Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/DYuHO4fqEbDMCJjNwO1pnq1Nm50.roa
File: DYuHO4fqEbDMCJjNwO1pnq1Nm50.roa (raw, json)
Hash identifier: HU19nDf19ARljnqVuSdDK3W95PcjzuVvcH/97qg0dlc=
Subject key identifier: 0D:8B:87:3B:87:EA:11:B0:CC:08:98:CD:C0:ED:69:9E:AD:4D:9B:9D
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 12F8
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/DYuHO4fqEbDMCJjNwO1pnq1Nm50.roa
Signing time: Mon 10 Feb 2025 14:08:56 +0000
ROA not before: Mon 10 Feb 2025 14:08:56 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9924
IP address blocks: 210.67.208.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4856 (0x12f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 10 14:08:56 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=0D8B873B87EA11B0CC0898CDC0ED699EAD4D9B9D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:77:7d:cc:02:9e:d7:b7:48:b0:c7:13:76:e6:
87:74:40:7f:ba:ba:00:81:a4:2a:db:0b:9e:ba:9d:
2c:a8:20:fc:f3:20:ae:0c:f7:e5:22:e3:cc:c5:40:
22:7e:04:e1:97:be:6d:0f:b7:a2:47:20:2e:07:ff:
e0:cf:d0:89:5b:9f:52:0f:f6:b3:0d:39:54:60:e3:
a8:fd:21:5d:83:6e:5f:bc:15:e9:59:9e:64:4a:73:
e2:7f:e2:08:d2:30:df:1b:b6:f9:46:91:25:78:e1:
e2:5c:49:99:d7:a1:57:c1:fa:73:cd:65:96:28:94:
16:52:5f:79:33:ca:fa:e6:04:6b:5d:0b:c0:57:5e:
a0:63:82:d9:b9:99:39:aa:72:f5:a3:08:9c:23:db:
e8:53:2d:ad:5c:1d:2e:64:7e:72:7d:04:74:48:cb:
1f:49:8f:6c:3d:06:44:a4:e7:7d:9a:b9:f7:08:d6:
c9:3a:64:b3:1b:66:fe:33:ee:78:66:75:d2:43:40:
31:62:16:ef:6e:ca:06:02:8e:7b:69:27:e8:d0:13:
0f:74:9b:ca:b8:72:08:b2:f8:b1:91:43:db:36:8c:
8d:da:5f:b7:89:88:7e:00:ba:9e:e0:46:f1:a3:b2:
9a:0b:21:5d:77:fe:11:51:a2:a3:1c:51:9c:be:28:
ff:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:8B:87:3B:87:EA:11:B0:CC:08:98:CD:C0:ED:69:9E:AD:4D:9B:9D
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/DYuHO4fqEbDMCJjNwO1pnq1Nm50.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.67.208.0/20
Signature Algorithm: sha256WithRSAEncryption
4e:12:c4:d3:4d:f8:10:7a:45:35:15:0e:af:6a:c3:67:f0:39:
4a:8b:56:6c:d5:ac:e0:d9:eb:42:62:76:4b:f5:2c:06:b5:dd:
bb:ab:42:6b:59:4a:c1:dc:78:f4:af:ef:59:0c:d2:de:1c:e2:
77:d6:cb:c0:62:56:c3:c2:8a:2e:e4:10:1f:92:59:07:66:8b:
4e:bf:42:5f:4e:6c:97:8d:5c:bb:dc:09:81:f4:c8:e7:da:07:
f1:66:62:be:56:3f:54:9e:08:5b:24:b8:9d:84:6a:e5:d6:80:
56:19:35:83:fb:13:00:1b:40:7c:2f:0f:b6:05:2b:90:c9:7a:
23:a4:6c:4f:e0:71:a3:a9:bd:5f:77:a0:93:72:77:63:d0:4d:
2d:c9:c5:4e:1b:f7:3a:10:f7:35:81:bd:88:ce:87:ed:7f:4f:
7c:5b:dd:a9:a5:b2:b7:df:dc:94:d0:b7:db:2a:ac:69:5d:73:
45:a8:ac:6c:68:4d:2d:bb:0a:31:59:81:a5:6f:07:f4:e1:59:
9f:59:1d:70:83:ae:70:d4:f4:de:b3:3b:d5:c8:22:b2:97:f6:
b9:0b:55:2a:1b:df:d5:13:cc:6b:e8:ec:52:22:41:02:55:d6:
77:e1:c0:72:f5:af:37:bd:f8:6c:61:54:cc:8e:5f:39:d2:9d:
a2:3e:8c:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 01:57:39 2025 by rpki-client