Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/X1sFErl3L5ZqJy3KhT5feb89vsk.roa
File: X1sFErl3L5ZqJy3KhT5feb89vsk.roa (raw, json)
Hash identifier: Rw+uK4A8Mx8RjAOgrj0cjXn07Jn603aRi6vashCfuOs=
Subject key identifier: 5F:5B:05:12:B9:77:2F:96:6A:27:2D:CA:85:3E:5F:79:BF:3D:BE:C9
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0F6C
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/X1sFErl3L5ZqJy3KhT5feb89vsk.roa
Signing time: Fri 01 Sep 2023 09:36:48 +0000
ROA not before: Fri 01 Sep 2023 09:36:48 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9924
IP address blocks: 211.79.0.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3948 (0xf6c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 1 09:36:48 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=5F5B0512B9772F966A272DCA853E5F79BF3DBEC9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:89:55:78:d4:42:2c:da:b1:55:a6:25:1c:bd:
46:d6:d4:d3:9d:90:4c:fa:75:5e:2f:18:6c:ff:6e:
f2:23:4a:c1:a5:60:ac:6d:77:46:15:7c:0f:95:d2:
ba:8e:ba:5f:6e:60:89:ce:e6:70:a2:ff:15:84:f0:
d8:21:a8:48:30:ee:7e:46:87:2e:78:b9:2a:fa:4b:
a1:13:5d:ea:cb:bd:2a:ca:88:75:e0:36:57:5e:07:
34:9c:8e:02:81:85:94:3b:77:6b:69:6e:56:3b:3d:
71:cf:ad:7d:75:23:2b:da:01:fc:f7:4b:b9:d5:fd:
55:17:15:3e:10:10:fe:a0:11:fe:3e:7a:cd:13:10:
3f:01:30:4e:2b:68:c4:05:f0:4c:5d:65:8d:e7:0c:
06:ec:17:c0:71:b1:52:95:2e:eb:ab:39:a1:2c:f8:
4d:f7:27:c4:59:91:f5:04:59:ec:3e:28:35:06:37:
5f:c1:be:30:70:39:85:eb:b4:1f:a0:75:a2:39:07:
81:51:1b:e9:ee:46:89:45:1e:6f:5d:60:15:10:a2:
80:ea:1e:31:07:14:b6:f3:1b:1b:79:ae:d7:37:f7:
91:a0:9f:61:78:b6:9d:27:83:1f:2f:f2:c8:e0:19:
b9:0b:b2:de:03:a1:b9:c1:5b:c4:e4:93:25:bf:26:
e1:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:5B:05:12:B9:77:2F:96:6A:27:2D:CA:85:3E:5F:79:BF:3D:BE:C9
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/X1sFErl3L5ZqJy3KhT5feb89vsk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.79.0.0/19
Signature Algorithm: sha256WithRSAEncryption
26:31:64:20:4f:9f:f7:12:4b:23:5b:49:18:ba:14:a6:86:14:
b9:94:80:a0:4d:f5:24:43:2b:83:01:d5:0a:6a:95:5f:85:41:
65:7f:ba:fb:8a:59:af:65:79:53:65:ae:20:0c:0a:de:5b:62:
a2:f3:d1:71:39:d6:9a:10:ed:6c:57:58:47:5f:63:81:8d:ef:
15:aa:ea:5c:07:c9:2f:f9:f3:2f:61:3b:a0:03:f7:2a:8a:de:
bd:67:0c:5a:f6:8a:ba:27:9c:e5:bf:af:64:03:3f:ba:46:f4:
96:0a:35:40:3b:7c:c7:6d:9b:92:be:dc:fe:17:e3:11:b8:49:
4f:5b:cc:ca:62:f4:ae:da:48:3f:b0:25:0b:a9:4d:f9:08:d1:
5b:10:ee:c3:72:79:e2:f5:f3:fd:58:1e:d2:53:ab:09:1c:ff:
a0:02:ff:cd:97:c2:c6:6e:8d:c3:86:01:2f:41:42:69:e5:af:
57:35:15:78:a5:06:5f:92:c0:2f:c1:9d:9a:46:17:74:f9:a7:
be:cd:54:ea:34:89:f3:df:e2:d3:8a:f0:8f:04:73:87:73:27:
09:0a:04:6d:dd:85:e1:2e:4c:12:82:46:89:c5:42:bb:ad:e2:
1c:81:1b:02:df:1a:06:b6:65:85:91:c9:64:8c:11:06:93:8a:
86:a6:51:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:15 2024 by rpki-client on console-ams.rpki-client.org