Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/_2hYK6_5zanuNdE67VX6t53LQLQ.roa
File: _2hYK6_5zanuNdE67VX6t53LQLQ.roa (raw, json)
Hash identifier: W4Gp6yKMIDtWWLvV1xQehxSFLgLk2ZqxA+CJiYun79w=
Subject key identifier: FF:68:58:2B:AF:F9:CD:A9:EE:35:D1:3A:ED:55:FA:B7:9D:CB:40:B4
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 1381
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/_2hYK6_5zanuNdE67VX6t53LQLQ.roa
Signing time: Mon 10 Feb 2025 14:09:31 +0000
ROA not before: Mon 10 Feb 2025 14:09:31 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18049
IP address blocks: 210.62.208.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4993 (0x1381)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 10 14:09:31 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=FF68582BAFF9CDA9EE35D13AED55FAB79DCB40B4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:9b:d3:6e:99:a4:76:d5:22:00:e3:24:74:2c:
2d:68:5b:6f:c2:3e:ba:73:74:01:07:f8:2c:9d:0b:
ba:c0:5b:c4:cd:ca:56:e3:bd:d8:f0:60:08:ca:62:
41:10:f9:9c:d4:27:0b:bd:2b:5d:ca:00:fb:f8:64:
60:aa:ed:f6:81:6a:18:00:c3:4f:6e:5b:fb:14:fd:
6e:c9:0f:8e:10:3f:f5:e2:e5:e9:7c:e9:64:95:ee:
7c:65:03:82:9f:97:8f:4e:8e:4f:c4:03:58:79:5d:
ad:2b:1c:6a:1c:f5:eb:9f:a0:81:50:be:76:a7:b8:
21:79:0b:e5:62:cb:37:02:61:3a:9b:86:f1:ed:e7:
1e:39:c6:fd:7d:49:10:19:9b:6f:29:34:9e:e9:f4:
de:01:8e:3d:b0:69:17:25:7b:e8:78:30:12:e5:2c:
16:48:f9:d2:50:d7:03:ef:99:39:68:c5:0c:e2:07:
ec:25:ff:ca:7d:2c:dd:1b:4d:cc:8c:8d:3d:9a:ed:
48:73:b3:79:71:4d:78:93:fa:b0:2a:97:56:f2:f5:
7d:81:1f:3a:86:d7:bc:d9:ad:35:34:35:02:c0:f8:
13:3d:c1:10:e5:53:60:43:07:d4:d5:a6:71:11:82:
02:45:76:34:6c:d8:25:f8:f0:80:5c:3b:f3:d7:d4:
5c:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:68:58:2B:AF:F9:CD:A9:EE:35:D1:3A:ED:55:FA:B7:9D:CB:40:B4
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/_2hYK6_5zanuNdE67VX6t53LQLQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.62.208.0/21
Signature Algorithm: sha256WithRSAEncryption
5e:68:90:62:e7:00:b6:de:49:bc:d1:41:ba:eb:aa:48:21:ac:
f2:4b:99:23:8d:2f:cb:cc:05:e7:4b:7f:1c:b0:15:dd:ab:4c:
53:3a:e6:7d:f5:54:b2:fe:44:7c:d7:ef:2b:80:5d:76:e3:e0:
43:dc:ee:cd:f5:62:79:d7:c6:6a:8d:77:d1:97:5d:f2:87:4a:
6b:20:4a:1c:36:a6:b4:6a:0b:6d:c9:7f:de:72:f9:ee:45:60:
73:e5:ec:73:84:5a:5d:86:8c:fe:e8:12:6c:d9:6c:93:96:94:
82:4b:fc:b3:53:f1:5a:82:6d:92:03:46:1f:c2:b4:23:5f:c2:
27:61:3c:e8:09:cd:49:87:e3:20:4b:c9:2d:57:4b:e9:c7:d2:
11:93:72:3c:93:6d:04:8b:c8:58:9b:0d:02:6a:7e:94:18:d4:
a7:a8:64:25:b8:e2:f4:f3:d5:ac:26:b9:0d:44:21:f3:29:70:
e1:73:bb:72:ca:06:c3:8f:2e:24:74:7c:77:ca:a3:ba:ee:f7:
4a:6c:3f:b5:b9:11:db:4b:d0:34:c8:3b:5a:db:b6:59:2a:65:
8c:d0:23:f5:b7:5a:1b:e1:9d:fe:50:5b:5f:aa:6c:2a:8c:7d:
ae:5b:98:fe:2d:ef:cd:d3:d5:fa:1c:b6:54:14:61:c1:92:64:
c0:8b:da:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 16:51:39 2025 by rpki-client