Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/yO2W6cuLGjxaZPEPcCOPzLMX7Yc.roa
File: yO2W6cuLGjxaZPEPcCOPzLMX7Yc.roa (raw, json)
Hash identifier: ONFHI7XydmGTNMF8j+v1gJgBCS9jOPH9hPnH886Q1ls=
Subject key identifier: C8:ED:96:E9:CB:8B:1A:3C:5A:64:F1:0F:70:23:8F:CC:B3:17:ED:87
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 1305
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/yO2W6cuLGjxaZPEPcCOPzLMX7Yc.roa
Signing time: Mon 10 Feb 2025 14:08:59 +0000
ROA not before: Mon 10 Feb 2025 14:08:59 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 24164
IP address blocks: 203.77.51.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4869 (0x1305)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 10 14:08:59 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=C8ED96E9CB8B1A3C5A64F10F70238FCCB317ED87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:9c:20:ed:04:08:97:7d:16:23:97:f5:9e:a4:
1e:1e:2b:1f:5f:76:b8:98:31:d1:0a:0a:bc:76:d4:
ac:a6:04:eb:b8:5e:ee:b3:6c:aa:d6:61:cd:de:b3:
d4:f3:4f:a6:87:63:f9:12:17:f8:bb:36:7f:28:6c:
07:8a:0c:24:4c:00:04:59:98:0e:42:b7:31:f8:38:
cd:15:24:a8:a5:c1:ea:ff:a0:2f:fd:c7:f1:86:b5:
cf:29:29:d4:2e:bf:2a:17:1c:41:e1:98:44:9b:92:
77:66:b4:3c:97:ef:f3:55:c4:44:df:19:31:fb:73:
7b:c4:47:20:05:6b:48:cd:76:0b:f8:9e:51:8c:c0:
be:1f:7d:34:3c:d6:f8:cc:6e:87:25:80:d7:97:56:
6f:ff:51:1f:48:90:b5:46:d4:41:fa:9f:78:d0:14:
98:be:f5:2b:f8:4c:5c:b4:ea:cd:66:78:c1:c6:ad:
ea:ed:8d:ab:3b:0c:c5:88:03:8b:35:4d:22:ee:1b:
ac:8e:48:9d:40:4b:00:72:c2:84:e2:ae:36:ed:18:
35:be:e8:33:ce:a4:4c:bd:ff:eb:3c:12:de:9c:12:
3b:58:bd:0b:4f:ac:2b:50:92:e4:aa:a6:d3:df:63:
d7:be:13:47:8a:31:bb:8c:c3:65:48:02:35:73:fe:
7c:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:ED:96:E9:CB:8B:1A:3C:5A:64:F1:0F:70:23:8F:CC:B3:17:ED:87
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/yO2W6cuLGjxaZPEPcCOPzLMX7Yc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.77.51.0/24
Signature Algorithm: sha256WithRSAEncryption
77:54:31:9a:c7:43:68:91:1c:2f:eb:5a:08:2f:5f:95:95:ed:
c8:86:c4:ba:ff:02:d6:fd:14:74:2a:a2:b9:ca:f6:f8:6d:91:
c4:ab:31:f2:6a:10:6b:ee:fb:73:a3:94:27:c5:75:51:a2:b6:
04:9b:9f:15:17:8d:69:75:fd:54:67:45:12:b1:46:a6:de:9f:
d6:3a:a7:03:2b:35:a1:39:61:12:02:c6:d8:b8:e3:de:66:b2:
db:4b:54:f8:51:65:01:04:38:96:ff:73:ee:f4:61:45:bf:82:
d5:6d:3c:49:f8:05:fd:86:25:61:1b:39:96:68:9d:a0:e7:db:
11:5a:a3:5e:45:22:43:4b:5e:9c:e3:2a:b1:22:80:30:8b:f2:
37:fc:84:0b:ac:80:81:c7:7c:eb:17:50:cf:4e:3a:fb:ed:74:
66:ae:90:be:ff:42:66:d9:a4:fe:e7:bc:aa:e0:2f:28:1e:5b:
58:66:76:ed:8d:2b:78:06:10:b4:39:50:63:24:e6:18:4c:15:
95:d5:87:07:e4:72:64:f1:b4:7e:3e:1c:89:f1:8f:9b:7c:11:
8d:4b:6a:78:6a:3f:15:5a:81:7b:d2:78:ca:c5:1e:37:83:64:
b5:28:bd:8c:04:08:e5:22:d0:26:2b:40:7b:4d:65:b9:f4:0f:
6e:6f:b6:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 16:54:02 2025 by rpki-client