Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/8PeCjCOfja4bJT-QolW-6Li1Aag.roa
File: 8PeCjCOfja4bJT-QolW-6Li1Aag.roa (raw, json)
Hash identifier: UQc8sQI4qtqjxEOQ7K+0MC4SWykwiIhJZZl4V7uuIFc=
Subject key identifier: F0:F7:82:8C:23:9F:8D:AE:1B:25:3F:90:A2:55:BE:E8:B8:B5:01:A8
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 1319
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/8PeCjCOfja4bJT-QolW-6Li1Aag.roa
Signing time: Mon 10 Feb 2025 14:09:06 +0000
ROA not before: Mon 10 Feb 2025 14:09:06 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9924
IP address blocks: 210.17.17.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4889 (0x1319)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 10 14:09:06 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=F0F7828C239F8DAE1B253F90A255BEE8B8B501A8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:de:c4:51:09:15:01:81:4d:1c:dd:6d:1d:a5:
7e:e3:c8:d9:b3:0e:57:09:c5:2d:2b:04:e1:3d:5c:
a8:11:cc:3c:a1:c3:a6:38:2d:3a:5b:68:66:19:d4:
82:70:16:d4:a7:eb:4d:81:b9:f0:1f:04:2d:ea:02:
36:6e:b2:9e:2b:e7:c2:99:9a:c8:bf:3d:61:8e:33:
1a:3d:76:1a:73:34:40:2e:61:bc:be:37:48:e2:9b:
9a:05:17:9b:43:03:53:2a:f1:2b:aa:22:4f:42:a2:
e1:31:04:91:05:5d:d0:00:18:ad:ce:cb:f1:f6:e4:
70:27:47:0a:61:d3:3a:8f:81:ed:b1:37:de:0f:ec:
9f:92:0f:c2:ea:71:d3:00:19:59:1e:2c:06:9d:1b:
65:55:5a:e5:82:2e:2e:86:ae:65:ee:56:89:83:4c:
ff:5d:e6:cb:4a:48:33:e7:59:12:47:7e:37:f7:dc:
11:41:2d:89:c9:c5:0a:1c:53:6d:dc:a8:1b:3d:f3:
3f:da:22:20:1a:72:3f:13:4e:1c:73:94:3e:fd:65:
d9:cc:b2:86:d8:2f:70:04:65:29:b6:7a:8f:47:0a:
6a:ec:f8:7c:02:09:ab:e3:b8:f6:6f:43:56:70:25:
d6:e7:d9:fe:4a:7a:c1:b1:99:dc:e2:98:e7:81:ea:
ad:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:F7:82:8C:23:9F:8D:AE:1B:25:3F:90:A2:55:BE:E8:B8:B5:01:A8
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/8PeCjCOfja4bJT-QolW-6Li1Aag.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.17.17.0/24
Signature Algorithm: sha256WithRSAEncryption
68:b9:a5:73:8d:61:f4:a6:b6:25:b1:8b:fd:5e:4e:68:fc:64:
bc:29:95:08:21:f7:3a:a2:d6:a7:d2:a4:13:08:de:fb:68:65:
41:13:58:49:42:80:72:ad:b5:4f:7d:0f:e7:c4:79:ca:31:73:
a8:cd:a8:b0:fb:e8:9a:81:9b:b3:12:a0:ab:0f:b3:5d:67:11:
55:45:dc:e7:f0:8e:5a:86:eb:04:0c:dc:42:0e:ae:2e:d0:e6:
91:2c:0f:4c:6f:c7:3f:fb:a6:ed:c0:b5:4c:7c:e3:bd:c6:6a:
16:28:82:1b:a9:6a:39:95:d9:c7:d7:f5:ab:9c:49:eb:00:89:
4f:b0:c7:01:66:09:d0:3b:9f:23:09:d9:74:1d:cc:ac:1a:a4:
fe:16:79:9b:27:bf:0a:8f:4e:b3:47:09:ba:a7:c9:c5:51:6a:
6d:04:b6:6c:53:5c:99:b4:a3:56:5a:fa:f6:70:b9:fd:91:8f:
d3:91:80:2b:91:4c:82:0d:4a:9f:98:66:27:3b:b9:0c:7d:d3:
d2:ed:1e:63:1d:f3:b2:ac:60:97:42:49:89:cc:6b:4a:be:5d:
73:39:d0:3c:96:6d:56:05:42:ee:cf:c9:36:76:93:74:59:ba:
20:6c:03:60:d5:9c:5a:e3:d5:1a:ed:6e:66:a2:e2:3c:31:c3:
1e:87:de:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 02:02:49 2025 by rpki-client