Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Ud37pb2WWBr-UYTgQf5ZaIkpigs.roa
File: Ud37pb2WWBr-UYTgQf5ZaIkpigs.roa (raw, json)
Hash identifier: KG0q8l0C02BU5biaFdHY184HXSAMkb2PBBp16Y2HGqo=
Subject key identifier: 51:DD:FB:A5:BD:96:58:1A:FE:51:84:E0:41:FE:59:68:89:29:8A:0B
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0F77
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Ud37pb2WWBr-UYTgQf5ZaIkpigs.roa
Signing time: Fri 01 Sep 2023 09:36:52 +0000
ROA not before: Fri 01 Sep 2023 09:36:52 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9924
IP address blocks: 60.199.171.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3959 (0xf77)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 1 09:36:52 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=51DDFBA5BD96581AFE5184E041FE596889298A0B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:29:8c:b7:55:d3:9a:e7:f2:2b:6b:f8:4e:ad:
52:d8:a7:cb:d6:b8:9f:c7:cb:94:9f:58:88:4c:8c:
98:52:5e:af:63:62:95:c3:31:b9:a6:72:af:2f:0c:
9a:9d:f1:a8:9b:27:01:46:0e:16:de:75:91:d3:76:
a5:e3:84:b3:fd:f4:25:db:73:d2:cb:60:e2:93:04:
9d:93:b9:13:96:f0:c5:8e:f3:14:bd:b9:50:57:00:
7a:02:7d:4e:2d:7b:7f:2c:4f:04:7f:a6:88:c5:96:
30:27:d4:68:dd:86:32:a7:fd:03:43:96:f4:58:d6:
86:f8:ee:c4:66:c1:0c:11:49:6a:ba:11:db:f4:22:
0d:5d:81:34:f2:32:7a:40:db:4b:6e:39:9c:6a:32:
c7:97:9e:6c:2b:12:cd:bf:62:e3:6f:2e:96:51:c9:
73:68:ac:c3:92:18:15:08:c8:6d:cd:95:4f:32:62:
2b:4a:d5:73:7e:d9:b1:b8:8f:c3:66:2a:82:1e:5b:
80:67:d9:d2:c8:9d:5b:d2:91:3b:c5:a0:64:4f:41:
34:51:dd:b1:f6:75:3d:9c:af:5e:65:85:ff:48:2b:
59:e7:47:27:f5:a0:bc:36:81:19:da:5f:1d:21:9d:
f1:cd:65:3b:a5:4b:7f:f2:6e:cb:b1:3a:e7:e8:5d:
40:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:DD:FB:A5:BD:96:58:1A:FE:51:84:E0:41:FE:59:68:89:29:8A:0B
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Ud37pb2WWBr-UYTgQf5ZaIkpigs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.199.171.0/24
Signature Algorithm: sha256WithRSAEncryption
72:9c:8c:da:48:08:bf:9b:c1:e5:a2:23:8b:07:da:99:fb:16:
1f:21:75:3e:67:37:58:83:31:fb:f8:23:8c:35:ef:5f:d5:3c:
0f:9f:01:82:b0:31:53:e2:1f:58:d1:22:c0:0a:f1:4a:56:3c:
b1:0a:f4:e8:ab:35:23:1c:6f:7e:16:1c:af:a6:5b:d7:d4:23:
7c:ee:6b:ac:4b:83:63:aa:57:9c:b9:38:8c:f8:70:2b:99:f0:
6b:15:aa:10:3f:fb:46:1a:fc:b3:df:42:1a:b0:0c:ac:2d:15:
96:f4:5e:35:85:4c:e1:14:00:d1:4b:94:42:f9:e0:74:69:0e:
6b:ae:2d:c2:7c:51:cf:4b:ea:b5:1b:66:af:3f:af:45:25:10:
d2:ab:c9:f3:7c:47:44:f4:2f:c1:b9:e8:f7:5a:ca:17:0a:77:
c8:17:64:02:b2:91:69:26:36:0a:60:3a:d9:15:b5:60:6e:8a:
7c:69:3f:b6:be:a1:85:9a:1f:f6:51:f8:7b:5a:04:41:89:03:
c4:cc:cf:94:eb:ab:3f:c8:57:6f:67:d0:66:34:ad:19:51:17:
91:51:9b:cd:ae:9c:ef:09:eb:4e:46:ab:51:0f:31:af:b3:75:
1c:6f:61:89:b4:e5:a2:50:ce:93:17:79:d9:9a:1f:b3:25:0f:
16:e0:dd:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:15 2024 by rpki-client on console-ams.rpki-client.org