Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/QVrH02_7emWlTCBqnYL32DvOWrI.roa
File: QVrH02_7emWlTCBqnYL32DvOWrI.roa (raw, json)
Hash identifier: fyLH7NINSrlnouhcZ0SswvQ0t5OZ8bouBL81XZSaefk=
Subject key identifier: 41:5A:C7:D3:6F:FB:7A:65:A5:4C:20:6A:9D:82:F7:D8:3B:CE:5A:B2
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 1352
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/QVrH02_7emWlTCBqnYL32DvOWrI.roa
Signing time: Mon 10 Feb 2025 14:09:21 +0000
ROA not before: Mon 10 Feb 2025 14:09:21 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9924
IP address blocks: 210.63.128.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4946 (0x1352)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 10 14:09:21 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=415AC7D36FFB7A65A54C206A9D82F7D83BCE5AB2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:c9:0c:a5:4c:32:c2:97:18:ef:0b:22:ed:db:
77:c6:4a:5e:b9:20:0f:e9:0c:18:b8:c5:d7:89:94:
44:64:bb:36:0b:39:52:96:39:fc:2f:46:3e:03:2e:
65:f4:94:29:1f:ad:ee:0c:71:90:dc:e0:99:eb:6b:
bb:bf:f7:b1:2b:8f:3f:b5:e7:d1:ae:97:17:1e:14:
ea:c4:ca:33:2b:28:51:e6:75:fa:bc:2f:9b:73:e5:
d9:24:79:4d:9c:6a:f0:8f:2e:bd:a9:c9:a1:ab:c4:
04:30:c3:ba:5e:08:3e:d0:bf:5c:16:a6:9d:de:a7:
a9:84:fe:2e:7f:2a:65:b8:c1:7e:f8:b3:8a:59:50:
ca:98:6b:1b:5f:91:31:a6:49:2d:c6:28:19:1b:fe:
70:ac:db:48:e3:6f:41:41:dd:0e:6f:70:4a:61:af:
ed:a8:99:e5:f7:30:69:cf:9b:e2:72:7d:a0:9e:a8:
ad:44:c4:be:25:f8:15:4e:df:72:92:4b:22:1b:15:
66:12:55:c3:cb:1e:c4:ce:92:86:70:28:fb:6d:6e:
ec:7b:35:f6:78:72:b2:8d:60:e3:39:92:b4:9b:f9:
7e:cd:77:f2:bd:06:eb:1d:aa:d6:3b:cd:be:6a:9a:
c7:31:a5:4a:61:08:fb:7d:f4:71:1b:89:64:f8:33:
fa:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:5A:C7:D3:6F:FB:7A:65:A5:4C:20:6A:9D:82:F7:D8:3B:CE:5A:B2
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/QVrH02_7emWlTCBqnYL32DvOWrI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.63.128.0/19
Signature Algorithm: sha256WithRSAEncryption
75:e4:51:a9:28:ae:1d:3b:5c:84:66:79:69:7c:ae:ae:a2:6f:
65:d0:c8:72:e6:42:fb:f6:6b:70:9a:6b:8a:2b:4b:fe:ce:2a:
4d:25:7a:69:70:d3:27:5a:ed:0e:d8:a5:62:a9:38:a7:de:99:
d7:8f:92:07:8f:bb:1e:db:3e:87:f7:75:f5:4a:06:eb:68:be:
c8:e8:be:25:7a:55:fd:e7:6c:45:3a:c0:ff:ab:c8:ff:6a:88:
2a:46:3e:43:ad:1b:8a:db:7d:ae:83:50:4f:d6:81:1a:85:f4:
fe:e5:3d:d1:a7:d1:bf:35:32:53:68:2b:70:06:8f:02:84:0f:
3f:44:83:2d:44:e8:9a:e3:88:7a:e6:b4:9f:25:08:45:a0:44:
1f:43:7c:99:e4:8d:30:bc:dc:97:49:1c:0b:ea:3b:67:02:ab:
ac:4a:cc:6b:c5:f1:9d:85:6a:d7:55:a1:44:50:26:b2:3e:b6:
c7:a5:e1:f2:e4:cf:8b:b2:2d:ff:cc:3d:bf:30:d5:d4:fa:9e:
79:ba:2f:b9:38:cd:2a:df:59:47:ca:d8:67:1e:8b:7e:e8:b3:
1c:73:b1:99:dd:73:2d:e5:d9:98:03:23:f0:27:92:34:5e:c0:
b4:a2:c5:05:32:74:53:64:cd:66:b0:c4:de:66:7f:44:0b:36:
ef:2c:41:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 01:57:40 2025 by rpki-client