Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/HePaPCTQOEPHJpYWJWVpYUxdy7g.roa
File: HePaPCTQOEPHJpYWJWVpYUxdy7g.roa (raw, json)
Hash identifier: rX9r0eQSs6t6xMwmRjhanQ9PjDmGnlSlhmMJuyvjxH0=
Subject key identifier: 1D:E3:DA:3C:24:D0:38:43:C7:26:96:16:25:65:69:61:4C:5D:CB:B8
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 10E0
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/HePaPCTQOEPHJpYWJWVpYUxdy7g.roa
Signing time: Tue 25 Jun 2024 01:55:17 +0000
ROA not before: Tue 25 Jun 2024 01:55:17 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 135596
IP address blocks: 60.198.154.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4320 (0x10e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Jun 25 01:55:17 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=1DE3DA3C24D03843C7269616256569614C5DCBB8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:56:1b:50:34:47:85:8e:d5:2c:d3:89:7d:e0:
6f:96:98:52:5d:a9:d6:03:f7:e4:87:c0:0f:bb:b3:
e2:6b:f2:32:17:d0:fa:2e:1e:34:9b:d5:2b:52:da:
53:8f:a2:5e:80:db:b2:3d:13:84:7e:e4:f1:64:69:
f4:94:9b:e3:52:8f:28:aa:1b:3a:8c:91:1e:99:29:
38:ed:64:5b:0c:e9:b3:ef:05:83:96:ed:78:f5:28:
2f:9e:7b:b3:b9:5e:8d:92:38:ef:e2:ee:0e:3d:19:
83:ad:72:26:73:7a:b3:fe:f7:fa:1f:8f:21:4b:dc:
14:58:a1:e5:44:8c:e0:74:50:ad:1e:8d:73:31:af:
d8:f7:f3:93:5c:f4:67:7a:37:29:83:35:18:35:29:
36:81:f6:ca:5e:cf:1b:03:14:3c:a9:aa:b9:b2:1a:
fc:4a:37:eb:01:ce:ef:53:ef:0c:b1:98:f7:bc:15:
fe:90:bb:30:cd:32:59:df:2d:ad:58:b0:1b:ab:87:
ea:87:53:5d:f2:07:15:67:af:42:4c:9f:2e:ed:5a:
9f:cb:36:28:b3:96:73:79:bd:cf:2d:a2:de:21:0d:
06:bb:bc:2a:97:c8:52:7b:28:f5:01:07:77:75:f8:
4b:7b:f4:3d:f4:b7:61:cc:29:75:9a:50:c7:41:2d:
ec:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:E3:DA:3C:24:D0:38:43:C7:26:96:16:25:65:69:61:4C:5D:CB:B8
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/HePaPCTQOEPHJpYWJWVpYUxdy7g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.198.154.0/24
Signature Algorithm: sha256WithRSAEncryption
37:06:c0:97:30:6d:0a:89:32:a8:dd:d0:68:50:fa:1d:2e:2e:
35:43:7f:b9:bd:be:83:14:f7:e2:36:d8:05:2d:b7:9f:eb:68:
92:da:e0:f9:27:cd:e3:60:d4:d4:e0:7c:1a:7e:91:e4:b1:ff:
74:ac:a5:05:f8:e1:90:6d:86:b1:0a:6f:8b:11:5a:d9:27:2c:
56:72:54:e5:49:f0:9a:c3:9f:54:41:8f:e1:11:04:8f:4d:89:
91:ef:3f:83:c3:e6:22:9b:db:88:61:b8:2e:3d:bf:d3:d7:86:
8e:f8:fc:19:ba:46:e3:45:eb:7f:d7:a9:aa:cc:c4:4f:bd:bf:
ac:71:24:d6:9f:33:b1:20:cf:4a:0d:a8:42:06:1b:a9:78:de:
14:e0:24:52:9b:41:f7:5d:14:73:94:94:fb:14:ef:f5:ef:50:
5e:7e:03:ab:9e:13:44:52:27:6e:b7:01:5f:ac:ea:e2:9d:67:
88:b1:22:df:98:21:bd:39:03:f1:db:72:f7:cd:b8:33:9f:98:
58:2f:38:4c:70:12:6b:32:88:e2:4c:37:a0:ea:18:e2:11:21:
6f:e4:2a:16:6b:a9:48:98:d5:f4:d5:e5:08:2b:85:b2:a5:de:
29:b0:37:0d:b8:97:15:55:d2:0f:48:38:e0:0b:d9:38:f1:76:
68:36:b3:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:22 2024 by rpki-client on console-fra.rpki-client.org