Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/BsNJ3-iOmenSJtc5yCEZ4OLqolQ.roa
File: BsNJ3-iOmenSJtc5yCEZ4OLqolQ.roa (raw, json)
Hash identifier: 9ly1HaBrFCNkQ8Tkw7U/ehjSSRx9HMXYZ4AzipFLok8=
Subject key identifier: 06:C3:49:DF:E8:8E:99:E9:D2:26:D7:39:C8:21:19:E0:E2:EA:A2:54
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0FC0
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/BsNJ3-iOmenSJtc5yCEZ4OLqolQ.roa
Signing time: Fri 01 Sep 2023 09:37:14 +0000
ROA not before: Fri 01 Sep 2023 09:37:14 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24164
IP address blocks: 203.65.174.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4032 (0xfc0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 1 09:37:14 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=06C349DFE88E99E9D226D739C82119E0E2EAA254
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:da:ae:62:49:ee:79:32:a4:d1:3c:2e:08:6b:
1a:c0:86:ed:0a:85:81:73:06:a7:ea:ac:fb:ca:42:
cd:7a:a1:17:20:70:23:96:56:1b:3d:02:93:c4:2a:
ef:d6:9e:8c:09:36:a4:d2:d0:a8:5a:e1:19:2d:2a:
92:c1:9f:b2:67:6e:54:4c:e5:3b:91:01:1c:16:14:
9a:d4:97:3c:c7:17:e3:e8:cd:a5:92:44:6a:ec:d5:
0e:4f:35:04:86:c4:bf:4f:0a:ee:59:a8:7c:7e:0d:
00:aa:42:89:f0:61:06:7a:5e:b0:e3:f1:55:2b:c2:
bd:3b:ca:aa:6e:0f:0d:69:56:64:28:52:f3:49:64:
e9:63:0f:d1:3b:d2:8e:60:f0:aa:c1:42:5f:6e:bc:
03:e9:75:10:72:48:41:dd:7d:1c:06:2e:2e:77:c2:
49:2c:3b:6c:01:2d:7b:fe:41:07:cd:48:87:21:c1:
23:74:9f:6f:35:8f:bb:b4:ca:5f:b7:38:b7:ff:7b:
85:54:2d:7b:a7:55:fe:72:8a:59:1b:59:40:40:3c:
68:af:50:5e:df:65:b4:89:47:b1:4e:4c:3f:23:ef:
d7:f9:b2:4f:11:30:0f:2b:7b:01:08:e1:21:b1:d6:
15:57:f2:9e:34:e0:b5:6d:2d:9d:72:50:57:ac:69:
b3:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:C3:49:DF:E8:8E:99:E9:D2:26:D7:39:C8:21:19:E0:E2:EA:A2:54
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/BsNJ3-iOmenSJtc5yCEZ4OLqolQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.65.174.0/24
Signature Algorithm: sha256WithRSAEncryption
85:95:6c:db:cc:24:49:f3:cb:82:20:27:b1:ae:87:6b:2c:51:
27:c0:36:ec:34:6e:21:80:da:f8:70:b8:40:13:f0:34:1b:04:
97:86:29:5c:a0:44:ce:1b:30:76:57:15:5c:4d:de:0a:5b:39:
fe:ea:ca:15:e7:db:50:34:b9:d8:3d:6f:0d:fc:49:e6:be:8d:
1d:7b:bc:9a:3d:f5:f1:ee:7f:5f:d3:c7:95:66:69:d2:73:b0:
3d:0d:cd:15:0a:b2:e3:41:b9:83:a6:75:d9:55:e9:35:d0:60:
ec:03:e2:8f:a1:e7:9b:c7:19:a2:dc:04:f4:23:7c:3b:03:dd:
5e:c2:c7:85:cc:cf:af:6c:bc:a8:0a:29:3f:6d:06:92:e2:1f:
83:a2:2f:a8:f0:67:e5:2b:a1:77:54:41:ed:8d:38:81:9b:30:
22:5b:96:ac:30:b3:4e:a5:41:b7:ea:4e:c0:b7:67:47:7c:1c:
ca:df:f9:4a:8a:8a:0c:af:30:83:e5:d2:05:98:6f:90:3e:ec:
04:83:6d:8b:99:f4:4f:1f:92:06:6a:00:2c:ac:0c:5d:c2:68:
c9:92:7d:65:4e:ec:07:1f:6a:35:13:c1:b6:48:81:c2:04:09:
db:08:da:85:76:b7:93:9e:3c:8c:86:27:af:72:74:96:48:94:
74:44:fa:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:15 2024 by rpki-client on console-ams.rpki-client.org