Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/hK_seEVynIbqchI7uc2UNxrhe-M.roa
File: hK_seEVynIbqchI7uc2UNxrhe-M.roa (raw, json)
Hash identifier: law+WqfIoHPlULZwMmOr+A1oD+94BW8PLDLaeGZJqV4=
Subject key identifier: 84:AF:EC:78:45:72:9C:86:EA:72:12:3B:B9:CD:94:37:1A:E1:7B:E3
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 130A
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/hK_seEVynIbqchI7uc2UNxrhe-M.roa
Signing time: Mon 10 Feb 2025 14:09:01 +0000
ROA not before: Mon 10 Feb 2025 14:09:01 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131634
IP address blocks: 124.108.149.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4874 (0x130a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 10 14:09:01 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=84AFEC7845729C86EA72123BB9CD94371AE17BE3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:95:5f:ff:0b:9a:0f:f8:b3:bc:e8:38:f6:34:
d3:dd:86:7f:7e:46:16:f3:e1:70:ad:f4:25:21:66:
7e:90:d9:28:44:c3:30:b5:9a:c0:57:92:62:7c:93:
89:88:ff:6b:c9:21:d8:63:12:6a:e0:77:b7:b7:6e:
e2:dc:26:eb:54:8b:ac:74:58:6a:51:e9:0d:4d:12:
9a:fd:12:e9:5f:71:d4:de:4a:f1:60:ee:63:a4:6a:
36:c5:ed:5c:0f:b2:c7:01:75:76:53:60:08:d9:39:
6c:fc:08:d4:83:5f:27:4c:ea:d3:73:63:4a:98:f1:
27:bb:6a:f8:c1:1c:0c:75:38:29:4d:31:4f:bb:7e:
dc:42:f4:9c:27:6b:7d:16:67:86:0b:5b:d7:d8:8c:
da:fd:ec:05:dc:0a:5d:d5:28:3e:fa:5a:a1:de:1e:
03:be:ee:0e:18:8a:ce:8a:ec:db:43:1d:11:91:1f:
71:de:15:fb:f6:53:78:02:1d:4c:01:50:2d:53:9a:
62:73:ba:0f:06:a1:e4:bf:89:8b:54:9f:5b:24:90:
b7:a1:ee:26:50:1a:12:86:a8:65:a8:13:db:25:b5:
c9:4a:61:a1:c4:cf:ad:00:c2:f1:97:9a:f5:95:d3:
fa:c1:8d:17:8e:fb:d1:5b:a0:d6:12:16:b6:e4:a5:
61:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:AF:EC:78:45:72:9C:86:EA:72:12:3B:B9:CD:94:37:1A:E1:7B:E3
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/hK_seEVynIbqchI7uc2UNxrhe-M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.108.149.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:b8:57:fc:03:de:44:1a:aa:cf:cb:a0:34:73:ac:6b:3b:4b:
ae:70:ee:65:0b:93:d9:08:53:f5:0b:c5:5c:ef:3d:6a:06:89:
2e:c5:55:e9:33:29:6c:1f:fa:ce:e0:eb:dc:92:3f:16:24:fa:
03:09:be:29:11:bc:91:57:af:22:8b:ac:cb:cb:4d:99:12:2a:
a4:2e:f0:28:09:fe:a0:a5:2a:1f:3d:fa:93:55:86:0d:2c:4b:
39:e2:df:00:33:48:07:f5:6f:39:3c:3c:a0:3b:0c:78:a8:a2:
42:29:01:90:24:35:6a:5b:0d:2c:49:22:06:1b:7a:f6:1e:94:
f9:57:59:ac:80:f5:bf:16:a9:c0:5e:d7:1f:14:d3:e7:ec:0f:
2d:05:7c:57:8b:8c:6c:b5:76:be:4e:6d:c2:61:20:39:f2:2a:
9c:06:b8:3d:5b:d8:b3:09:a7:29:7b:cd:cd:38:dc:74:78:2a:
c7:87:1b:5c:0c:e9:07:fb:27:37:4c:93:67:bd:e0:10:76:16:
31:99:72:a6:f2:e1:fe:26:44:a3:86:dd:7d:d3:0a:cf:06:a9:
04:ac:f2:e3:95:fd:9a:1f:78:23:cb:a8:5e:7b:36:65:a3:aa:
f1:d0:1b:2e:8e:ea:3a:93:54:bf:a1:54:c7:27:a8:3c:e0:ab:
48:11:aa:f1
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICEwowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTAyMTAx
NDA5MDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDg0QUZFQzc4NDU3MjlD
ODZFQTcyMTIzQkI5Q0Q5NDM3MUFFMTdCRTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDHlV//C5oP+LO86Dj2NNPdhn9+Rhbz4XCt9CUhZn6Q2ShEwzC1
msBXkmJ8k4mI/2vJIdhjEmrgd7e3buLcJutUi6x0WGpR6Q1NEpr9EulfcdTeSvFg
7mOkajbF7VwPsscBdXZTYAjZOWz8CNSDXydM6tNzY0qY8Se7avjBHAx1OClNMU+7
ftxC9Jwna30WZ4YLW9fYjNr97AXcCl3VKD76WqHeHgO+7g4Yis6K7NtDHRGRH3He
Ffv2U3gCHUwBUC1TmmJzug8GoeS/iYtUn1skkLeh7iZQGhKGqGWoE9sltclKYaHE
z60AwvGXmvWV0/rBjReO+9FboNYSFrbkpWGrAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUhK/seEVynIbqchI7uc2UNxrhe+MwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvaEtfc2VFVnluSWJxY2hJ
N3VjMlVOeHJoZS1NLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
AHxslTANBgkqhkiG9w0BAQsFAAOCAQEATLhX/APeRBqqz8ugNHOsaztLrnDuZQuT
2QhT9QvFXO89agaJLsVV6TMpbB/6zuDr3JI/FiT6Awm+KRG8kVevIousy8tNmRIq
pC7wKAn+oKUqHz36k1WGDSxLOeLfADNIB/VvOTw8oDsMeKiiQikBkCQ1alsNLEki
Bht69h6U+VdZrID1vxapwF7XHxTT5+wPLQV8V4uMbLV2vk5twmEgOfIqnAa4PVvY
swmnKXvNzTjcdHgqx4cbXAzpB/snN0yTZ73gEHYWMZlypvLh/iZEo4bdfdMKzwap
BKzy45X9mh94I8uoXns2ZaOq8dAbLo7qOpNUv6FUxyeoPOCrSBGq8Q==
-----END CERTIFICATE-----
Generated at Tue Apr 8 16:54:01 2025 by rpki-client