Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/jLUJSlQEvXkPmYaug21FCicMPAQ.roa
File: jLUJSlQEvXkPmYaug21FCicMPAQ.roa (raw, json)
Hash identifier: /zPGljnmmulAB5neVF+G0aVRKVb/3h5JcOxI2g8gIWg=
Subject key identifier: 8C:B5:09:4A:54:04:BD:79:0F:99:86:AE:83:6D:45:0A:27:0C:3C:04
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 1311
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/jLUJSlQEvXkPmYaug21FCicMPAQ.roa
Signing time: Mon 10 Feb 2025 14:09:03 +0000
ROA not before: Mon 10 Feb 2025 14:09:03 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 24164
IP address blocks: 203.77.53.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4881 (0x1311)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 10 14:09:03 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=8CB5094A5404BD790F9986AE836D450A270C3C04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:d3:26:9e:ed:f1:ce:93:ea:4b:25:49:6f:2a:
fe:22:71:2a:a3:42:38:de:30:c3:5d:f9:51:a1:6a:
e4:13:c2:77:78:62:92:2c:d4:3c:74:5b:d3:8b:06:
d1:73:d3:a5:12:d5:3e:0a:bf:bf:73:1f:ab:1f:c9:
ff:6e:e2:2c:8a:02:50:1c:38:4a:0b:2e:7a:f9:45:
2d:35:0e:99:0e:bb:08:27:ae:b4:f6:55:ae:17:d8:
c5:4a:06:85:87:14:83:78:c2:8c:5a:b6:b0:49:42:
e0:5f:7f:2f:2f:84:c4:f6:1b:bc:43:67:67:d2:36:
c0:59:32:3e:8e:27:12:f1:91:c0:68:d0:f4:24:4f:
ba:28:22:62:f5:91:8a:83:a5:cd:ed:a1:2e:05:47:
dc:04:30:e8:ad:ac:51:01:d3:b4:bd:4e:c1:df:27:
29:22:63:20:d4:5f:63:39:ce:20:2a:23:6d:31:fb:
b4:30:cf:8b:38:92:bb:9a:8e:e4:d0:08:c5:5a:3f:
b9:91:a1:87:9f:f8:01:d3:27:05:b2:09:e5:9a:b8:
34:c1:cf:9b:c4:2a:02:b2:a8:af:97:39:23:d5:0e:
e6:d4:a7:86:f2:59:2c:aa:97:81:df:40:69:53:9a:
6f:3e:8b:c6:d3:4b:2b:2b:6a:be:7b:5c:d0:01:38:
ee:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:B5:09:4A:54:04:BD:79:0F:99:86:AE:83:6D:45:0A:27:0C:3C:04
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/jLUJSlQEvXkPmYaug21FCicMPAQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.77.53.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:b4:54:59:2e:52:36:8e:52:68:57:67:8f:b7:9d:3f:db:9a:
46:5c:c3:b2:82:c3:f0:05:27:3f:0d:bf:2e:b0:ee:14:d3:9e:
bc:d9:13:b4:c8:e5:4d:3b:e5:5c:25:c0:dd:e9:5f:18:bd:9c:
90:1b:24:59:f8:3e:3d:76:dd:bd:51:5f:67:5c:e0:2a:29:80:
75:8e:64:1f:64:0a:a9:8b:36:69:7f:58:50:6d:e3:75:d4:66:
b3:75:e3:eb:fb:2e:ac:4f:6a:81:7f:ed:fc:e2:10:25:06:87:
e0:66:ba:6f:71:b8:bb:7c:c9:6e:3f:2d:ea:c3:6e:47:d1:1c:
05:7e:c2:c3:dc:40:3d:2d:a3:ef:d6:f5:3d:18:43:a5:87:ca:
49:ba:64:c2:1c:e5:07:d7:02:35:e0:8a:f2:94:4a:86:2a:e5:
0a:a1:a5:30:8e:ff:dd:03:b8:ec:6d:37:b9:58:f0:50:04:1a:
b5:91:e1:9b:80:73:10:e5:a0:41:d3:d9:2a:1b:39:76:eb:ed:
81:67:15:1f:f1:e3:84:5a:13:e1:99:98:72:24:3f:7d:f1:7f:
5e:dc:7e:15:0e:2f:df:53:db:97:9b:2b:ed:5e:e4:1c:49:f4:
b1:fb:dd:56:05:65:25:9b:05:d0:c9:24:d4:b3:5c:aa:af:3f:
71:39:05:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 16:51:37 2025 by rpki-client