Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/34VBdfmXLAWy91xTN-z0Wuc6T9Y.roa
File: 34VBdfmXLAWy91xTN-z0Wuc6T9Y.roa (raw, json)
Hash identifier: bGGjGosPSSFYllW99cZ3hrpVB7UlGgqk2y8jnM2iYhA=
Subject key identifier: DF:85:41:75:F9:97:2C:05:B2:F7:5C:53:37:EC:F4:5A:E7:3A:4F:D6
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 1308
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/34VBdfmXLAWy91xTN-z0Wuc6T9Y.roa
Signing time: Mon 10 Feb 2025 14:09:00 +0000
ROA not before: Mon 10 Feb 2025 14:09:00 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9924
IP address blocks: 210.17.7.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4872 (0x1308)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 10 14:09:00 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=DF854175F9972C05B2F75C5337ECF45AE73A4FD6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:de:d3:07:13:b6:2c:55:94:e8:72:70:4b:d5:
c3:8e:79:43:55:41:a2:9f:37:ea:70:c8:16:53:0c:
d9:cd:74:44:08:e1:1a:ce:09:7f:bb:5f:b5:52:bb:
bf:ec:91:18:3b:57:ab:7c:29:07:35:98:08:3b:24:
08:c7:fc:41:64:b5:ef:81:f7:8b:eb:c9:27:66:fa:
48:51:71:8c:bf:2b:bf:6e:66:4d:5c:88:3b:71:fa:
b4:13:4a:dc:9c:d5:8e:da:53:7c:25:35:e2:68:bc:
87:be:a2:ed:a0:2a:73:2e:28:c4:46:d5:68:23:3d:
32:52:a7:9c:48:cb:7f:0c:df:6c:e0:55:d0:b6:91:
a3:8d:b6:d6:98:d5:a5:51:1c:06:ea:17:6f:b2:a7:
52:cb:e5:08:fb:ba:8e:08:1b:4c:83:dc:67:6e:1e:
dd:28:fd:b4:4b:70:16:bc:58:e6:91:af:0d:60:6c:
79:21:95:aa:fa:ed:0d:cc:44:69:88:99:f1:03:ce:
fc:30:05:3b:1b:81:96:ac:0b:77:c8:12:80:53:e1:
c1:b4:55:2d:55:3b:7e:38:8d:7a:2e:03:93:79:24:
a0:fd:b5:9d:20:69:4f:54:d4:e1:a8:12:d8:de:96:
4a:dc:10:6d:b1:0b:26:5d:f7:4c:9a:59:62:10:55:
17:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:85:41:75:F9:97:2C:05:B2:F7:5C:53:37:EC:F4:5A:E7:3A:4F:D6
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/34VBdfmXLAWy91xTN-z0Wuc6T9Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.17.7.0/24
Signature Algorithm: sha256WithRSAEncryption
39:1a:ec:a7:0c:8b:ad:bf:26:55:d4:f7:2f:54:f5:6c:28:37:
cc:65:01:e4:c3:36:8e:ea:19:25:90:16:aa:cc:bf:cb:e9:dc:
a6:3a:d7:c0:62:78:07:9b:48:1d:92:f3:d6:4d:70:b7:2d:25:
ec:33:8d:c8:1e:14:69:be:f6:c6:bc:0f:f2:14:6d:59:e2:6d:
63:32:d8:12:0c:79:dd:ef:e3:eb:00:a3:96:b3:15:d4:80:3b:
ec:14:ab:48:63:72:28:68:a9:8c:c2:cc:9b:6c:46:5b:81:7a:
f1:87:21:fd:05:b5:65:d9:fa:5b:f9:d3:75:02:30:13:c9:8d:
e7:e0:d2:61:09:a6:8a:cc:3d:36:74:51:7b:b5:c9:f3:88:a1:
5d:55:a7:c3:7f:e3:cb:b4:48:7e:0a:8f:fe:22:b6:d4:fc:b7:
9b:77:e4:82:de:a5:52:4a:8b:9e:c7:33:02:e9:a8:c2:5d:0c:
1b:c7:ce:d7:48:32:4a:9d:2b:10:d6:59:d4:d6:49:8d:36:7b:
56:5b:62:02:4d:0d:f5:e2:fc:38:61:fe:09:2d:e7:81:6c:65:
1a:8c:cc:5c:0e:63:4a:f6:70:b2:68:7a:45:ec:cf:ec:65:f6:
6f:66:aa:51:60:c5:81:a0:e0:ec:c9:f5:47:18:fb:ec:62:f0:
ff:ba:5b:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 02:00:14 2025 by rpki-client