Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/HpbunP6qDRiBjKx6XWTY-UzIqh0.roa
File: HpbunP6qDRiBjKx6XWTY-UzIqh0.roa (raw, json)
Hash identifier: aPV2SMP681i+lgeqUvnN9cXQngjVOC/zueSZnbD7PRE=
Subject key identifier: 1E:96:EE:9C:FE:AA:0D:18:81:8C:AC:7A:5D:64:D8:F9:4C:C8:AA:1D
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0F7F
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/HpbunP6qDRiBjKx6XWTY-UzIqh0.roa
Signing time: Fri 01 Sep 2023 09:36:55 +0000
ROA not before: Fri 01 Sep 2023 09:36:55 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24158
IP address blocks: 203.105.239.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3967 (0xf7f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 1 09:36:55 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=1E96EE9CFEAA0D18818CAC7A5D64D8F94CC8AA1D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:40:46:6a:8f:88:da:7b:30:b2:12:02:99:4d:
1e:5c:dd:2d:6f:12:56:13:a7:f9:aa:55:4c:a2:c8:
b7:06:70:35:23:0e:05:e7:a6:6a:27:16:03:2d:52:
e2:80:3c:1d:9c:72:5a:21:a7:2b:d9:5c:31:9f:5d:
f5:2b:3b:52:83:08:b3:ff:14:d6:be:70:af:66:ea:
7a:57:dc:ad:fa:1c:7f:0a:c3:d4:b5:b5:b1:e3:44:
ee:da:62:de:e4:6f:08:c0:fb:f1:91:83:81:47:c2:
02:e2:c8:ee:58:ee:26:6b:0f:4d:05:46:16:2a:4e:
47:ee:30:f1:b8:c5:8e:95:d7:03:e2:61:c5:e2:5d:
dd:0f:60:24:c2:35:ef:0d:df:41:1f:c9:ed:b3:be:
6b:c6:48:1b:42:04:b6:76:d3:e0:0c:28:f9:b0:96:
a1:bd:cf:89:e6:19:d9:57:d0:2d:67:f7:74:5c:63:
9a:da:37:fb:aa:b7:00:84:40:08:cd:1e:b3:e2:22:
6f:c2:83:c8:f1:65:74:30:9e:ff:77:da:2d:ad:98:
ef:b4:1a:1c:f8:5b:bd:32:b7:e4:29:e2:30:24:d4:
77:1a:21:f5:99:fe:64:df:3d:41:38:91:c2:f0:e6:
54:bb:48:95:22:9e:35:7a:b4:41:91:04:49:47:29:
51:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:96:EE:9C:FE:AA:0D:18:81:8C:AC:7A:5D:64:D8:F9:4C:C8:AA:1D
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/HpbunP6qDRiBjKx6XWTY-UzIqh0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.105.239.0/24
Signature Algorithm: sha256WithRSAEncryption
55:0d:75:a5:86:6a:7e:af:2d:80:45:a8:3d:f9:53:92:ee:73:
d8:cc:e6:b1:a5:28:54:b5:a4:fe:88:4f:cf:eb:88:e3:31:2d:
c1:51:27:db:d9:39:7c:9c:7d:88:22:46:a8:63:1a:74:1b:5e:
59:c4:0f:bb:dc:ad:b9:4f:0f:68:3c:a8:50:b6:88:60:27:76:
26:43:3c:2c:e6:7c:ed:4b:19:8d:0a:39:0d:e4:66:84:71:79:
a1:36:0a:70:0b:32:57:be:c1:b9:4e:d0:7f:a1:ee:9e:e3:24:
c7:e4:a1:2c:98:0e:23:99:78:18:ca:11:f3:c8:e0:9b:ea:6f:
77:3b:03:5a:14:87:12:76:db:f5:14:3f:5a:92:2c:33:48:ab:
53:b6:d8:8b:b1:d8:73:c7:e9:b3:86:d0:cd:cd:4d:72:95:f6:
21:81:fb:d7:c1:4c:27:8f:e6:44:b7:8b:7e:d5:97:f6:62:79:
a0:65:3f:59:4f:0a:f3:0c:a7:47:4f:fd:09:f6:3e:bd:44:7c:
9d:56:b9:3f:11:c3:97:2e:a0:bd:ed:5c:53:7e:f0:55:68:51:
d0:4c:c4:ee:40:41:02:61:38:d8:a5:3d:df:ea:eb:38:bc:0a:
77:02:99:6b:43:1f:0b:e3:b2:d1:1d:f3:79:59:db:02:9b:c6:
99:58:42:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:15 2024 by rpki-client on console-ams.rpki-client.org