Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/JFpqd7PrKYr_VZf3cfIVkyBeK_M.roa
File: JFpqd7PrKYr_VZf3cfIVkyBeK_M.roa (raw, json)
Hash identifier: vLD0tTPWlV3nt8lhDNxSDxZSPqMMqJX4JNJGUuLXVpY=
Subject key identifier: 24:5A:6A:77:B3:EB:29:8A:FF:55:97:F7:71:F2:15:93:20:5E:2B:F3
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0FDC
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/JFpqd7PrKYr_VZf3cfIVkyBeK_M.roa
Signing time: Fri 01 Sep 2023 09:37:23 +0000
ROA not before: Fri 01 Sep 2023 09:37:23 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9924
IP address blocks: 203.65.160.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4060 (0xfdc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 1 09:37:23 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=245A6A77B3EB298AFF5597F771F21593205E2BF3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:4b:0c:b5:76:59:29:f4:2a:01:f1:04:a4:54:
6d:92:b4:60:c2:d6:74:04:9d:02:54:a1:85:52:0d:
7e:af:e8:bd:d8:30:96:69:5e:17:26:8c:d7:8f:96:
7e:f8:a6:22:2d:16:b4:c4:09:5b:ee:ee:c1:53:6f:
df:ff:92:42:ee:9b:2b:b1:a3:0e:34:de:d8:2a:83:
19:ee:10:64:a8:e7:4f:7b:22:9a:8a:41:b8:7d:ad:
a3:55:1e:4f:df:03:c3:2f:15:d2:6a:c2:7f:3f:71:
bc:14:9f:8a:f9:50:c7:25:f6:2e:7d:7e:5e:56:a3:
df:bb:ff:b4:b3:62:e8:67:d4:90:fe:fc:bd:c0:27:
4a:84:de:2a:9a:a4:ce:7f:d4:f7:82:84:46:df:a0:
4f:3d:68:77:7c:97:8d:23:6d:3c:99:36:5a:0e:75:
b3:fa:eb:23:e8:2d:d2:77:a9:17:30:ba:5a:5e:a1:
6f:18:c4:15:25:1f:9b:ff:ce:56:5b:85:74:22:9c:
a9:29:d1:8b:e5:ba:04:5e:5d:fc:6c:7a:76:61:f2:
fd:fc:79:4f:7d:e0:44:ce:d0:37:9f:0b:69:fc:5c:
7d:2b:f8:41:98:b2:b1:2e:21:16:c8:d2:e5:34:e4:
24:dd:e2:6e:ea:4e:35:76:e8:74:02:8c:c7:e4:be:
3d:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:5A:6A:77:B3:EB:29:8A:FF:55:97:F7:71:F2:15:93:20:5E:2B:F3
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/JFpqd7PrKYr_VZf3cfIVkyBeK_M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.65.160.0/19
Signature Algorithm: sha256WithRSAEncryption
28:49:32:b5:3e:38:f6:71:d4:c3:06:fc:68:aa:9b:61:86:3a:
1f:8e:f4:91:8e:94:9e:39:9f:c8:e5:0b:27:56:3c:cb:0d:e1:
e4:81:66:0c:09:8b:e8:ac:6a:93:bf:ff:97:e8:57:3d:db:7a:
8e:7b:fa:71:47:ef:2f:7a:a0:35:49:d4:56:9c:6e:11:2b:9c:
61:ed:04:85:ef:6a:5e:54:31:6f:e8:ef:72:07:25:e1:9f:01:
bb:b2:47:53:95:7a:e4:77:13:2d:2b:08:8e:0e:e0:cc:b7:c2:
e5:90:4f:dd:1f:0e:12:77:8d:bd:45:79:c3:29:d0:d0:87:59:
52:ec:97:58:00:77:f9:8a:17:d2:b8:07:86:4f:5a:9b:fa:9a:
b5:aa:56:76:bd:78:28:17:e2:ee:43:31:d4:99:05:e6:a7:42:
14:57:47:4f:4c:31:29:ac:d3:8d:73:06:19:a2:09:4d:01:d4:
4c:37:9c:7c:79:4b:eb:ab:8c:7e:69:4a:a5:5a:b8:25:a9:36:
85:67:9c:dd:8a:7e:9a:bc:52:a5:12:6d:ea:05:05:e2:a8:af:
73:fe:a1:2b:9a:28:8b:cd:d0:45:8e:4e:f2:e3:a7:cc:01:c1:
e7:7a:66:8f:dd:db:51:54:e0:f9:75:26:66:e0:93:46:82:ba:
89:42:0d:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:22 2024 by rpki-client on console-fra.rpki-client.org