Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/QsV48_YQVi9MWAP72ED-bVlKJLo.roa
File: QsV48_YQVi9MWAP72ED-bVlKJLo.roa (raw, json)
Hash identifier: trPKd/sz4pbogilIkSW1GNnu6tCpYXZXFhPgE85gHNQ=
Subject key identifier: 42:C5:78:F3:F6:10:56:2F:4C:58:03:FB:D8:40:FE:6D:59:4A:24:BA
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 134D
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/QsV48_YQVi9MWAP72ED-bVlKJLo.roa
Signing time: Mon 10 Feb 2025 14:09:20 +0000
ROA not before: Mon 10 Feb 2025 14:09:20 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 135596
IP address blocks: 60.198.154.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4941 (0x134d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 10 14:09:20 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=42C578F3F610562F4C5803FBD840FE6D594A24BA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:c8:b4:bd:15:11:5f:98:f1:b0:54:75:79:3e:
20:de:86:00:44:f3:d1:c2:7e:a7:dc:eb:35:6a:84:
38:5f:11:c4:f8:23:9b:4c:18:e5:3b:76:62:24:27:
a8:00:5f:ea:e2:95:a8:43:93:ae:e8:bf:fb:ea:8e:
0d:c5:8d:ea:aa:1b:f1:ce:84:5c:40:c5:b8:c9:4f:
9b:ae:26:0a:3b:a6:97:6d:db:64:a8:5e:94:f7:22:
7d:43:1b:df:ca:07:cc:ff:c2:71:ee:4c:10:9a:98:
50:a6:fa:6c:c5:07:48:b1:e6:a9:8c:92:74:29:85:
7f:81:af:1c:a7:1f:fd:b1:e9:5e:f4:85:c1:1f:f4:
ee:ec:e8:aa:b1:fa:85:0b:5e:2e:7b:b6:02:ac:48:
f3:08:6d:df:45:5e:1c:87:e6:5c:5c:83:1a:4b:28:
fc:89:0b:dc:e1:e4:10:6c:cc:2b:d3:96:91:09:5f:
ac:eb:e6:29:9f:bc:e9:d6:ae:1d:2c:9f:59:72:c7:
e1:96:0e:68:f9:8d:cf:5f:3a:31:01:24:ca:00:1d:
59:6f:9b:ed:7d:b2:04:86:07:44:02:20:a6:d0:d5:
b0:e8:d8:53:aa:ea:1a:3a:6b:cd:92:44:da:af:3c:
4f:bb:11:d4:6a:d0:0c:99:d7:f6:6c:05:f0:8b:bb:
d2:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:C5:78:F3:F6:10:56:2F:4C:58:03:FB:D8:40:FE:6D:59:4A:24:BA
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/QsV48_YQVi9MWAP72ED-bVlKJLo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.198.154.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:42:90:d6:52:1d:8a:c4:f1:13:23:b6:e1:5e:91:67:d7:d4:
10:e6:11:89:12:9c:67:d7:74:46:81:66:2d:e4:0f:2f:2f:17:
f5:40:c9:a1:95:61:9c:83:7f:3b:53:53:15:cb:b8:80:4b:88:
ef:74:9c:aa:f5:a2:f6:64:7f:76:a9:2a:87:06:9c:0e:21:4d:
2d:00:f4:01:0e:8b:92:c7:7e:d3:a0:98:52:b6:4e:30:d6:89:
9a:88:a1:28:74:42:a6:7a:ab:3f:6c:02:55:29:a5:ee:c6:27:
b6:80:ce:75:04:60:76:8d:eb:72:5f:b5:f0:3e:b8:5f:3a:f5:
d9:79:16:ec:f5:c1:c1:a7:22:e4:aa:d1:a1:d9:55:f1:d3:6a:
d4:5f:bf:21:58:ec:83:ff:24:ed:29:62:ad:db:31:c6:29:42:
54:ce:21:54:c6:26:e1:a6:76:1a:85:d2:23:c6:9c:0b:7a:75:
c4:de:52:ac:3c:f4:c1:66:5c:b9:b2:ac:dc:de:06:aa:29:38:
72:25:c1:da:49:97:8b:1b:23:7e:2c:cf:a4:84:99:34:ed:19:
19:54:d1:c9:a6:85:f9:fa:2f:56:07:2b:73:31:70:03:a4:9d:
e0:49:01:7d:a9:18:88:83:83:99:f4:ad:d4:f2:ec:e5:72:ed:
ec:11:b2:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 15:36:14 2025 by rpki-client