Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/wWE_qcrTlHy1C49-55jgsW8wvBs.roa
File: wWE_qcrTlHy1C49-55jgsW8wvBs.roa (raw, json)
Hash identifier: TWcqimZBUz1gtTzeChzgtAeHiUFalfikCRMYz3/iPMI=
Subject key identifier: C1:61:3F:A9:CA:D3:94:7C:B5:0B:8F:7E:E7:98:E0:B1:6F:30:BC:1B
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 1324
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/wWE_qcrTlHy1C49-55jgsW8wvBs.roa
Signing time: Mon 10 Feb 2025 14:09:09 +0000
ROA not before: Mon 10 Feb 2025 14:09:09 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 24164
IP address blocks: 203.77.40.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft
rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl
rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 15 Apr 2025 01:08:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4900 (0x1324)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 10 14:09:09 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=C1613FA9CAD3947CB50B8F7EE798E0B16F30BC1B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:9a:59:48:3b:35:76:7f:bb:c4:e8:a4:7a:f6:
f9:d6:cd:ad:ee:3c:f8:d3:e5:61:5c:65:e8:a4:29:
06:d9:32:da:57:2a:25:d8:86:37:8e:99:98:2a:b4:
d8:06:8e:81:6e:58:66:7d:92:38:86:27:6f:d7:fe:
58:82:35:a0:b9:19:92:33:ef:1b:39:b3:42:1d:13:
d5:e9:5a:e8:f9:ac:72:5c:80:9a:7f:90:72:10:17:
92:ef:fa:b5:23:57:93:66:a3:39:d2:f1:87:6a:e4:
78:06:76:fa:e6:4b:86:26:81:58:96:1b:a3:ea:72:
c0:ba:9a:7a:15:fe:f0:ac:d2:e2:75:ca:c4:13:6d:
5c:e0:5f:b3:9f:e4:3a:c6:e3:5d:cf:62:70:85:b0:
75:45:ec:c4:97:d5:f2:2b:ab:e5:2b:c9:bc:5b:d8:
2a:28:23:79:f9:9a:63:d1:a2:ef:28:46:1f:61:8f:
ff:d5:16:17:e1:82:d8:36:9a:f1:29:df:70:86:47:
a0:7b:7e:a3:b0:a8:ca:44:6a:df:26:29:f4:c2:8d:
14:d5:27:32:9c:fe:ed:ec:b7:97:c6:29:55:23:44:
47:af:f3:6c:9b:5e:b0:b4:b2:81:93:fe:ce:f1:40:
31:d4:02:e1:ee:66:32:21:0b:2e:8d:f1:f2:24:b7:
b3:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:61:3F:A9:CA:D3:94:7C:B5:0B:8F:7E:E7:98:E0:B1:6F:30:BC:1B
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/wWE_qcrTlHy1C49-55jgsW8wvBs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.77.40.0/21
Signature Algorithm: sha256WithRSAEncryption
29:9a:24:eb:df:9f:73:12:3d:cf:2d:35:77:83:9b:0f:eb:fd:
74:74:7e:a1:51:36:1a:b9:24:a9:d4:e6:9c:e6:26:18:56:ed:
40:bc:a9:2a:ae:30:84:18:24:30:86:ca:2d:0e:62:d6:35:9c:
ec:aa:9c:14:27:ca:8b:01:06:72:13:cd:7c:fc:c1:ac:68:d2:
39:5a:34:8f:3e:fc:be:8a:35:85:98:cd:49:7a:87:c7:9e:53:
29:8a:32:ff:1a:66:d3:a8:a9:c8:b7:cc:ed:cf:58:f5:d2:08:
37:22:1e:5b:c7:9c:87:d7:79:29:b1:2d:b7:72:71:b3:5a:a0:
6a:95:c4:28:02:70:55:e4:f0:bd:a0:7d:07:d3:df:91:72:2a:
7a:ae:95:d7:f5:89:00:7a:da:60:53:c4:d5:9a:b9:ac:2e:0d:
14:ec:6c:a8:7e:90:c1:19:21:a0:03:8c:d8:b1:b2:76:47:f5:
dd:69:a9:87:0c:1c:ba:2b:b6:65:6d:e9:ed:88:ac:d7:34:7c:
94:34:bd:77:c8:31:50:28:c3:a9:42:b5:b4:21:60:ac:79:0d:
ca:3a:73:af:f7:5f:47:11:51:8c:f0:47:ef:c9:43:91:3c:04:
cc:2e:de:d2:63:f2:3b:c5:55:28:b4:85:7b:fd:59:c8:a4:31:
01:b1:54:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 15 00:23:20 2025 by rpki-client