Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/CKUUqZHacapUM2UxICJv2kmJmPI.roa
File: CKUUqZHacapUM2UxICJv2kmJmPI.roa (raw, json)
Hash identifier: uYA51k7kVDgNqNS/rQ61niw//+X3xMOJGM3S/8u3eLc=
Subject key identifier: 08:A5:14:A9:91:DA:71:AA:54:33:65:31:20:22:6F:DA:49:89:98:F2
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 12FB
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/CKUUqZHacapUM2UxICJv2kmJmPI.roa
Signing time: Mon 10 Feb 2025 14:08:57 +0000
ROA not before: Mon 10 Feb 2025 14:08:57 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9924
IP address blocks: 202.145.128.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4859 (0x12fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 10 14:08:57 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=08A514A991DA71AA5433653120226FDA498998F2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:4e:20:8b:db:7d:0a:83:5a:13:e3:bd:cd:2a:
da:04:72:8d:3b:65:23:aa:4f:84:ba:05:33:b9:2c:
b9:c0:70:5b:e3:7d:51:e7:65:85:08:44:84:82:93:
4a:1c:85:f1:29:cc:b2:5c:00:43:17:96:e1:89:5a:
06:8f:a8:42:7b:01:01:19:d7:be:51:ae:58:3d:82:
cc:bf:3f:70:c2:91:98:01:a3:cb:ac:cc:db:e1:c7:
45:c3:23:7e:92:9c:17:f0:ad:a1:64:09:8b:60:ce:
ac:54:ca:58:4c:d0:a5:aa:cc:b8:28:f4:7e:d1:43:
d6:43:4e:64:80:cd:e1:ec:ca:74:62:e2:2e:cd:00:
e6:2e:dc:60:22:fb:12:7b:79:5b:16:9c:f6:92:3c:
cd:18:28:c3:9e:5f:7c:4d:60:b7:3c:4c:ce:b4:30:
ae:c0:3d:de:19:e2:51:9d:17:9c:40:93:5b:cd:1a:
27:c6:04:d1:01:c1:26:dd:5d:11:4e:37:7e:85:74:
97:e4:c7:ba:73:dd:29:20:4b:bc:91:86:93:35:df:
19:ed:19:b9:53:db:96:ea:a1:0f:39:56:36:3b:21:
ef:f6:62:d0:8f:fe:20:64:9b:e7:72:8d:b2:b4:ed:
b8:fe:3d:3a:a6:f5:cb:08:0c:1a:a9:07:e6:7a:56:
13:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:A5:14:A9:91:DA:71:AA:54:33:65:31:20:22:6F:DA:49:89:98:F2
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/CKUUqZHacapUM2UxICJv2kmJmPI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.145.128.0/17
Signature Algorithm: sha256WithRSAEncryption
68:ba:0c:d7:70:5d:16:d0:e9:b9:ee:b4:b5:de:44:f7:2d:78:
50:b6:76:6a:f1:d5:21:3c:a7:51:aa:f5:83:f1:d0:3c:d1:e5:
f4:2b:77:52:88:38:70:31:6a:20:0b:56:8b:f1:e8:11:d5:95:
28:40:15:f5:84:46:81:34:fb:fe:82:fc:31:ca:b0:d5:94:e4:
95:43:d6:bd:e8:30:54:37:27:bc:fa:23:3c:5d:19:e4:b8:91:
50:ce:58:3e:96:25:0d:08:92:ba:af:d5:b4:fb:9a:b1:e7:26:
3b:b2:51:ca:8b:a4:5c:75:5f:82:22:80:2e:ae:87:be:16:f2:
9e:ee:df:a7:90:52:3e:39:31:13:30:3a:1a:5f:7a:ac:e5:60:
e4:00:84:4f:2d:e1:16:29:b7:69:ff:53:19:90:15:f3:c3:7f:
c3:9f:67:6b:1d:4a:c4:a2:c7:fb:59:2a:f5:1c:8e:d4:4a:79:
29:9f:ea:fa:de:4c:dc:5a:25:68:a1:18:5c:dd:c2:aa:fe:7e:
b2:b3:0a:61:5c:a5:07:d6:25:3f:c2:c5:44:35:a1:f5:76:04:
1a:42:58:e2:5d:04:89:2f:48:75:d8:a5:e3:9e:50:4b:93:23:
47:a6:a9:98:9e:30:6a:14:e4:c9:11:83:0f:ef:e3:49:24:21:
4d:78:e8:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 01:42:12 2025 by rpki-client