:b1:6b:9f:14:b0:
d1:0c:0c:b8:5d:89:76:b6:12:a1:f1:7f:7f:38:e5:7a:e1:67:
54:45:f7:03:a1:68:b6:fb:8c:77:63:12:57:38:43:07:e5:e5:
a8:7b:7b:fe:f0:75:d6:5b:b6:c0:ea:9d:43:12:b9:08:18:27:
c6:9b:74:69:4c:54:fa:87:66:de:bb:63:c6:2d:3f:bd:9f:47:
95:bf:cd:f3:63:c1:1e:77:b8:d4:0b:4e:b0:13:45:a8:da:8a:
48:eb:40:9d:b8:73:1d:6c:27:04:95:4e:56:ca:3d:06:15:f7:
d4:14:e1:43:b2:46:bf:ad:0a:b8:e4:db:f4:be:41:f0:b8:c4:
e6:2d:7d:ca:45:88:f6:21:bb:04:db:d8:29:5d:5d:f6:ae:98:
01:ff:20:69:9a:fd:93:42:f4:62:d9:07:37:30:a4:6d:58:f8:
98:22:fa:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 16:54:02 2025 by rpki-client