Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/CAEtbw_K7_BrvOhLmRNDk0T1Xc8.roa
File: CAEtbw_K7_BrvOhLmRNDk0T1Xc8.roa (raw, json)
Hash identifier: JFak8QsYm8dRw4oizRXbMqYX4yJxUcqZqZh39qO6uv8=
Subject key identifier: 08:01:2D:6F:0F:CA:EF:F0:6B:BC:E8:4B:99:13:43:93:44:F5:5D:CF
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0FE3
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/CAEtbw_K7_BrvOhLmRNDk0T1Xc8.roa
Signing time: Fri 01 Sep 2023 09:37:25 +0000
ROA not before: Fri 01 Sep 2023 09:37:25 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131634
IP address blocks: 124.108.191.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4067 (0xfe3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 1 09:37:25 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=08012D6F0FCAEFF06BBCE84B9913439344F55DCF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:d8:88:d3:4d:d2:95:35:77:0b:7f:e7:b8:98:
1e:07:95:99:c4:f6:25:5c:c7:77:6f:a9:10:d0:da:
cd:43:79:c0:ee:72:c7:5f:ab:9e:c4:d6:17:0b:73:
b2:b6:d9:43:d6:7c:1f:b5:3a:df:0a:eb:6a:c4:5d:
11:c9:5f:6a:14:57:19:77:33:97:3c:9a:12:0f:22:
f6:84:d3:fc:9e:0d:1a:ef:e5:11:4a:98:7e:14:02:
53:43:b9:35:0e:56:a2:d0:01:4c:39:c4:0b:c2:09:
4d:21:7d:56:bf:18:d2:ae:c7:ec:32:21:ca:cd:3b:
59:2c:3a:65:70:6a:28:4c:bd:df:75:03:51:d6:de:
d2:19:9c:c9:48:9e:9d:98:15:78:25:89:06:f0:55:
c6:6a:46:03:8b:92:82:e9:87:6a:d8:49:86:f5:56:
6c:20:81:7c:5b:23:77:e0:73:c9:ca:0c:08:e3:0e:
7b:d7:b1:05:70:7b:61:7b:8c:d9:1c:a1:42:d2:52:
0b:f0:dd:24:40:f4:a4:c7:7c:ff:08:b4:16:ad:97:
8d:71:e2:90:f0:da:67:43:85:89:4e:0b:13:2e:02:
c6:07:75:d1:dd:c8:f4:5f:08:66:d7:9e:18:96:fc:
f5:9b:fc:87:8d:76:3e:90:aa:82:b7:71:77:bf:3c:
d0:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:01:2D:6F:0F:CA:EF:F0:6B:BC:E8:4B:99:13:43:93:44:F5:5D:CF
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/CAEtbw_K7_BrvOhLmRNDk0T1Xc8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.108.191.0/24
Signature Algorithm: sha256WithRSAEncryption
90:7d:fd:72:60:53:f6:c9:99:db:96:df:c4:70:3e:84:a9:e4:
8d:25:73:2a:9c:e2:83:0d:a6:fc:55:2d:48:8a:e9:94:06:94:
4d:d9:90:7a:3e:93:1b:2b:4a:f3:38:ac:73:bd:11:aa:ef:96:
2d:f9:4a:54:be:62:b1:2d:2d:9f:fc:dc:9a:56:5e:fa:ef:46:
fc:5d:29:79:88:15:13:68:38:1e:48:f4:25:8c:38:68:3a:62:
25:43:ee:6a:25:4d:c8:7f:3c:dc:5e:55:57:69:42:17:03:28:
ce:60:6b:9e:14:e5:1f:81:2c:bc:53:89:3e:11:3d:ac:81:86:
b1:c9:7e:df:c4:2e:bb:fe:f6:0d:13:61:be:8d:cf:d0:ef:34:
f9:82:44:a5:b4:15:dd:c4:a9:c4:72:55:94:f7:4f:1c:fc:5e:
b8:d9:09:82:92:78:23:0e:44:f0:39:e4:04:c2:86:da:cf:b9:
c8:ba:43:63:d1:28:e0:95:41:f0:f5:5c:54:56:75:16:09:a0:
96:e6:c3:53:96:37:d1:20:11:96:75:9a:de:be:b2:7c:6a:e3:
73:0b:c7:66:16:28:21:a9:4e:c5:dd:12:53:2a:4b:67:56:37:
ec:e2:ee:65:83:a1:61:48:5c:38:9e:68:38:55:92:26:01:d8:
51:6e:f3:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:15 2024 by rpki-client on console-ams.rpki-client.org