Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/_Tfd19msc3b60cTsgESDTGRtObQ.roa
File: _Tfd19msc3b60cTsgESDTGRtObQ.roa (raw, json)
Hash identifier: ufyhJTJFG9xqqMVWTB41BjssfeRkumWnXjyFwu/WyAw=
Subject key identifier: FD:37:DD:D7:D9:AC:73:76:FA:D1:C4:EC:80:44:83:4C:64:6D:39:B4
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 1357
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/_Tfd19msc3b60cTsgESDTGRtObQ.roa
Signing time: Mon 10 Feb 2025 14:09:22 +0000
ROA not before: Mon 10 Feb 2025 14:09:22 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131634
IP address blocks: 124.108.172.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4951 (0x1357)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 10 14:09:22 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=FD37DDD7D9AC7376FAD1C4EC8044834C646D39B4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:53:de:05:92:10:f3:38:1b:c0:c5:68:c9:e7:
99:20:65:6b:59:37:4f:0a:22:5f:c5:65:b2:a1:a6:
c4:21:10:26:bc:91:f8:f7:84:10:ac:02:52:d6:a6:
b4:6c:a8:ae:b6:52:bd:aa:bd:ff:f8:95:d1:5f:6a:
7d:7b:9d:ec:b6:5a:8a:07:8a:07:5a:5f:fc:e6:41:
21:da:60:40:ac:5a:2c:1d:3b:1e:8d:11:9f:d0:e8:
80:18:c4:4a:1a:5a:92:f7:06:cb:92:07:ca:31:bb:
1d:12:e1:72:2d:55:a4:e0:3d:4e:0d:94:aa:6f:7d:
78:67:b8:96:38:d6:da:3a:a2:87:49:29:82:3d:8c:
f8:65:7e:0d:20:07:6f:96:a6:e5:c1:4c:4f:47:21:
e3:34:6a:7d:a9:b3:c5:f3:52:84:db:4c:eb:a6:6c:
7b:85:8b:db:49:86:f4:60:7d:01:ec:f0:ac:ab:49:
0d:3b:79:ec:c1:5f:63:32:0c:0f:29:f1:2f:b9:df:
d1:a9:da:56:68:64:58:ae:be:63:02:4f:e3:91:79:
3a:85:81:57:62:98:e1:fb:cc:a0:f2:41:3b:07:75:
9b:08:1a:f0:18:c3:7d:02:23:41:3d:23:86:b2:41:
3c:4e:0d:f6:ac:16:40:de:7c:4f:0a:72:42:3c:63:
8e:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:37:DD:D7:D9:AC:73:76:FA:D1:C4:EC:80:44:83:4C:64:6D:39:B4
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/_Tfd19msc3b60cTsgESDTGRtObQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.108.172.0/22
Signature Algorithm: sha256WithRSAEncryption
82:1a:2d:99:48:36:b6:5b:57:51:89:5a:80:e8:95:ad:95:09:
8a:a9:42:cb:c0:9d:31:a4:36:ae:5d:0b:31:39:8a:7d:cd:f0:
20:61:d9:72:0d:0d:1f:1d:1a:d8:75:cc:02:da:3c:bd:e6:61:
2d:18:40:7f:c1:4d:e0:f9:18:6a:5e:30:20:9a:43:7b:bc:51:
e9:1e:d8:e2:aa:9c:1a:88:2d:57:67:c7:c4:23:35:98:01:bc:
97:8c:32:09:84:3b:98:49:4f:e1:73:3d:7a:91:3b:a0:18:c7:
0c:f8:dd:a2:df:3d:c1:aa:bc:3a:32:18:5c:0e:8d:24:08:c4:
ab:76:8d:9b:99:11:18:38:b1:f3:5b:9e:46:c4:c3:10:77:f3:
8a:4b:40:f3:03:65:80:40:3d:d2:83:3e:26:90:e4:23:b8:57:
8d:45:01:8c:e6:26:84:da:34:0d:ac:70:c4:69:ae:c9:8f:30:
58:6d:b0:a3:09:56:cd:04:4b:6f:f7:bc:3a:0e:d2:85:8f:cd:
aa:f0:dd:d4:18:d0:bc:06:ae:ef:25:70:af:66:13:b1:74:5b:
2c:2a:29:2b:42:69:66:08:34:e7:0b:59:0c:36:b0:31:ac:6a:
7c:51:9a:fd:83:2f:e0:81:91:63:1e:bf:b2:01:64:9f:f8:ae:
e2:67:45:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 16:54:01 2025 by rpki-client