Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/7ywDUvtUADd8_tdh4aPFuPFrIfE.roa
File: 7ywDUvtUADd8_tdh4aPFuPFrIfE.roa (raw, json)
Hash identifier: 3XXQkScCS5F7DSs8lO1L/K6vGfQt5z0ml1mIwrj3wOU=
Subject key identifier: EF:2C:03:52:FB:54:00:37:7C:FE:D7:61:E1:A3:C5:B8:F1:6B:21:F1
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 1374
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/7ywDUvtUADd8_tdh4aPFuPFrIfE.roa
Signing time: Mon 10 Feb 2025 14:09:28 +0000
ROA not before: Mon 10 Feb 2025 14:09:28 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9924
IP address blocks: 60.199.212.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4980 (0x1374)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 10 14:09:28 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=EF2C0352FB5400377CFED761E1A3C5B8F16B21F1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:f9:94:2e:8f:7d:1f:66:0f:5c:c7:ef:e1:b2:
ce:39:bf:74:df:39:c7:2c:41:a6:af:30:79:21:0b:
35:35:6f:58:62:a0:c0:8b:bf:1f:5c:88:2c:a0:6d:
6c:28:a4:7e:f8:42:bb:51:d9:ad:7b:0c:81:bf:fd:
85:9f:34:4a:b9:5a:37:5d:97:40:7d:2c:6d:d7:12:
5e:9e:97:69:e6:b6:99:9d:7e:a9:f6:42:13:02:b4:
93:c1:d7:57:8c:b8:0e:64:47:16:cf:3c:3e:26:f6:
22:6c:b0:53:fe:68:3e:e1:cb:98:3b:32:c4:84:0f:
dc:17:dd:b0:6a:c7:f9:25:4f:5f:1f:50:8d:69:64:
a9:cf:3f:92:48:86:d6:3a:38:1e:a3:79:35:f2:e0:
0c:66:98:86:46:64:47:68:3c:8d:36:71:02:ae:83:
ca:87:e4:5d:ed:02:61:01:49:ea:59:f9:81:97:95:
75:29:74:24:84:28:25:62:03:e4:a6:78:20:2e:b9:
72:32:02:aa:51:3d:d7:37:d8:d8:48:d8:b2:f4:bc:
95:e3:5d:d9:59:7e:f2:e9:90:ff:34:ab:23:02:bb:
b9:50:a7:ec:61:86:de:f6:03:60:17:c4:c0:52:7b:
57:20:c3:74:9b:be:6a:fd:f1:69:26:71:8a:b1:5e:
58:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:2C:03:52:FB:54:00:37:7C:FE:D7:61:E1:A3:C5:B8:F1:6B:21:F1
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/7ywDUvtUADd8_tdh4aPFuPFrIfE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.199.212.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:52:aa:7a:b8:8e:13:2c:b5:bb:58:a3:17:4d:09:33:b5:50:
e1:00:11:19:b6:ff:26:dd:51:a9:68:75:44:b8:70:06:ce:79:
f6:60:3d:fa:a3:63:38:f1:b9:4e:90:8a:f7:55:56:83:38:a1:
bf:e0:51:2a:25:07:57:ef:8e:c4:16:61:62:25:60:12:29:c3:
18:64:13:0a:b0:d3:30:95:9e:c7:5a:f6:80:3e:de:07:9c:26:
2b:ce:15:9d:01:28:2b:4a:d7:12:e5:96:f7:46:f1:91:7c:2d:
16:95:ef:2f:aa:1a:ce:e1:3e:85:4d:66:4d:ff:ba:f1:46:8e:
d7:d0:ad:b6:49:95:1f:a0:43:69:a8:76:27:b5:3b:0d:de:5b:
ee:21:cf:9b:8d:f2:b5:43:4a:44:aa:60:82:f7:58:9c:ba:25:
85:9e:de:5d:0e:36:b8:40:4c:25:b6:12:a1:9b:c2:5e:d3:0c:
11:4a:cd:5b:ed:f4:41:ad:0b:9a:65:2e:a2:8a:a7:c2:6f:46:
90:30:8e:7e:89:71:e1:fb:09:0c:72:f4:ea:11:a8:18:f0:50:
32:8e:05:b4:3b:87:df:c1:b1:e2:f7:a2:38:3d:45:71:e7:9e:
c7:66:6f:ac:25:4a:55:b0:fb:b0:2f:56:0a:e7:70:e3:94:88:
39:fb:64:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 01:53:01 2025 by rpki-client