Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/b9izjeHJwF8doXbPoXhvkt-dAU8.roa
File: b9izjeHJwF8doXbPoXhvkt-dAU8.roa (raw, json)
Hash identifier: SK4iPo5Dw4OrfMk8PgeC6GqjVZvSOrlKsUdavvRxtNo=
Subject key identifier: 6F:D8:B3:8D:E1:C9:C0:5F:1D:A1:76:CF:A1:78:6F:92:DF:9D:01:4F
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 1385
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/b9izjeHJwF8doXbPoXhvkt-dAU8.roa
Signing time: Mon 10 Feb 2025 14:09:31 +0000
ROA not before: Mon 10 Feb 2025 14:09:31 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131602
IP address blocks: 210.62.32.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4997 (0x1385)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 10 14:09:31 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=6FD8B38DE1C9C05F1DA176CFA1786F92DF9D014F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:df:f8:2f:7f:f4:ab:9c:af:06:c9:27:f5:cf:
7d:56:16:0c:8a:e1:72:b1:9e:e8:0b:63:e4:e8:08:
ab:dc:75:eb:e4:2b:91:cd:33:c0:ab:1c:8e:c3:b3:
15:96:24:bb:23:18:ea:65:2b:8d:c2:0e:8d:c2:e7:
9c:d0:c3:8d:bb:32:af:8d:ef:8a:55:dc:db:0f:ee:
ec:8c:8d:04:8f:09:41:e2:a9:1e:58:5d:f4:41:a8:
70:c1:af:8e:98:5a:3e:7d:fe:a6:57:29:2f:8f:2d:
bc:5f:da:87:2f:0f:2c:ae:c7:2c:99:56:0e:1f:cf:
33:0f:b4:44:e2:a4:8f:4f:20:55:d1:12:a0:6e:31:
60:8f:21:d2:ff:d1:aa:c4:74:b0:3f:ac:64:f9:41:
51:fc:93:39:bf:e2:ea:79:19:7a:14:4a:0b:b9:f9:
e9:5e:8a:77:fe:9a:08:f2:5c:83:50:15:08:66:d1:
95:d8:9e:47:92:86:87:d3:8c:c4:46:c0:83:17:b2:
fb:d9:e8:86:bb:18:a0:ae:42:bd:9b:cd:2a:28:3a:
01:3f:57:b1:fa:20:e0:aa:9d:c9:1b:57:15:7e:6b:
a4:c4:0a:74:ed:59:7c:21:94:a3:d4:da:ad:27:12:
87:ee:03:58:1f:c1:7b:40:35:f1:96:51:79:c2:a2:
ea:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:D8:B3:8D:E1:C9:C0:5F:1D:A1:76:CF:A1:78:6F:92:DF:9D:01:4F
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/b9izjeHJwF8doXbPoXhvkt-dAU8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.62.32.0/20
Signature Algorithm: sha256WithRSAEncryption
32:15:57:ad:99:36:91:a0:15:26:53:6c:1f:e1:91:71:9b:76:
a6:74:ae:8f:02:7e:2a:ea:ce:ed:53:f1:4a:c5:f3:b4:56:53:
19:d8:d5:9c:1f:b7:ee:7e:72:6c:58:0a:55:91:e8:63:cd:4b:
84:ad:1c:a2:77:53:eb:74:b4:52:62:fc:4a:cf:80:d3:d9:cc:
fb:48:93:05:65:25:df:b5:5b:67:6c:a2:9b:9c:b6:ce:14:f4:
01:bf:80:67:fb:2b:7f:a3:b3:68:de:2c:9f:b9:79:7f:f8:8d:
17:cf:c7:e4:aa:05:05:fc:ab:5c:b0:d2:36:0e:75:41:d2:8d:
f6:9c:b5:83:c5:9c:8c:7c:11:16:b6:52:58:6f:d3:cd:f3:4b:
75:9d:0c:dd:c0:fe:b0:07:b3:0a:ec:6b:19:d5:2d:16:e6:04:
28:44:62:90:7d:3a:96:f8:03:68:bf:86:75:51:b1:c1:45:8b:
70:68:1d:d8:3c:e0:1a:24:42:65:d9:64:6a:6d:1e:9b:b7:f8:
48:6c:f2:97:39:32:79:0e:02:2f:5a:90:97:d7:1f:a8:cc:16:
07:71:22:5e:07:ac:0a:42:ac:1f:f3:32:d5:29:dd:50:22:f2:
93:ca:a8:f8:5d:ed:eb:80:dc:d9:ee:70:03:1b:21:fe:90:de:
a7:1c:44:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 16:59:07 2025 by rpki-client