Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/FqnIPXZViMUsFNiy6cvvF9Y0GoM.roa
File: FqnIPXZViMUsFNiy6cvvF9Y0GoM.roa (raw, json)
Hash identifier: ZEPkFjL0YZW8uVRAP4JqC8iIKUgzDRxyBMj4OcPmVRU=
Subject key identifier: 16:A9:C8:3D:76:55:88:C5:2C:14:D8:B2:E9:CB:EF:17:D6:34:1A:83
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 137D
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/FqnIPXZViMUsFNiy6cvvF9Y0GoM.roa
Signing time: Mon 10 Feb 2025 14:09:30 +0000
ROA not before: Mon 10 Feb 2025 14:09:30 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9924
IP address blocks: 60.199.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4989 (0x137d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 10 14:09:30 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=16A9C83D765588C52C14D8B2E9CBEF17D6341A83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:16:16:7c:0a:e4:00:cd:d4:43:c4:23:25:a3:
13:f1:83:ea:32:f3:db:b5:c9:36:d2:12:21:72:74:
2d:a8:c1:01:b3:72:5f:69:c7:53:d9:8a:93:c9:e4:
3b:db:22:a2:67:76:d4:0a:20:a2:60:09:3f:33:23:
f2:33:50:9f:be:b5:60:25:41:50:e2:53:b0:14:c2:
df:95:66:07:47:3c:a4:8a:61:02:fa:52:ef:06:aa:
52:39:ae:8f:da:f1:25:85:d2:d5:e5:51:81:4c:17:
5b:45:e4:f7:6a:f2:80:14:25:8c:41:4d:93:11:a0:
86:93:54:1e:5c:c6:b0:b3:67:3e:28:b2:40:48:c2:
f2:d2:26:e1:09:08:68:da:a0:f9:25:97:f8:b1:7d:
9d:1e:6d:6b:34:c9:2f:22:47:96:9b:db:ac:cc:a8:
8a:99:5b:ac:62:ef:cd:52:76:35:a2:24:df:de:94:
a6:e0:4f:08:2d:a3:03:f9:bd:e2:a3:39:8f:f4:3c:
67:9f:f3:99:50:68:42:60:83:b2:7d:00:3e:3e:5a:
93:a0:4e:8c:1b:9c:6f:6e:12:d7:9e:33:4f:a0:bf:
d2:3f:ca:1f:e6:e4:80:76:f5:c4:1a:82:ad:c5:d1:
2d:3b:63:7f:44:04:36:c0:3e:ab:60:ed:ce:27:10:
bf:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:A9:C8:3D:76:55:88:C5:2C:14:D8:B2:E9:CB:EF:17:D6:34:1A:83
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/FqnIPXZViMUsFNiy6cvvF9Y0GoM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.199.0.0/16
Signature Algorithm: sha256WithRSAEncryption
57:c6:7c:1c:67:4e:05:fa:05:bd:9d:2f:a1:cb:e5:77:9c:32:
13:0d:b0:d9:69:b7:4f:f9:3d:40:40:44:20:d5:fb:c5:42:6d:
82:ee:a5:df:0a:13:9f:c8:fa:82:2f:90:90:8e:eb:d6:00:70:
87:5b:c5:12:3b:27:e3:5a:ca:b1:b5:d7:f4:7b:2a:52:51:5e:
74:5a:01:b9:32:71:01:67:2d:5a:d3:19:2b:eb:95:aa:fe:d6:
f1:a2:fd:67:1e:f6:1b:23:75:ae:11:9d:0e:3c:4d:bb:23:dd:
be:e3:80:42:ef:bf:27:aa:83:66:69:b5:5f:5b:c9:ca:97:d7:
e3:34:07:96:c0:38:f4:51:8b:b8:ea:c6:34:5e:35:17:31:11:
1b:62:76:cc:70:a6:f3:58:86:be:c0:4b:e9:f0:22:ea:e9:fb:
a0:6d:a2:d3:fe:5d:dd:56:dc:01:4b:36:39:64:d1:69:9d:e9:
95:1a:bb:9b:71:2f:33:81:12:77:cf:5e:bd:86:ae:7c:50:bf:
81:bb:b2:6a:4e:d9:c3:74:ea:7b:52:6c:f0:ad:aa:fe:f3:6c:
7d:7f:2b:3f:1c:fe:33:bc:01:44:8c:ac:99:b3:d1:e5:0d:c1:
4a:a7:4f:34:2c:0b:47:84:55:cc:ad:46:34:aa:b4:b9:9b:37:
4d:6c:36:2b
-----BEGIN CERTIFICATE-----
MIIE0zCCA7ugAwIBAgICE30wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTAyMTAx
NDA5MzBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDE2QTlDODNENzY1NTg4
QzUyQzE0RDhCMkU5Q0JFRjE3RDYzNDFBODMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC0FhZ8CuQAzdRDxCMloxPxg+oy89u1yTbSEiFydC2owQGzcl9p
x1PZipPJ5DvbIqJndtQKIKJgCT8zI/IzUJ++tWAlQVDiU7AUwt+VZgdHPKSKYQL6
Uu8GqlI5ro/a8SWF0tXlUYFMF1tF5Pdq8oAUJYxBTZMRoIaTVB5cxrCzZz4oskBI
wvLSJuEJCGjaoPkll/ixfZ0ebWs0yS8iR5ab26zMqIqZW6xi781SdjWiJN/elKbg
TwgtowP5veKjOY/0PGef85lQaEJgg7J9AD4+WpOgTowbnG9uEteeM0+gv9I/yh/m
5IB29cQagq3F0S07Y39EBDbAPqtg7c4nEL9ZAgMBAAGjggHvMIIB6zAdBgNVHQ4E
FgQUFqnIPXZViMUsFNiy6cvvF9Y0GoMwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvRnFuSVBYWlZpTVVzRk5p
eTZjdnZGOVkwR29NLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMD
ADzHMA0GCSqGSIb3DQEBCwUAA4IBAQBXxnwcZ04F+gW9nS+hy+V3nDITDbDZabdP
+T1AQEQg1fvFQm2C7qXfChOfyPqCL5CQjuvWAHCHW8USOyfjWsqxtdf0eypSUV50
WgG5MnEBZy1a0xkr65Wq/tbxov1nHvYbI3WuEZ0OPE27I92+44BC778nqoNmabVf
W8nKl9fjNAeWwDj0UYu46sY0XjUXMREbYnbMcKbzWIa+wEvp8CLq6fugbaLT/l3d
VtwBSzY5ZNFpnemVGrubcS8zgRJ3z169hq58UL+Bu7JqTtnDdOp7Umzwrar+82x9
fys/HP4zvAFEjKyZs9HlDcFKp080LAtHhFXMrUY0qrS5mzdNbDYr
-----END CERTIFICATE-----
Generated at Mon Apr 7 01:38:07 2025 by rpki-client