Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/K8kbqEN9cvmI1IHp1b4p18Anekc.roa
File: K8kbqEN9cvmI1IHp1b4p18Anekc.roa (raw, json)
Hash identifier: 1EJzWyaRQ/sNcCoRQSY3Igf6kdofJNrYn1eci617JEM=
Subject key identifier: 2B:C9:1B:A8:43:7D:72:F9:88:D4:81:E9:D5:BE:29:D7:C0:27:7A:47
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 120C
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/K8kbqEN9cvmI1IHp1b4p18Anekc.roa
Signing time: Mon 26 Aug 2024 05:24:39 +0000
ROA not before: Mon 26 Aug 2024 05:24:39 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 4662
IP address blocks: 203.105.224.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4620 (0x120c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Aug 26 05:24:39 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=2BC91BA8437D72F988D481E9D5BE29D7C0277A47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:65:c9:f6:8e:2b:c2:1a:2f:6f:e1:21:1a:7b:
91:60:b3:7c:b6:4d:40:85:fa:f6:e5:7d:a1:a7:c9:
25:09:77:1c:92:ef:5d:42:93:78:70:1f:d4:af:28:
4f:60:d5:30:7a:94:8c:cb:97:85:84:74:28:75:ef:
ce:0c:9c:dc:b9:ba:ba:9c:87:d5:61:ed:d3:f5:0c:
91:64:dc:91:c0:a2:d1:9d:f1:65:89:b2:9f:d6:13:
ef:b1:78:c2:5b:63:bf:9a:4e:57:30:3e:aa:bf:de:
91:fe:4e:8f:ef:5d:56:63:9e:a3:60:eb:0b:f7:ca:
9c:61:8b:b5:ab:79:7a:3d:cf:73:c3:7c:21:5f:8c:
47:1e:5c:96:e4:47:76:88:35:17:4d:d4:f7:5d:eb:
15:99:82:a8:9d:68:cf:6c:f3:73:40:a9:1a:56:0f:
2f:67:16:80:6c:a3:57:3d:90:3e:58:cf:74:83:c0:
7e:dc:23:62:22:9c:68:57:62:9d:85:2c:ff:ac:60:
bd:b3:cb:12:0d:33:5b:40:9a:9f:4b:8e:bc:cf:ed:
fc:06:c6:71:bf:44:22:a7:e2:5b:aa:3e:4e:db:79:
43:27:58:97:04:d2:be:e9:37:63:15:07:24:c7:19:
0e:f8:87:15:23:44:46:43:89:fa:8f:30:09:0b:6f:
b7:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:C9:1B:A8:43:7D:72:F9:88:D4:81:E9:D5:BE:29:D7:C0:27:7A:47
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/K8kbqEN9cvmI1IHp1b4p18Anekc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.105.224.0/19
Signature Algorithm: sha256WithRSAEncryption
71:f5:85:00:76:8d:af:5c:78:40:dd:d1:2c:30:7b:71:3c:6b:
31:fe:8d:96:56:db:3d:6c:50:84:54:59:4c:23:b0:85:98:96:
7f:45:52:55:1e:07:16:5b:e3:d1:9c:de:52:c3:62:9e:57:8f:
2d:a2:c9:ee:bf:32:59:5a:aa:be:e3:10:c6:de:0d:28:12:de:
6a:98:24:b5:8e:3d:9b:e1:13:17:43:67:89:6f:cd:ce:18:61:
83:f1:81:4a:36:76:95:de:5e:8d:87:bb:2b:36:ef:68:73:1e:
21:c2:82:5d:9e:1b:bc:81:2a:8d:ff:4d:27:58:c6:59:89:3a:
88:9c:95:b0:13:75:a9:86:3b:24:9f:0c:e9:d6:8e:57:78:37:
70:f8:6b:4f:6b:8c:df:79:16:02:d4:d0:fb:ec:6d:aa:40:01:
44:17:ef:fb:ac:2e:7f:a8:d9:20:29:8a:ce:1b:8b:0a:29:15:
c3:d3:0e:cb:58:30:d2:18:32:96:3a:db:0e:fb:49:4c:a9:ee:
f3:a2:8d:90:c2:e4:3c:53:cc:bc:63:b7:43:97:32:79:80:1f:
02:84:6e:03:2a:f3:e1:f9:59:35:3e:12:7f:d1:67:25:44:dd:
88:e0:b4:4e:69:13:c4:d3:ea:e2:55:28:9d:ae:77:5d:20:52:
01:3b:79:67
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICEgwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNDA4MjYw
NTI0MzlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDJCQzkxQkE4NDM3RDcy
Rjk4OEQ0ODFFOUQ1QkUyOUQ3QzAyNzdBNDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQD1Zcn2jivCGi9v4SEae5Fgs3y2TUCF+vblfaGnySUJdxyS711C
k3hwH9SvKE9g1TB6lIzLl4WEdCh1784MnNy5urqch9Vh7dP1DJFk3JHAotGd8WWJ
sp/WE++xeMJbY7+aTlcwPqq/3pH+To/vXVZjnqNg6wv3ypxhi7WreXo9z3PDfCFf
jEceXJbkR3aINRdN1Pdd6xWZgqidaM9s83NAqRpWDy9nFoBso1c9kD5Yz3SDwH7c
I2IinGhXYp2FLP+sYL2zyxINM1tAmp9LjrzP7fwGxnG/RCKn4luqPk7beUMnWJcE
0r7pN2MVByTHGQ74hxUjREZDifqPMAkLb7d/AgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUK8kbqEN9cvmI1IHp1b4p18AnekcwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvSzhrYnFFTjljdm1JMUlI
cDFiNHAxOEFuZWtjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
Bctp4DANBgkqhkiG9w0BAQsFAAOCAQEAcfWFAHaNr1x4QN3RLDB7cTxrMf6Nllbb
PWxQhFRZTCOwhZiWf0VSVR4HFlvj0ZzeUsNinlePLaLJ7r8yWVqqvuMQxt4NKBLe
apgktY49m+ETF0NniW/Nzhhhg/GBSjZ2ld5ejYe7KzbvaHMeIcKCXZ4bvIEqjf9N
J1jGWYk6iJyVsBN1qYY7JJ8M6daOV3g3cPhrT2uM33kWAtTQ++xtqkABRBfv+6wu
f6jZICmKzhuLCikVw9MOy1gw0hgyljrbDvtJTKnu86KNkMLkPFPMvGO3Q5cyeYAf
AoRuAyrz4flZNT4Sf9FnJUTdiOC0TmkTxNPq4lUona53XSBSATt5Zw==
-----END CERTIFICATE-----
Generated at Wed Apr 9 11:59:16 2025 by rpki-client