Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/9iHnN-laLNFtns4sgSRHFA-kKCE.roa
File: 9iHnN-laLNFtns4sgSRHFA-kKCE.roa (raw, json)
Hash identifier: Ph1dhRYv8+9cMNJwOcMDmiz+Zvl/Ofm9XwT3saoG+Kw=
Subject key identifier: F6:21:E7:37:E9:5A:2C:D1:6D:9E:CE:2C:81:24:47:14:0F:A4:28:21
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 1238
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/9iHnN-laLNFtns4sgSRHFA-kKCE.roa
Signing time: Mon 26 Aug 2024 05:24:48 +0000
ROA not before: Mon 26 Aug 2024 05:24:48 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9924
IP address blocks: 210.63.128.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4664 (0x1238)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Aug 26 05:24:48 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=F621E737E95A2CD16D9ECE2C812447140FA42821
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:8c:7a:4d:a9:93:a9:d2:aa:49:71:bc:a3:e6:
a1:d5:36:16:d6:d4:2b:0f:42:16:0b:b1:98:cb:1a:
8b:5c:a8:0c:55:7b:9d:59:b3:22:6d:fd:e0:6e:33:
79:3f:e3:1c:fa:cb:8a:6b:62:12:3b:49:e8:ce:65:
b3:95:3e:b5:3c:3e:77:25:1f:cd:8a:fc:26:13:b6:
8a:e8:fe:8f:fc:92:90:6c:6d:56:7d:7b:7b:59:0a:
44:bf:67:5e:b9:19:ee:58:5a:fc:23:ca:d1:aa:c1:
f0:92:34:ab:49:c3:a2:86:9d:e0:50:f5:f0:5a:d1:
b3:cd:06:58:e3:64:e3:bb:0d:b3:8f:b6:7f:d0:35:
3a:53:ea:5d:cc:00:a4:3c:58:21:58:71:45:03:1c:
ee:5e:d0:23:ad:c4:4a:7c:34:8e:fc:ba:4d:1d:6e:
67:84:e6:33:e8:5c:35:5f:a7:d0:eb:c1:64:94:74:
40:47:7f:d7:d1:57:0f:0d:5c:47:88:2e:77:97:d9:
e0:c8:1c:46:56:d1:66:c8:fc:25:5c:87:b4:3c:2d:
94:a2:ba:f2:cd:d6:7b:07:66:02:8f:6a:25:b0:24:
e5:4f:56:c1:ba:27:07:29:4f:58:f4:db:e1:e5:b3:
b5:ad:cd:4e:a4:66:72:70:8f:1b:f2:7d:d1:c1:e1:
c0:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:21:E7:37:E9:5A:2C:D1:6D:9E:CE:2C:81:24:47:14:0F:A4:28:21
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/9iHnN-laLNFtns4sgSRHFA-kKCE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.63.128.0/19
Signature Algorithm: sha256WithRSAEncryption
59:a7:34:5d:da:fd:f4:58:5f:9a:aa:ad:2e:86:43:e9:da:43:
cb:9b:f6:93:26:a2:bb:99:83:57:c7:23:da:54:bf:8c:33:1b:
ab:56:4c:e5:14:aa:0c:5f:ed:89:2e:ed:44:81:42:1a:fd:83:
f3:6d:42:92:0d:06:cc:d1:f1:b8:5b:96:05:55:f7:ee:ba:8f:
11:4d:a3:0f:54:e2:5c:12:a6:51:6b:34:c2:06:b6:de:94:da:
2a:e6:ca:ea:2f:f4:b8:02:64:58:37:dd:73:ce:5c:09:43:79:
9d:ea:8b:21:a8:7c:f5:32:45:03:af:35:e3:85:66:5a:ae:e0:
8b:16:cb:53:f6:48:b8:f0:b3:69:f7:db:57:a6:02:30:e3:47:
25:bc:a0:85:59:c1:e1:d1:18:8c:e9:91:99:5a:f5:1b:5a:ea:
6a:10:af:94:3a:92:9b:d6:4f:50:c1:e9:7c:75:35:39:3b:69:
7c:0d:81:84:a5:a1:b2:b3:e8:1f:35:b6:ad:00:f9:e2:ee:c2:
91:20:41:d4:12:af:92:f6:c4:8e:25:2d:54:8f:c1:66:f4:d5:
81:9f:28:d1:a8:d2:1f:e4:29:bc:da:95:b9:23:4b:eb:73:41:
c2:47:b5:4c:bf:20:51:e1:2c:82:59:7e:97:33:75:4a:8d:be:
3b:95:10:77
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICEjgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNDA4MjYw
NTI0NDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEY2MjFFNzM3RTk1QTJD
RDE2RDlFQ0UyQzgxMjQ0NzE0MEZBNDI4MjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDHjHpNqZOp0qpJcbyj5qHVNhbW1CsPQhYLsZjLGotcqAxVe51Z
syJt/eBuM3k/4xz6y4prYhI7SejOZbOVPrU8PnclH82K/CYTtoro/o/8kpBsbVZ9
e3tZCkS/Z165Ge5YWvwjytGqwfCSNKtJw6KGneBQ9fBa0bPNBljjZOO7DbOPtn/Q
NTpT6l3MAKQ8WCFYcUUDHO5e0COtxEp8NI78uk0dbmeE5jPoXDVfp9DrwWSUdEBH
f9fRVw8NXEeILneX2eDIHEZW0WbI/CVch7Q8LZSiuvLN1nsHZgKPaiWwJOVPVsG6
JwcpT1j02+Hls7WtzU6kZnJwjxvyfdHB4cBDAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQU9iHnN+laLNFtns4sgSRHFA+kKCEwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvOWlIbk4tbGFMTkZ0bnM0
c2dTUkhGQS1rS0NFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
BdI/gDANBgkqhkiG9w0BAQsFAAOCAQEAWac0Xdr99FhfmqqtLoZD6dpDy5v2kyai
u5mDV8cj2lS/jDMbq1ZM5RSqDF/tiS7tRIFCGv2D821Ckg0GzNHxuFuWBVX37rqP
EU2jD1TiXBKmUWs0wga23pTaKubK6i/0uAJkWDfdc85cCUN5neqLIah89TJFA681
44VmWq7gixbLU/ZIuPCzaffbV6YCMONHJbyghVnB4dEYjOmRmVr1G1rqahCvlDqS
m9ZPUMHpfHU1OTtpfA2BhKWhsrPoHzW2rQD54u7CkSBB1BKvkvbEjiUtVI/BZvTV
gZ8o0ajSH+QpvNqVuSNL63NBwke1TL8gUeEsgll+lzN1So2+O5UQdw==
-----END CERTIFICATE-----
Generated at Wed Apr 9 12:22:52 2025 by rpki-client