Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/5egOyXgxsvXUs3Kgy9I-luqGW4w.roa
File: 5egOyXgxsvXUs3Kgy9I-luqGW4w.roa (raw, json)
Hash identifier: /7fEs0R0IJb94NcA+YZ6oEC4KOiw/1ey0nnChtRiYaU=
Subject key identifier: E5:E8:0E:C9:78:31:B2:F5:D4:B3:72:A0:CB:D2:3E:96:EA:86:5B:8C
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 1217
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/5egOyXgxsvXUs3Kgy9I-luqGW4w.roa
Signing time: Mon 26 Aug 2024 05:24:41 +0000
ROA not before: Mon 26 Aug 2024 05:24:41 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 24163
IP address blocks: 60.198.36.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4631 (0x1217)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Aug 26 05:24:41 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=E5E80EC97831B2F5D4B372A0CBD23E96EA865B8C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:0d:fa:51:2e:3d:be:a2:ce:c5:98:c6:ee:d5:
dd:3d:05:2d:68:39:1c:ff:cf:4e:a2:3f:26:ab:8d:
d2:74:55:10:5f:9d:20:de:53:d2:1b:f5:4c:4f:e4:
28:87:c3:23:8e:02:af:f8:00:07:37:9b:8c:79:cb:
0b:eb:26:d9:40:11:b4:bd:10:55:9c:d3:9e:f2:b0:
09:d3:77:b1:8d:99:a2:57:d0:78:b1:21:b3:2f:bc:
66:8c:7c:7c:dd:56:e0:3c:ec:48:76:0d:26:c6:97:
f4:59:7e:15:21:1d:07:36:67:d2:25:66:91:cb:fe:
c5:a1:a3:40:17:38:c0:4c:f5:d5:0e:5e:3d:85:0f:
2c:6e:94:39:86:f6:29:71:55:e5:cb:87:eb:8b:9f:
b0:17:48:fb:d9:2b:d3:3b:67:5c:94:04:34:b1:1f:
91:e0:df:a7:01:b8:93:39:a2:d8:20:e9:85:d6:73:
62:19:eb:0e:80:fc:d6:e3:97:3d:53:8c:25:fa:19:
fe:c6:f3:59:4e:34:d7:b3:cf:e9:4f:7d:b5:d4:ed:
00:e4:0f:cb:0d:34:f4:6b:32:0d:7b:e7:ec:ab:9d:
9b:c2:28:c8:72:6e:02:10:b3:a7:54:f5:16:0a:d8:
be:ff:65:81:00:5e:f0:01:dd:47:65:ad:32:7e:f4:
66:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:E8:0E:C9:78:31:B2:F5:D4:B3:72:A0:CB:D2:3E:96:EA:86:5B:8C
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/5egOyXgxsvXUs3Kgy9I-luqGW4w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.198.36.0/22
Signature Algorithm: sha256WithRSAEncryption
71:5a:c5:47:9a:06:50:9a:81:d4:a1:8c:78:3b:e0:ac:45:34:
f3:0a:a2:af:49:23:7c:96:ca:51:96:1d:7d:31:89:ac:ac:d3:
d1:e4:15:c1:9d:e9:42:81:55:8a:c0:a0:5c:b5:74:bf:45:9b:
e1:73:28:df:f4:2e:50:a0:9b:e1:e1:e2:ea:95:c6:24:1d:a2:
5a:80:90:31:59:4a:f0:a4:da:2e:12:14:ba:93:ef:09:eb:9a:
a5:35:df:7e:fb:68:62:67:1c:2c:c6:2f:bd:1a:a1:75:87:05:
91:0d:45:c0:45:72:77:b9:a8:03:91:e6:6a:0c:52:79:41:00:
62:55:80:38:0f:ce:31:54:a9:5a:dc:20:da:d4:62:7d:6e:ec:
73:7f:36:18:e6:3b:6d:69:e3:c6:69:2f:e3:d8:4d:cd:92:7a:
9f:38:5c:42:0d:df:6b:b5:90:ea:cc:85:32:60:96:96:3e:bb:
61:52:a7:06:a5:8a:b5:85:f3:8f:c4:5e:9e:f6:b2:f5:d7:b1:
e2:aa:84:cf:4f:ca:94:85:ea:bd:05:5a:e0:38:3a:b7:e1:25:
f4:e6:99:84:4f:e7:46:d5:d3:e0:25:8a:62:e0:4a:e7:be:8d:
b7:51:38:c7:92:68:0f:8f:7c:2f:5f:b9:74:25:2c:22:e2:77:
c9:bd:30:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 12:33:01 2025 by rpki-client