Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/_vVkIh5VcEtgFwbDsU4AWAmtS8w.roa
File: _vVkIh5VcEtgFwbDsU4AWAmtS8w.roa (raw, json)
Hash identifier: OG1Ay9O1FlantWcLIO6cl8dfQNiiZE2B4y6XBUF3mNM=
Subject key identifier: FE:F5:64:22:1E:55:70:4B:60:17:06:C3:B1:4E:00:58:09:AD:4B:CC
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 136A
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/_vVkIh5VcEtgFwbDsU4AWAmtS8w.roa
Signing time: Mon 10 Feb 2025 14:09:26 +0000
ROA not before: Mon 10 Feb 2025 14:09:26 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131611
IP address blocks: 124.9.96.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4970 (0x136a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 10 14:09:26 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=FEF564221E55704B601706C3B14E005809AD4BCC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:e5:f9:94:9e:62:db:97:15:75:65:3a:28:3c:
05:31:bb:0d:ef:d2:5f:e7:b5:79:12:d0:3b:d9:e9:
b5:a8:c0:d7:a5:cc:8a:ae:3f:48:ff:46:d3:b2:20:
9f:fc:36:ef:e7:ec:0a:06:45:77:09:2f:8d:d2:b1:
7e:60:5c:49:05:ac:0a:ad:58:06:67:ce:f3:a6:b6:
de:5e:7d:1a:a2:86:6e:b3:42:34:24:05:ea:e6:36:
bd:1c:1a:34:8c:c0:8f:57:1e:2a:4f:de:63:20:8b:
fa:bc:34:26:6c:4e:67:ed:65:5c:3d:a9:ff:0c:36:
52:c7:47:3a:36:d8:64:69:9f:55:93:d5:8e:69:bd:
dd:0a:05:6c:48:fe:6f:c9:92:bd:a3:6a:c3:dc:db:
91:b9:6f:4f:68:e0:04:85:e9:46:e7:d0:55:3b:1f:
33:ff:1d:29:d8:23:45:5e:a9:10:d6:03:4c:4c:60:
3e:2f:9b:53:6c:b1:41:d6:57:16:d2:43:1b:54:dc:
99:66:35:2f:81:6b:7e:53:1f:1e:a8:a6:13:b8:ad:
46:ba:97:42:77:9a:33:70:37:ab:5a:3d:6c:c2:53:
64:d0:e4:88:16:e6:47:b6:43:e6:d9:00:a2:92:8b:
c1:2a:cb:d1:01:0d:25:f6:1a:bf:d7:e3:c0:c2:1c:
52:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:F5:64:22:1E:55:70:4B:60:17:06:C3:B1:4E:00:58:09:AD:4B:CC
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/_vVkIh5VcEtgFwbDsU4AWAmtS8w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.9.96.0/19
Signature Algorithm: sha256WithRSAEncryption
6f:c7:90:3e:c1:34:8b:d2:28:f7:9e:5a:17:0f:20:e6:58:f4:
8c:b4:f5:7b:64:3d:09:79:f0:0f:f5:65:a8:23:60:58:55:a4:
f8:9a:15:40:b9:48:d1:4c:36:51:dd:15:bb:99:5b:ad:39:0f:
56:a2:36:c0:49:be:91:23:07:b9:3a:61:7c:cf:d1:62:d6:ff:
6c:f3:23:86:72:8d:f9:ed:15:19:80:e3:b7:7b:21:09:fa:f3:
6d:98:ee:91:48:96:ae:56:ed:3c:35:45:50:02:7b:fa:68:fb:
69:90:df:2a:57:68:16:83:bb:56:08:21:8e:6a:5a:35:3d:f6:
05:db:d9:c3:a8:1f:31:1c:8a:80:30:57:1d:58:25:9e:bb:28:
96:3d:a3:8c:63:2c:c0:59:29:dc:17:f5:53:b2:7e:54:b7:4d:
ec:8f:c4:90:c7:17:a1:b6:21:28:48:85:4e:05:c8:70:f0:28:
66:cf:a1:e8:1d:45:91:a2:44:8b:f7:dd:f9:9c:f6:6e:0d:f7:
b7:d4:b4:d8:66:c8:c7:ac:d6:ea:72:9d:ef:f5:f8:bd:37:96:
44:75:e7:b4:48:06:57:fb:8c:36:b5:06:ed:77:ea:20:df:0f:
73:e7:0d:14:82:fc:a8:e1:3c:6b:2a:81:3d:92:44:31:32:40:
c8:92:5c:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:35:16 2025 by rpki-client