Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/KETX4XvsT1YzQgL-XIrW6cEWGBE.roa
File: KETX4XvsT1YzQgL-XIrW6cEWGBE.roa (raw, json)
Hash identifier: /rhIoDxbKzaUFtB3ZN3V00EwGTKOZe7OfcbU7oKMpsE=
Subject key identifier: 28:44:D7:E1:7B:EC:4F:56:33:42:02:FE:5C:8A:D6:E9:C1:16:18:11
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0F88
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/KETX4XvsT1YzQgL-XIrW6cEWGBE.roa
Signing time: Fri 01 Sep 2023 09:36:58 +0000
ROA not before: Fri 01 Sep 2023 09:36:58 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131634
IP address blocks: 124.108.140.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3976 (0xf88)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 1 09:36:58 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=2844D7E17BEC4F56334202FE5C8AD6E9C1161811
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:79:e0:5b:d4:7b:9d:6f:41:e8:61:62:bf:38:
b3:0c:c9:f6:de:5e:4b:2d:bc:91:63:93:3c:69:1e:
40:d6:d7:6f:84:82:f9:24:fb:78:4a:f4:f4:f6:44:
a2:0f:af:a3:92:03:54:9f:b6:50:8f:87:18:5e:9d:
c8:17:0d:96:6e:4c:b1:95:0f:d1:f1:1e:40:74:d3:
97:0f:85:df:9f:e2:7e:9d:ee:6a:6d:1c:ec:b3:9f:
50:9c:03:c6:8b:63:45:23:f1:db:25:32:e5:80:d2:
c4:67:81:d0:61:62:e3:7a:0f:18:e8:6c:5e:f8:9c:
fe:b9:6f:25:e9:40:b0:ed:50:67:8b:fd:a5:dd:28:
c4:10:c4:55:2e:03:34:f2:f3:26:3a:87:e2:6e:7f:
4c:42:ca:9c:29:10:98:59:e9:e8:f3:ba:3c:d9:11:
04:70:71:6c:14:4b:63:d8:50:cf:fd:db:06:12:52:
12:da:ff:f0:61:7e:f9:05:82:a4:95:8d:a1:f8:dd:
d2:57:eb:d0:18:e9:4e:40:ce:98:7b:c7:ea:a2:ac:
e8:21:0f:f8:0e:8b:6a:23:36:29:d7:e9:49:55:0f:
93:58:18:62:1a:e8:e6:8d:8f:b5:42:a9:39:78:e3:
56:99:bd:b7:10:a6:2c:c7:a4:c3:4c:16:cc:6f:03:
62:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:44:D7:E1:7B:EC:4F:56:33:42:02:FE:5C:8A:D6:E9:C1:16:18:11
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/KETX4XvsT1YzQgL-XIrW6cEWGBE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.108.140.0/23
Signature Algorithm: sha256WithRSAEncryption
4d:2b:c9:3f:0b:ee:fb:9e:bf:e3:3e:04:3a:88:5b:66:c3:f1:
be:79:ee:13:99:9a:94:cf:eb:66:b8:ba:97:2a:1e:43:6b:d1:
f7:c3:2b:65:a1:f6:bd:2f:7f:bb:c8:3f:03:cb:a9:e5:ce:74:
eb:10:6c:bf:6f:f8:a6:29:32:c8:e1:b4:fe:ab:c2:ee:a8:33:
46:af:d9:96:1b:70:39:d7:ce:aa:8c:03:89:29:4f:76:6c:fb:
83:ea:99:67:97:eb:ab:bf:0f:55:3f:76:08:04:34:44:ca:f7:
32:b2:5d:47:16:39:d3:0d:13:e3:bc:b4:12:9f:50:85:ed:a5:
5b:65:9b:f8:0b:2c:23:6e:53:fe:0c:ef:c7:ba:ff:6b:70:f9:
34:b1:f3:a7:3d:0a:0f:7c:b3:ad:ee:22:cc:a7:f3:0a:9a:48:
73:fa:67:bc:60:64:fa:9c:a8:27:c2:df:dc:9d:12:f0:c0:ae:
6d:18:c9:c6:ba:09:20:66:04:17:d4:c2:7f:01:52:42:4b:e3:
ba:d8:64:0d:37:c4:3a:73:8c:c2:2b:c8:f8:72:81:c7:d3:28:
c9:e1:30:13:2f:3d:f5:67:4e:b8:73:26:99:c4:10:f3:c8:5d:
0e:c5:89:5c:5b:45:b5:4d:5e:a7:07:d9:a7:26:f4:2e:3c:ac:
e2:06:a6:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:22 2024 by rpki-client on console-fra.rpki-client.org