Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/TkDt3qBWCRXbd6VfHFGtnn0e554.roa
File: TkDt3qBWCRXbd6VfHFGtnn0e554.roa (raw, json)
Hash identifier: SlOHMkCF6d8N0zVZPXW1suHDGDtRYgF7mysWSDcXQQQ=
Subject key identifier: 4E:40:ED:DE:A0:56:09:15:DB:77:A5:5F:1C:51:AD:9E:7D:1E:E7:9E
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 1242
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/TkDt3qBWCRXbd6VfHFGtnn0e554.roa
Signing time: Mon 26 Aug 2024 05:24:50 +0000
ROA not before: Mon 26 Aug 2024 05:24:50 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9924
IP address blocks: 210.17.0.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4674 (0x1242)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Aug 26 05:24:50 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=4E40EDDEA0560915DB77A55F1C51AD9E7D1EE79E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:83:ef:f4:4d:e3:fe:f4:98:57:f9:de:94:4e:
b5:c8:51:df:11:d2:c3:ba:73:b9:7e:12:e0:ae:2f:
d2:9f:8b:5d:35:0c:6a:50:8c:22:9c:5d:2f:ce:7a:
e1:8a:9e:2a:86:cb:4d:d2:bd:4a:8b:ef:7b:49:0d:
a6:d0:24:be:0d:a4:5d:85:3a:8d:45:b1:78:13:f7:
d9:11:33:63:68:3f:a4:e7:8d:7e:a9:81:eb:7e:1c:
97:20:84:4a:b4:8c:01:61:38:92:51:4f:4f:e7:54:
91:7b:57:16:bc:12:7f:05:43:fa:bb:84:6e:c7:61:
54:ab:a4:ae:ad:36:b2:37:19:f7:45:4c:da:eb:8c:
7e:09:fd:44:26:a7:c9:86:9c:85:de:ef:28:6a:55:
dd:ee:53:2f:df:d6:45:33:09:fd:16:fe:7f:c4:b0:
65:f4:76:68:eb:c1:e9:5c:31:1f:cd:73:8f:0a:2a:
ec:2d:47:84:2d:a6:73:c3:7b:c2:0a:37:d9:e4:43:
b2:1b:3c:c2:4f:71:aa:2b:e1:73:74:ad:ec:7e:ea:
2e:15:7b:c1:35:14:d7:88:c1:ac:e1:3a:1c:19:ab:
c1:50:db:3c:90:6f:3f:cd:ed:ff:9b:84:01:05:92:
2f:d5:a1:ee:ca:d9:e6:2d:98:c5:a7:f3:ca:7d:3f:
04:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:40:ED:DE:A0:56:09:15:DB:77:A5:5F:1C:51:AD:9E:7D:1E:E7:9E
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/TkDt3qBWCRXbd6VfHFGtnn0e554.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.17.0.0/17
Signature Algorithm: sha256WithRSAEncryption
2f:63:fe:92:2a:31:ed:1c:a5:e7:ef:33:f9:26:7a:8a:83:2f:
8e:72:91:a2:1d:50:5a:7a:60:3c:cd:ce:0c:0a:cf:5f:b9:72:
d3:d8:a0:9f:2e:0d:51:cd:b5:73:25:db:04:33:21:13:2c:6d:
02:d2:c4:ed:f5:b1:1b:58:eb:10:fa:ad:31:4e:b4:b0:36:b4:
5a:18:7b:91:c1:cd:7f:3b:7c:80:13:91:6e:e1:ca:46:ed:4f:
80:63:35:1a:97:25:ae:b1:d6:2d:6b:40:24:d5:42:d4:18:34:
da:18:28:36:12:3e:fe:ce:79:23:91:d3:2c:4a:a2:1d:4d:c3:
7d:14:05:10:2b:b6:e9:e6:d4:33:44:4f:31:0b:bc:89:61:6d:
33:f7:22:79:00:de:a3:3f:02:18:25:40:68:f3:a5:5c:df:1b:
c3:ca:02:44:3b:f2:ed:b8:61:04:86:88:8c:08:d3:79:27:29:
e6:1b:d8:b0:9f:bc:25:81:80:90:6f:a1:59:9a:94:0c:b0:72:
ef:79:b4:ef:d1:26:9b:cb:eb:ce:84:b0:0d:52:51:c2:c1:14:
7c:a8:db:eb:5f:92:f4:df:bd:73:e1:c6:11:0c:80:50:e2:fc:
36:35:6a:e0:98:9d:cf:12:77:92:90:af:16:88:b2:be:c5:84:
8a:6d:3f:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 12:13:19 2025 by rpki-client