Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/LxD6XpxJKXu83TDxr6VfClklyuU.roa
File: LxD6XpxJKXu83TDxr6VfClklyuU.roa (raw, json)
Hash identifier: OEPsapvPq30A1EGuczmCAymNGHObXXbN3ADLwa8YxVg=
Subject key identifier: 2F:10:FA:5E:9C:49:29:7B:BC:DD:30:F1:AF:A5:5F:0A:59:25:CA:E5
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0FC9
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/LxD6XpxJKXu83TDxr6VfClklyuU.roa
Signing time: Fri 01 Sep 2023 09:37:17 +0000
ROA not before: Fri 01 Sep 2023 09:37:17 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24158
IP address blocks: 61.30.25.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4041 (0xfc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 1 09:37:17 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=2F10FA5E9C49297BBCDD30F1AFA55F0A5925CAE5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:cc:bd:72:76:4c:ba:35:20:04:4f:62:44:68:
18:6a:c7:fb:0b:07:0a:4a:e0:cd:cb:18:e1:81:7c:
c3:2c:25:55:78:71:a5:a2:bf:fa:96:eb:74:74:b1:
38:6f:c8:75:70:b4:0f:f7:37:92:00:a3:e8:bf:3a:
2b:41:1b:3c:8e:d4:3b:8b:73:2c:ce:a5:21:1f:09:
70:83:94:b8:e5:7b:a0:49:2a:ce:d4:b4:59:bc:8d:
08:9b:92:6c:e4:59:6c:1c:95:de:68:4f:32:6c:8d:
7a:ed:57:ac:35:e0:d0:03:74:81:85:9f:de:90:e1:
66:bc:df:92:a1:a4:81:b0:e4:d2:cd:ea:5b:29:b8:
8f:be:3b:62:1c:16:55:95:6e:b3:ef:76:56:ac:7d:
22:ba:52:1c:f0:56:f2:50:09:b5:5c:4a:60:cb:7b:
9e:9a:fe:12:f2:99:cc:e3:4a:73:73:fb:f1:aa:d0:
77:56:71:2f:d3:a1:1e:43:c2:c0:06:56:4a:19:a5:
03:cc:fc:a0:4c:64:a6:f0:cb:37:e0:7d:e7:d3:b6:
fe:17:ab:80:29:61:80:cb:7a:2e:7f:c1:d8:38:7b:
a1:03:9b:8b:ee:f8:a8:d2:0a:bd:b0:e8:14:6b:50:
74:2b:5c:d1:55:18:b9:2b:d1:6d:1d:14:6f:b5:a8:
54:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:10:FA:5E:9C:49:29:7B:BC:DD:30:F1:AF:A5:5F:0A:59:25:CA:E5
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/LxD6XpxJKXu83TDxr6VfClklyuU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.30.25.0/24
Signature Algorithm: sha256WithRSAEncryption
58:74:7c:5f:d3:26:dd:71:1c:56:49:49:c2:a4:ca:6e:70:ba:
6b:7e:24:dd:9d:8d:d2:10:d9:38:e8:64:f6:b4:91:a6:8c:3a:
6f:e1:77:50:0e:c3:f1:66:99:94:7c:a4:70:ed:6a:c5:6f:d2:
6b:03:0e:84:a5:8b:cd:1c:77:1f:86:75:83:65:42:2c:e7:df:
ed:69:76:82:54:cb:a0:4a:08:dc:14:b5:84:f7:33:bc:87:84:
02:7e:e9:28:f9:65:c5:5c:77:69:48:a7:57:56:d7:81:87:3c:
38:1d:56:ee:03:76:65:47:0d:4b:ee:92:8b:70:f5:94:3b:bc:
23:6a:07:7f:32:e4:1f:88:b3:38:fc:36:93:bb:13:ba:4a:8e:
f5:e7:91:bf:02:7c:f8:46:d1:a2:cd:8a:8a:8c:b4:94:c2:fc:
cc:ea:13:a6:64:48:cb:c3:40:52:af:ab:82:dd:37:8f:a1:9d:
24:cd:4b:71:be:4d:6a:3e:7c:b1:ab:30:96:ea:36:38:73:af:
a0:9b:a4:8f:41:94:7e:05:31:69:fe:90:22:be:75:df:8e:ed:
cb:2f:fc:c1:7c:d0:e2:f9:c6:34:9f:96:21:78:5c:59:d0:55:
b1:c0:7c:b7:87:dc:94:ec:60:73:d9:e0:61:9f:24:db:d2:9e:
9c:62:47:44
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICD8kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMzA5MDEw
OTM3MTdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDJGMTBGQTVFOUM0OTI5
N0JCQ0REMzBGMUFGQTU1RjBBNTkyNUNBRTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC/zL1ydky6NSAET2JEaBhqx/sLBwpK4M3LGOGBfMMsJVV4caWi
v/qW63R0sThvyHVwtA/3N5IAo+i/OitBGzyO1DuLcyzOpSEfCXCDlLjle6BJKs7U
tFm8jQibkmzkWWwcld5oTzJsjXrtV6w14NADdIGFn96Q4Wa835KhpIGw5NLN6lsp
uI++O2IcFlWVbrPvdlasfSK6UhzwVvJQCbVcSmDLe56a/hLymczjSnNz+/Gq0HdW
cS/ToR5DwsAGVkoZpQPM/KBMZKbwyzfgfefTtv4Xq4ApYYDLei5/wdg4e6EDm4vu
+KjSCr2w6BRrUHQrXNFVGLkr0W0dFG+1qFRRAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQULxD6XpxJKXu83TDxr6VfClklyuUwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvTHhENlhweEpLWHU4M1RE
eHI2VmZDbGtseXVVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
AD0eGTANBgkqhkiG9w0BAQsFAAOCAQEAWHR8X9Mm3XEcVklJwqTKbnC6a34k3Z2N
0hDZOOhk9rSRpow6b+F3UA7D8WaZlHykcO1qxW/SawMOhKWLzRx3H4Z1g2VCLOff
7Wl2glTLoEoI3BS1hPczvIeEAn7pKPllxVx3aUinV1bXgYc8OB1W7gN2ZUcNS+6S
i3D1lDu8I2oHfzLkH4izOPw2k7sTukqO9eeRvwJ8+EbRos2Kioy0lML8zOoTpmRI
y8NAUq+rgt03j6GdJM1Lcb5Naj58saswluo2OHOvoJukj0GUfgUxaf6QIr51347t
yy/8wXzQ4vnGNJ+WIXhcWdBVscB8t4fclOxgc9ngYZ8k29KenGJHRA==
-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:22 2024 by rpki-client on console-fra.rpki-client.org