Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/KYzRnmPj0S1QmkXqbTtpCD-WuZw.roa
File: KYzRnmPj0S1QmkXqbTtpCD-WuZw.roa (raw, json)
Hash identifier: ODymk5btIyazzYm03WSgvicARaMJmCR85hgq1rhAbZw=
Subject key identifier: 29:8C:D1:9E:63:E3:D1:2D:50:9A:45:EA:6D:3B:69:08:3F:96:B9:9C
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0FCF
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/KYzRnmPj0S1QmkXqbTtpCD-WuZw.roa
Signing time: Fri 01 Sep 2023 09:37:19 +0000
ROA not before: Fri 01 Sep 2023 09:37:19 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9924
IP address blocks: 210.17.13.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4047 (0xfcf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 1 09:37:19 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=298CD19E63E3D12D509A45EA6D3B69083F96B99C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:cb:de:db:96:26:5d:87:dd:32:b3:0a:78:8c:
e3:ca:1d:4e:bf:e5:c2:8c:f3:2f:34:0f:9e:9e:7f:
26:f4:8f:cd:1c:8c:fb:e3:08:24:5b:e5:b6:ca:99:
65:fa:00:7c:65:31:36:39:ad:9c:4e:9d:12:13:d1:
f6:04:5a:10:b5:a6:0b:ea:43:0a:71:24:81:55:a5:
fc:29:66:52:7e:6a:48:a2:1e:9f:03:5a:6d:e1:e6:
c3:1d:6b:55:f2:bf:9a:24:e3:48:65:a1:11:7d:9a:
01:1b:d9:f4:12:6b:1a:82:b2:c1:fa:9c:7f:86:28:
78:f1:03:95:07:32:94:39:7d:e5:74:53:47:6e:d0:
e4:74:12:bf:c4:5f:e0:f6:39:91:e2:3b:ca:a4:a9:
7e:ef:dc:57:af:94:d0:2a:12:b5:a7:a8:07:a5:fb:
51:6c:a4:d9:91:59:ff:67:e2:cf:42:4a:fc:69:6a:
1e:4b:a9:10:a5:f3:d7:b1:ba:63:68:e0:b4:77:8b:
c3:33:5a:4e:9f:32:93:3d:97:80:99:61:d1:43:21:
0d:1b:7a:ab:68:a5:1f:1a:c0:9a:4e:b1:fa:2d:e6:
9a:b0:8a:5b:ac:4e:0b:6a:f3:a6:70:83:4b:62:d3:
c2:6c:06:4a:72:f3:a9:bd:fb:0f:61:03:e0:0b:21:
7a:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:8C:D1:9E:63:E3:D1:2D:50:9A:45:EA:6D:3B:69:08:3F:96:B9:9C
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/KYzRnmPj0S1QmkXqbTtpCD-WuZw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.17.13.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:37:b2:5b:97:90:fa:60:fe:a5:c7:ed:68:0e:6b:65:26:7e:
32:41:f8:0e:ba:4e:bd:83:74:d3:36:ad:cb:36:a3:43:d8:69:
75:d3:46:15:2c:1e:0c:c3:60:1d:b5:0a:35:31:27:a9:94:49:
a8:62:c3:d5:bc:c0:ca:3e:cb:7a:2b:e6:01:86:8e:c0:5d:c4:
fc:63:3e:b3:9b:16:0d:56:b9:80:07:14:40:c8:53:66:14:77:
f8:0b:4a:3f:b7:b4:83:9b:33:59:a6:10:bc:9f:66:f3:81:11:
48:2b:f4:a7:d2:c1:51:c4:73:16:5c:85:cd:1b:b4:0a:37:13:
7d:0a:d9:aa:0e:a3:6b:1a:bf:44:43:0b:dc:1b:f1:e8:2d:e4:
fb:3a:09:5a:13:45:f3:a5:2c:a0:49:95:bb:14:63:c9:cb:a4:
8c:b0:6c:f0:ab:60:df:88:0f:60:f3:2d:f9:7b:61:73:42:b4:
70:31:a0:28:e7:df:a4:e0:5d:4c:f9:1c:6e:34:7e:2c:aa:ba:
f4:ca:fe:c7:a8:99:96:8b:bd:3e:33:71:be:2a:b3:b0:f8:d5:
73:79:19:f6:55:12:0e:d7:ad:41:4d:d1:17:90:e8:37:6f:6c:
58:83:04:40:f5:0e:70:b5:f0:62:d5:a8:22:55:2a:65:8f:bd:
a4:ce:6f:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:15 2024 by rpki-client on console-ams.rpki-client.org