Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/QMS-dzuu2p9QmgemrPuIx3BFfg0.roa
File: QMS-dzuu2p9QmgemrPuIx3BFfg0.roa (raw, json)
Hash identifier: X0u+EYpazhZGIdRGzXCzzVBrnf7EfCtJXHoWHBrIpOg=
Subject key identifier: 40:C4:BE:77:3B:AE:DA:9F:50:9A:07:A6:AC:FB:88:C7:70:45:7E:0D
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0F8A
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/QMS-dzuu2p9QmgemrPuIx3BFfg0.roa
Signing time: Fri 01 Sep 2023 09:36:59 +0000
ROA not before: Fri 01 Sep 2023 09:36:59 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17213
IP address blocks: 60.198.152.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3978 (0xf8a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 1 09:36:59 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=40C4BE773BAEDA9F509A07A6ACFB88C770457E0D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:25:97:b3:dc:33:47:be:ff:46:d8:9d:35:b1:
a6:ea:9c:fb:0d:70:94:f1:93:ad:45:94:71:24:65:
44:5a:f1:93:ae:ac:73:af:55:d6:45:5c:fb:6c:5f:
6f:dc:17:b4:92:f1:62:e9:f5:2f:ac:15:db:96:51:
f7:04:b1:19:89:c8:4f:ff:c7:29:6b:54:8d:a2:85:
91:5f:4c:40:9f:84:34:94:d5:79:62:b8:8b:f2:7e:
98:03:fd:07:e9:3f:af:f6:9c:ef:69:67:c8:5d:26:
a5:16:3d:d3:42:af:12:cc:44:af:d3:db:5d:3b:c7:
f9:f7:9b:b7:d7:b6:26:e0:9f:33:29:28:61:3c:4c:
73:f7:60:f9:ed:66:68:9b:e7:10:96:4a:f1:44:5d:
a3:14:17:ab:cd:0d:bc:21:11:3d:e0:a3:3f:a0:11:
a2:30:2e:b9:20:72:47:3e:63:7d:01:99:12:95:c0:
b8:76:97:47:d7:9e:aa:3a:9f:1f:c7:01:2f:e8:09:
3b:71:8e:fa:93:ff:b0:28:48:ee:4b:04:d2:75:ac:
65:bc:75:17:b7:65:7a:4e:0f:6c:59:8f:85:64:61:
24:fc:e5:67:a7:73:fd:97:90:c2:18:f7:07:8e:69:
b8:0f:00:b9:e9:48:7d:aa:eb:6d:74:e7:28:65:5a:
90:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:C4:BE:77:3B:AE:DA:9F:50:9A:07:A6:AC:FB:88:C7:70:45:7E:0D
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/QMS-dzuu2p9QmgemrPuIx3BFfg0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.198.152.0/24
Signature Algorithm: sha256WithRSAEncryption
73:6b:28:70:65:af:57:8e:68:37:57:de:9e:07:b0:4d:a9:f5:
72:c4:a6:ad:90:c0:c3:7c:a9:df:b9:33:e3:73:93:c6:77:45:
8b:a8:5b:2c:07:97:bf:98:b2:04:fb:49:f5:4d:9a:12:6d:9b:
71:84:25:b6:cb:80:ae:ad:1b:ad:18:9f:0f:65:3b:c9:2b:a2:
84:7e:8d:d9:82:7a:9e:e9:66:04:e9:01:62:e8:4c:c0:61:92:
eb:c2:60:bb:32:d9:1f:3d:1c:d2:3c:de:28:18:2d:f6:ef:80:
2b:14:02:42:6d:bb:bc:3e:9e:36:b0:f9:a7:fd:8a:03:eb:40:
ce:83:7d:3a:49:05:dc:a1:5e:e2:d0:d1:e2:5c:60:eb:3d:93:
57:5a:0e:3c:1e:94:19:4b:03:87:6e:7e:f0:cb:28:6b:a3:f3:
36:24:83:ab:01:75:48:ea:7a:8a:e5:0d:58:a9:ee:d3:8b:91:
bf:3a:ee:f2:3c:49:e0:22:e7:92:b3:c4:86:94:ca:ad:34:8b:
32:7d:f0:ed:28:eb:87:0c:cf:0e:2c:ee:33:dd:76:0a:9a:d5:
da:e7:29:13:07:68:82:3d:df:50:4d:22:9f:3f:d3:b8:56:9f:
d3:52:d3:c7:cc:b0:0e:0a:14:ab:f3:ce:75:16:f5:8c:3e:84:
49:e8:da:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:15 2024 by rpki-client on console-ams.rpki-client.org