Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/UxKfac6YxTLj9VuR9mVR60nWKyU.roa
File: UxKfac6YxTLj9VuR9mVR60nWKyU.roa (raw, json)
Hash identifier: TyFC1hQE6dO/8VMHbc5ZAK9F6dnKkkfCjMUEl6sviRc=
Subject key identifier: 53:12:9F:69:CE:98:C5:32:E3:F5:5B:91:F6:65:51:EB:49:D6:2B:25
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 134B
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/UxKfac6YxTLj9VuR9mVR60nWKyU.roa
Signing time: Mon 10 Feb 2025 14:09:19 +0000
ROA not before: Mon 10 Feb 2025 14:09:19 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9924
IP address blocks: 210.208.96.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4939 (0x134b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 10 14:09:19 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=53129F69CE98C532E3F55B91F66551EB49D62B25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:3e:38:13:19:a0:cd:4e:4f:99:d2:80:ae:10:
70:54:ba:e0:4a:34:2c:c0:6c:9f:9f:3b:18:d3:0b:
60:d8:3b:c5:61:92:9a:89:38:98:1c:05:8b:8b:9e:
0a:4a:20:ce:1f:48:83:f4:e7:b9:98:75:36:ad:55:
80:8f:44:85:46:d2:1b:7e:ac:0d:92:82:11:35:b3:
0b:cc:52:05:54:c1:4c:3a:d8:2a:fb:80:27:60:44:
79:73:24:7e:17:35:12:91:77:7b:5b:89:28:81:1e:
ca:c4:e5:46:a8:7b:58:ba:49:91:64:45:13:c2:7f:
a2:b6:68:a4:14:5f:31:55:0f:53:dd:5f:27:58:81:
c8:4b:64:33:14:38:16:da:7c:98:37:5f:d8:6c:cc:
a3:6d:9f:f2:6b:2b:53:86:a9:e0:f9:b9:c5:e2:54:
a0:23:db:6d:3d:5a:f3:39:40:f9:c8:94:31:99:c8:
ec:e3:93:fa:8a:1d:f7:88:26:73:71:65:01:9e:a7:
a5:8a:1e:4d:b6:4f:cd:46:b5:cc:b4:a3:95:4f:1b:
57:ff:d5:8a:0d:8c:94:e0:69:75:73:7f:e8:60:cb:
d9:21:1b:13:23:a2:ac:30:07:fc:22:8c:7f:00:e6:
1d:a1:00:54:b6:7d:d9:f1:53:c8:32:25:43:fa:6d:
13:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:12:9F:69:CE:98:C5:32:E3:F5:5B:91:F6:65:51:EB:49:D6:2B:25
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/UxKfac6YxTLj9VuR9mVR60nWKyU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.208.96.0/19
Signature Algorithm: sha256WithRSAEncryption
6f:41:a5:f3:49:5b:5b:98:22:a6:5c:b6:2b:36:96:13:13:38:
a6:93:5c:0f:07:07:7e:40:bb:4d:81:ce:a0:16:f2:c2:b3:25:
87:58:46:9e:d8:03:2d:26:75:e1:16:ab:90:45:9e:a8:b6:c9:
44:ca:9a:6c:af:d7:ac:f0:29:a2:f1:66:3c:37:c9:1b:9a:51:
bc:63:4f:fb:a9:4d:d1:17:e3:6c:e1:89:4b:79:13:86:6a:f7:
f3:c6:74:e7:ba:ec:75:24:80:07:21:a2:31:e8:c1:3c:f7:e3:
42:f7:5e:f3:09:a2:17:ff:e7:bc:87:99:46:83:8e:d1:dd:1e:
0b:ba:1f:8c:f6:24:fa:fc:58:04:c2:31:fe:a7:33:21:0e:aa:
fa:30:3f:ee:d5:e6:8c:62:04:4d:0c:a6:d0:69:b1:25:d1:8b:
d5:f8:c9:4a:e6:c8:85:ee:24:8c:b6:db:fc:97:4e:32:de:4d:
da:c4:23:5e:b4:ab:0a:29:17:57:54:8d:e0:3b:9f:d7:9f:24:
56:3b:0b:7f:f4:b3:e5:70:c6:88:73:33:d0:71:f8:3d:ec:0e:
ee:f2:0b:47:62:9d:fb:38:d3:0a:c9:cb:26:63:19:24:6b:d6:
53:02:88:f0:30:08:29:52:dd:c9:42:9e:8e:dc:18:ad:2e:76:
04:de:ab:ef
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICE0swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTAyMTAx
NDA5MTlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDUzMTI5RjY5Q0U5OEM1
MzJFM0Y1NUI5MUY2NjU1MUVCNDlENjJCMjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC8PjgTGaDNTk+Z0oCuEHBUuuBKNCzAbJ+fOxjTC2DYO8VhkpqJ
OJgcBYuLngpKIM4fSIP057mYdTatVYCPRIVG0ht+rA2SghE1swvMUgVUwUw62Cr7
gCdgRHlzJH4XNRKRd3tbiSiBHsrE5Uaoe1i6SZFkRRPCf6K2aKQUXzFVD1PdXydY
gchLZDMUOBbafJg3X9hszKNtn/JrK1OGqeD5ucXiVKAj2209WvM5QPnIlDGZyOzj
k/qKHfeIJnNxZQGep6WKHk22T81Gtcy0o5VPG1f/1YoNjJTgaXVzf+hgy9khGxMj
oqwwB/wijH8A5h2hAFS2fdnxU8gyJUP6bRMlAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUUxKfac6YxTLj9VuR9mVR60nWKyUwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvVXhLZmFjNll4VExqOVZ1
UjltVlI2MG5XS3lVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
BdLQYDANBgkqhkiG9w0BAQsFAAOCAQEAb0Gl80lbW5giply2KzaWExM4ppNcDwcH
fkC7TYHOoBbywrMlh1hGntgDLSZ14RarkEWeqLbJRMqabK/XrPApovFmPDfJG5pR
vGNP+6lN0RfjbOGJS3kThmr388Z057rsdSSAByGiMejBPPfjQvde8wmiF//nvIeZ
RoOO0d0eC7ofjPYk+vxYBMIx/qczIQ6q+jA/7tXmjGIETQym0GmxJdGL1fjJSubI
he4kjLbb/JdOMt5N2sQjXrSrCikXV1SN4Duf158kVjsLf/Sz5XDGiHMz0HH4PewO
7vILR2Kd+zjTCsnLJmMZJGvWUwKI8DAIKVLdyUKejtwYrS52BN6r7w==
-----END CERTIFICATE-----
Generated at Mon Apr 7 01:57:38 2025 by rpki-client