Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/FSmrb7DqXJVkDOpM6A6w1DyOLjA.roa
File: FSmrb7DqXJVkDOpM6A6w1DyOLjA.roa (raw, json)
Hash identifier: oknOz5zhJcxelVB5S1QhA7Nee4k2wd9Cw9ISASThzIA=
Subject key identifier: 15:29:AB:6F:B0:EA:5C:95:64:0C:EA:4C:E8:0E:B0:D4:3C:8E:2E:30
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 1313
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/FSmrb7DqXJVkDOpM6A6w1DyOLjA.roa
Signing time: Mon 10 Feb 2025 14:09:04 +0000
ROA not before: Mon 10 Feb 2025 14:09:04 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9924
IP address blocks: 210.17.73.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4883 (0x1313)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 10 14:09:04 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=1529AB6FB0EA5C95640CEA4CE80EB0D43C8E2E30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:90:7d:c7:29:6a:9d:2f:3c:46:cd:ac:d9:23:
09:0d:32:57:f5:6a:14:45:a2:f2:13:87:19:b9:77:
03:d6:87:34:15:fd:26:7b:57:4a:83:f8:95:d6:d4:
11:53:a9:8e:cc:57:ef:ae:06:b4:8b:b4:93:36:c0:
29:63:bc:60:b2:68:ea:c8:3a:d1:4b:a6:9e:bf:ee:
5d:02:6c:d9:14:de:54:70:81:46:a7:1e:00:8f:30:
46:80:38:ef:23:2b:92:af:8c:42:34:27:85:01:e7:
aa:5e:57:7b:cd:9f:08:03:8f:4c:44:0b:67:f5:6e:
53:5c:13:b0:aa:ef:58:b7:0c:13:3f:6b:ee:52:5b:
b5:07:67:d6:d4:4d:47:74:d7:6f:7b:a6:6c:9d:ea:
c5:33:0a:9d:3d:5f:3b:ee:76:10:bf:d4:97:7d:3e:
62:e3:15:13:96:d4:80:6c:d0:c0:c8:44:89:bb:45:
8a:97:d9:b5:82:50:06:33:b5:4f:dd:90:6d:56:74:
7b:5b:82:d0:fe:02:7c:2e:3b:af:4e:46:87:2f:cd:
f8:78:56:c5:9c:5e:d5:85:ad:2a:45:f2:2b:4a:6c:
fe:cc:a9:bd:b9:3c:4c:56:dd:3d:85:49:d1:95:23:
a6:2a:97:2a:2e:8d:7e:36:6c:f6:ce:ca:57:b4:fa:
b0:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:29:AB:6F:B0:EA:5C:95:64:0C:EA:4C:E8:0E:B0:D4:3C:8E:2E:30
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/FSmrb7DqXJVkDOpM6A6w1DyOLjA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.17.73.0/24
Signature Algorithm: sha256WithRSAEncryption
03:7c:86:70:6e:c1:16:aa:f6:b6:29:85:3c:34:39:d5:a9:dd:
9b:0e:45:a9:44:a6:9e:78:14:ba:7d:94:97:b5:72:5b:64:a5:
2d:40:76:ee:07:bb:3a:58:2e:79:11:e7:04:78:4a:f0:00:a9:
84:37:92:56:78:14:59:e8:43:65:57:42:a3:5a:e4:fd:0f:76:
f1:cf:32:37:42:82:f2:fc:8f:19:54:de:41:30:ab:08:5c:3d:
76:56:30:2d:fa:99:8a:de:d9:7b:e2:58:df:ee:a1:60:2f:3d:
03:97:6f:ef:5f:c1:2f:58:51:8d:c3:2b:5f:a2:98:5f:bd:59:
18:3b:14:a1:da:fd:17:89:dc:a1:a5:28:44:95:25:61:27:ab:
54:dc:a4:37:97:0f:40:d0:5b:06:d8:fd:f7:dc:8b:02:9e:b5:
fb:7c:d7:08:0f:22:ac:4f:5b:c4:34:6c:33:83:eb:aa:d9:88:
d2:23:bc:25:97:da:bf:34:80:29:44:f0:11:50:60:72:8a:d3:
d0:f1:16:83:b7:04:8e:1c:6f:aa:3b:09:9d:ec:48:40:80:8b:
83:4c:68:ef:8b:3f:37:35:80:35:1e:cf:2c:36:bb:ad:f7:88:
80:c7:4d:ab:82:1a:68:9f:0b:9b:37:70:ca:dd:e3:2d:4e:fd:
7d:a6:87:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 01:57:52 2025 by rpki-client