Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/JSr1AhKbarhzwbA88YmkclTTBQc.roa
File: JSr1AhKbarhzwbA88YmkclTTBQc.roa (raw, json)
Hash identifier: gl8WrrwPN52ayWGdqwBdvZUq3oVdHDXLdXZdpXhMLio=
Subject key identifier: 25:2A:F5:02:12:9B:6A:B8:73:C1:B0:3C:F1:89:A4:72:54:D3:05:07
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 11FC
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/JSr1AhKbarhzwbA88YmkclTTBQc.roa
Signing time: Mon 26 Aug 2024 05:24:35 +0000
ROA not before: Mon 26 Aug 2024 05:24:35 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9924
IP address blocks: 60.199.140.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4604 (0x11fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Aug 26 05:24:35 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=252AF502129B6AB873C1B03CF189A47254D30507
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:f8:24:dc:d5:30:6f:8e:e6:ff:d0:9a:0f:2f:
28:ec:70:e2:f5:d4:58:1f:7c:54:36:1e:c1:26:58:
f3:ef:37:f9:f4:36:95:9a:2d:a9:c9:da:ef:93:1a:
1b:f0:83:b6:32:8c:d5:c8:0e:f8:9f:e6:9c:a0:40:
a3:81:b2:ab:0d:99:75:66:be:b2:53:62:5a:7c:41:
1b:57:b5:5d:fa:ba:e6:29:95:a7:e0:60:3f:b8:2b:
85:e4:fc:db:9e:a3:c6:7a:cd:02:4a:f7:b4:5c:9c:
ed:c1:52:fe:78:45:98:f9:34:7b:2b:a5:b4:ab:65:
c8:71:05:d8:a6:35:fd:a6:8d:4f:da:e7:84:10:a5:
3b:66:29:a3:f8:6d:36:3f:cb:6a:e8:ea:0d:ba:50:
d6:03:4d:1c:36:e4:99:f3:e3:b2:5d:34:d5:a2:28:
d5:3b:d5:2b:e2:b9:2f:a3:14:2a:4f:64:df:82:02:
da:0b:a5:88:85:69:b8:ff:aa:a4:fc:59:e4:f1:57:
3b:b3:8b:7f:07:30:f2:b1:bf:6b:46:28:d8:74:c5:
3d:f7:93:1f:d3:6c:72:d6:8a:b6:44:dc:24:59:36:
57:5b:02:b9:87:90:c3:78:5d:ee:1e:08:46:3f:0c:
3f:c7:e0:4c:0d:c3:e1:08:f4:9b:91:94:9c:b6:45:
72:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:2A:F5:02:12:9B:6A:B8:73:C1:B0:3C:F1:89:A4:72:54:D3:05:07
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/JSr1AhKbarhzwbA88YmkclTTBQc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.199.140.0/24
Signature Algorithm: sha256WithRSAEncryption
02:5f:8a:28:99:ae:ed:5e:7d:22:ef:b9:63:6d:87:72:73:c5:
16:7a:fd:1d:13:1b:b1:dc:8f:28:30:32:64:ce:5b:55:15:27:
ba:df:ed:09:5f:54:27:fe:6c:ec:60:88:3e:1f:f5:26:51:c4:
70:37:d8:9b:96:fa:5a:7d:df:47:81:a2:ed:55:09:a4:61:ab:
b8:c1:39:6a:de:ba:4c:06:14:2e:43:23:20:8a:0c:6d:5e:08:
af:c1:d3:81:a2:22:1b:28:04:33:f0:f1:8f:d3:5e:14:34:d0:
73:c8:50:f8:30:ca:d1:2b:0f:ce:ec:22:28:0e:15:ef:18:19:
9c:4e:52:0e:37:08:e6:23:c0:c9:fa:b1:d2:5f:e6:9b:2a:eb:
54:2d:0e:82:aa:75:98:e3:26:5b:af:2d:a2:90:b6:d0:c0:e2:
33:cd:5b:87:9a:23:82:38:c7:00:d1:e0:dd:cc:8c:19:2b:84:
48:d0:a2:72:40:e7:7b:58:f5:3c:41:d3:9c:a3:d5:ec:70:e9:
ba:22:c2:17:21:47:ee:f9:70:13:ba:e1:42:20:e9:83:8e:c5:
91:9d:1d:c3:c3:46:3c:b9:81:c5:d6:d2:91:6a:e5:22:b3:4e:
38:99:81:7c:b8:6c:d6:cc:6d:42:7e:e6:97:1b:59:55:f0:b1:
e0:40:44:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 12:01:57 2025 by rpki-client