Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/VtW4R2jFcF8HXMsWtzJP78WmMOA.roa
File: VtW4R2jFcF8HXMsWtzJP78WmMOA.roa (raw, json)
Hash identifier: ftqAIl0O9ZGC5ghQVyFg/HIx4f0YkIhI+d84B1/hAFU=
Subject key identifier: 56:D5:B8:47:68:C5:70:5F:07:5C:CB:16:B7:32:4F:EF:C5:A6:30:E0
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 1312
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/VtW4R2jFcF8HXMsWtzJP78WmMOA.roa
Signing time: Mon 10 Feb 2025 14:09:03 +0000
ROA not before: Mon 10 Feb 2025 14:09:03 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 24165
IP address blocks: 203.77.40.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4882 (0x1312)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 10 14:09:03 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=56D5B84768C5705F075CCB16B7324FEFC5A630E0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:da:73:57:dc:be:7e:ee:3b:af:48:a5:73:68:
da:13:42:08:b3:ca:da:f5:56:40:75:7c:b6:2b:d4:
04:6f:ee:92:79:e6:2c:76:3e:49:a9:ff:41:e2:ab:
84:18:4a:d7:e9:53:fe:5e:2a:1d:cd:6c:a1:d6:bc:
d8:64:06:80:45:06:ee:e2:3e:91:ff:04:95:06:67:
01:63:23:89:10:16:b7:86:93:19:27:70:7d:bf:b2:
73:04:c2:4d:57:79:a1:25:96:7b:06:96:51:1d:e2:
f9:f3:93:52:15:ab:fd:63:dc:ca:68:93:08:59:4f:
a9:22:c8:8c:48:4b:50:8a:fa:54:90:82:66:cb:9f:
69:93:c1:c8:72:ad:e8:a8:39:f4:51:0e:34:ec:1f:
18:41:cb:18:ad:00:70:da:a0:c6:6e:d6:f0:d0:9c:
3f:16:5a:88:2c:b3:af:4b:66:dc:8b:91:31:d9:63:
63:3b:ca:6e:75:ce:d5:76:39:94:3c:b4:95:2e:a0:
94:4a:2a:b0:bf:75:52:cc:94:f9:ef:0c:6a:d6:71:
31:28:a4:65:03:ad:b4:63:59:83:e3:94:5f:58:a9:
7a:5a:9c:9d:f9:bf:e8:92:17:49:01:44:54:de:48:
1a:47:fe:0a:f2:6c:b0:8b:fc:a2:44:32:70:69:6e:
9b:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:D5:B8:47:68:C5:70:5F:07:5C:CB:16:B7:32:4F:EF:C5:A6:30:E0
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/VtW4R2jFcF8HXMsWtzJP78WmMOA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.77.40.0/22
Signature Algorithm: sha256WithRSAEncryption
4a:cc:6b:f8:ed:72:02:cb:7f:d7:86:da:83:10:44:e3:e9:b0:
05:d6:ab:b7:5f:b7:28:6f:66:dc:0a:41:93:e6:ab:43:35:5d:
c8:0b:53:fb:4a:7f:64:f7:63:d1:fe:ec:f5:cc:18:ec:07:69:
30:64:ef:b5:dd:d8:2a:ea:33:34:4d:93:71:35:0d:51:ae:ea:
11:9c:3b:2f:54:5f:93:dd:52:ab:5e:a5:8b:69:82:92:98:cf:
5b:d3:82:ef:13:5f:3a:f3:2d:17:a2:1d:33:75:2b:24:83:7a:
7f:47:ab:ef:dc:e6:ef:e2:74:51:eb:a6:d0:dc:b0:92:74:ae:
c6:bc:81:7f:95:3f:30:1e:ce:b1:09:c6:4b:82:be:06:d0:c2:
d9:d2:d3:93:6d:b3:54:f1:5e:26:34:bf:80:be:5f:a5:84:83:
4b:77:7e:5d:16:78:33:dd:c1:cf:69:82:8e:f9:3d:58:6f:0d:
a4:b9:fd:e8:ed:ed:91:4c:ed:e1:af:8c:6c:62:5f:bd:c9:06:
45:73:ea:75:59:6b:a5:3b:bb:a1:28:1a:a5:47:fa:d5:ac:0f:
25:7a:d8:41:b3:97:ec:fd:58:11:55:fa:29:3b:73:a4:41:5f:
dc:dc:98:ae:c2:92:a3:2d:1e:0a:52:7a:f9:ad:1c:aa:00:ce:
e1:a8:6f:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 16:51:37 2025 by rpki-client