Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/hP59A3okgeaPmkWXlK_M5TujnFA.roa
File: hP59A3okgeaPmkWXlK_M5TujnFA.roa (raw, json)
Hash identifier: eLepB8OvaN0oB0cKOiOMyMPpn6X2vIv8OlYLKmapLm4=
Subject key identifier: 84:FE:7D:03:7A:24:81:E6:8F:9A:45:97:94:AF:CC:E5:3B:A3:9C:50
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 1361
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/hP59A3okgeaPmkWXlK_M5TujnFA.roa
Signing time: Mon 10 Feb 2025 14:09:25 +0000
ROA not before: Mon 10 Feb 2025 14:09:25 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 24165
IP address blocks: 203.77.44.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4961 (0x1361)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 10 14:09:25 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=84FE7D037A2481E68F9A459794AFCCE53BA39C50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:d2:f3:72:7a:65:fd:8b:e8:d0:ae:c0:ef:91:
91:8b:b5:bd:63:9d:84:c2:bd:d5:ef:f0:12:01:52:
4c:0e:49:33:b3:b2:50:e3:4d:d9:e0:47:cd:f1:1a:
87:0a:72:4d:32:3b:58:a0:a8:4e:ab:a5:f0:f0:8a:
d3:42:8e:99:60:54:42:e8:95:7d:f0:d3:50:f6:dc:
e7:bd:55:a1:c8:4a:39:ad:2b:46:e8:ea:1f:d2:9e:
a3:eb:6f:67:b7:dc:21:af:50:ae:04:96:66:48:ad:
ad:ca:83:51:31:ac:b2:83:35:a5:87:5d:5d:b5:9e:
da:c8:87:b8:4b:71:4f:2b:78:64:92:eb:f7:43:ff:
44:20:cb:2b:35:fc:1a:7e:d1:9c:06:8e:7c:f1:90:
1b:f2:12:8f:9d:ee:17:1c:a1:65:7d:ff:c3:85:e3:
47:bd:46:45:d7:1b:bf:d7:d0:75:ed:2c:09:5b:59:
bf:07:81:82:a0:70:0e:86:d0:df:f5:8a:41:0f:73:
59:a8:2d:c3:45:99:c5:0a:92:0e:92:a6:61:94:a6:
f2:e3:18:5d:eb:54:d6:d1:2c:29:d3:78:76:a1:32:
f4:67:dc:0a:af:df:7a:a9:d1:f3:95:72:15:45:7a:
b7:95:0d:c8:b8:86:2a:01:67:86:5c:13:0a:b4:5b:
9e:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:FE:7D:03:7A:24:81:E6:8F:9A:45:97:94:AF:CC:E5:3B:A3:9C:50
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/hP59A3okgeaPmkWXlK_M5TujnFA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.77.44.0/22
Signature Algorithm: sha256WithRSAEncryption
0c:7a:b4:ea:5d:45:ce:3a:cf:56:d7:09:07:48:f4:8e:c7:31:
57:f9:8a:8a:da:09:b1:92:49:5a:fe:7d:92:a6:39:98:18:df:
6e:fb:52:13:6d:ff:f8:77:d8:51:3c:d7:35:f4:a3:dd:47:79:
af:49:52:91:53:34:d4:43:eb:06:c9:98:b2:e8:d8:02:ed:f9:
6f:0b:95:f0:cc:cc:b3:a9:fc:1a:1c:4f:cf:c9:5e:d2:da:04:
4a:7e:b1:5b:2b:97:f8:69:91:3c:ab:55:6c:ce:4b:11:e8:46:
35:88:05:58:5d:41:2c:18:ed:00:89:b9:c8:19:d0:2a:ff:89:
79:65:27:34:72:f1:e5:8c:83:f1:4f:a5:0b:a6:5b:54:cc:6c:
8b:c8:c2:32:4b:73:1f:78:f5:62:a7:dc:22:31:1e:43:02:90:
9d:72:d9:63:73:fd:ca:6f:5b:4c:92:ea:06:fa:93:b0:8a:db:
7f:1c:52:bc:09:d9:11:7d:f9:5a:fb:c0:d8:8d:3d:1b:56:4f:
b8:14:47:12:37:49:38:28:97:ce:99:db:7d:5f:04:28:cf:56:
b1:bf:1c:07:e3:12:1e:cb:3f:0a:1a:52:2b:69:96:8c:8a:99:
fd:28:e9:99:60:05:d0:9d:10:b2:0e:00:14:d3:7f:ea:3e:d5:
82:d0:9b:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 17:01:53 2025 by rpki-client