Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/EM5VT9a2P6nHHMy9nZwx1SbnJOM.roa
File: EM5VT9a2P6nHHMy9nZwx1SbnJOM.roa (raw, json)
Hash identifier: hFq9qibnTtclP6rjrTCE+hpdcI61w+TSshvNO5xwTCA=
Subject key identifier: 10:CE:55:4F:D6:B6:3F:A9:C7:1C:CC:BD:9D:9C:31:D5:26:E7:24:E3
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 135A
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/EM5VT9a2P6nHHMy9nZwx1SbnJOM.roa
Signing time: Mon 10 Feb 2025 14:09:23 +0000
ROA not before: Mon 10 Feb 2025 14:09:23 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9924
IP address blocks: 210.17.0.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4954 (0x135a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 10 14:09:23 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=10CE554FD6B63FA9C71CCCBD9D9C31D526E724E3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:cf:1d:0c:3b:5a:8e:c7:d5:76:92:7c:41:f9:
c8:63:f6:2d:88:d4:14:fe:35:5f:42:36:26:35:48:
22:8a:11:6a:c7:ea:2c:80:ea:4c:81:5a:aa:f9:7a:
14:0c:28:01:b8:f3:1f:f6:c7:2b:7b:df:a1:55:6d:
ea:40:f4:10:3c:17:49:65:ee:7f:9d:55:f5:5e:73:
b2:9c:f8:ea:5d:10:3a:60:09:0f:b8:15:73:28:52:
d0:40:ee:8c:e9:e6:02:ae:1f:84:ad:6e:39:c1:77:
19:02:17:88:4c:30:df:e4:7b:e8:d3:2b:05:c9:3d:
7a:df:7f:48:f4:15:6d:8e:e4:82:5a:ae:89:fc:d3:
1b:c6:d2:d6:7f:6d:5a:af:d6:56:b3:13:d2:da:ea:
08:49:61:c2:f3:8c:5e:1d:02:55:9a:57:cf:4d:27:
6c:59:86:76:47:e2:8d:1b:7d:9a:29:b5:36:6c:b3:
e0:cf:a8:bd:6d:8b:c1:d2:95:91:43:db:bd:ab:f7:
2b:d8:d9:ab:e0:bc:82:9b:99:53:6c:1d:c3:e0:d3:
26:6e:b6:87:b8:9d:7a:96:48:98:94:6f:92:cc:2d:
45:bf:ad:8f:bd:3d:e4:06:d3:96:3e:c7:02:3b:2f:
b5:59:60:87:f5:1c:f4:22:15:b4:98:6d:0f:d1:d6:
13:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:CE:55:4F:D6:B6:3F:A9:C7:1C:CC:BD:9D:9C:31:D5:26:E7:24:E3
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/EM5VT9a2P6nHHMy9nZwx1SbnJOM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.17.0.0/17
Signature Algorithm: sha256WithRSAEncryption
91:63:cf:b8:21:df:48:ff:f4:1d:21:7c:8c:2a:e3:5f:1f:15:
59:a4:60:07:91:8f:3e:4f:58:49:02:98:95:57:e6:b6:1c:8e:
76:0f:d4:7b:3e:a2:3b:e7:08:3b:ef:3b:b4:b8:b0:32:b2:fc:
74:4b:a6:87:02:47:f5:2a:1e:75:2c:5f:95:ac:98:0e:54:d1:
48:b1:9d:0b:22:4c:8e:5b:15:1c:bc:9c:fc:f1:b6:fe:cc:9d:
72:8b:87:17:a2:d7:02:f9:7e:0e:a2:83:f3:1a:df:8b:ca:a0:
2e:06:28:76:b8:fa:9f:54:a9:42:52:ba:51:ac:a2:2d:93:07:
2a:48:59:b7:14:a6:2e:7c:19:87:b3:c0:86:3f:e5:7c:d7:60:
cf:1b:e4:ff:7c:a2:42:cf:db:f8:4c:2f:4d:3a:8d:0f:4d:bc:
2a:72:8e:dc:f6:5b:2d:10:25:0a:30:58:08:31:67:f9:f7:45:
5a:4d:3b:07:48:bf:35:a9:27:af:94:e8:1b:cc:64:11:11:77:
f8:8b:84:4d:b7:0b:47:85:13:55:a6:71:25:fc:23:0f:a4:05:
01:b5:67:7d:76:bf:f9:0a:74:79:f5:23:5c:56:a9:e1:76:01:
9c:20:0c:fe:97:36:26:e4:1a:54:71:51:e2:89:42:c4:c3:1e:
06:76:2e:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 01:50:42 2025 by rpki-client