Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/XixsmniS10FKaK4ft188F5ytYA0.roa
File: XixsmniS10FKaK4ft188F5ytYA0.roa (raw, json)
Hash identifier: iZCCrDneryUHEUkAAsaQ0B9d/BiwV+gGS7rHqoOJtIg=
Subject key identifier: 5E:2C:6C:9A:78:92:D7:41:4A:68:AE:1F:B7:5F:3C:17:9C:AD:60:0D
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 12E9
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/XixsmniS10FKaK4ft188F5ytYA0.roa
Signing time: Mon 10 Feb 2025 14:08:53 +0000
ROA not before: Mon 10 Feb 2025 14:08:53 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9924
IP address blocks: 210.17.112.0/20 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4841 (0x12e9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 10 14:08:53 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=5E2C6C9A7892D7414A68AE1FB75F3C179CAD600D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:f3:1b:1b:f2:87:03:b9:9b:48:26:a2:5e:56:
67:ad:b7:a8:91:81:2a:b7:8f:e5:b9:57:c5:6c:bf:
38:5d:0d:9f:3b:ae:bf:e5:5d:e9:d1:bb:2b:96:51:
d2:52:3b:77:34:96:f3:6f:b0:eb:3e:2c:a6:71:9b:
d4:8b:66:64:a0:71:1a:5b:27:10:e6:15:7f:cb:f6:
45:9f:56:9a:1e:ea:4d:46:02:01:4d:0c:dd:1a:5e:
b8:5c:85:6a:14:14:24:dd:65:16:24:8f:6e:84:11:
df:00:e6:79:67:05:49:0a:d0:5f:0d:8f:e3:89:ed:
a1:39:ee:fc:0b:04:da:99:07:19:e0:82:48:ec:56:
e8:78:d5:36:14:a9:3e:76:17:af:c6:fb:2e:e6:84:
2d:85:51:17:c2:68:64:4d:2f:de:93:27:45:1c:18:
9f:31:b6:72:41:d0:4e:cc:1f:0d:91:98:50:23:4f:
3c:66:24:ff:30:ae:7e:45:52:f1:3e:86:dc:e7:75:
8c:ab:31:bd:18:04:d8:43:3d:eb:84:16:82:ab:a4:
20:01:e1:cc:39:c5:ee:73:65:66:a1:26:54:3a:6c:
e8:7d:81:98:a5:73:2d:fd:7c:60:de:54:c6:11:cd:
f5:07:db:e4:ba:12:f5:c7:1d:91:2d:20:98:da:ea:
4b:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:2C:6C:9A:78:92:D7:41:4A:68:AE:1F:B7:5F:3C:17:9C:AD:60:0D
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/XixsmniS10FKaK4ft188F5ytYA0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.17.112.0/20
Signature Algorithm: sha256WithRSAEncryption
4b:7a:35:8c:a4:3e:ad:79:fe:b1:d1:39:8b:bd:f9:1b:9e:68:
0a:95:97:c3:3f:37:f9:5c:0c:99:72:ee:6b:95:92:7b:15:2c:
37:73:2a:33:23:f6:08:5c:90:6f:3c:18:46:43:0e:9d:44:f5:
cc:44:86:ee:4a:ac:d8:45:2d:0f:e9:9c:33:f3:26:49:48:15:
dc:0a:ca:fd:44:89:0e:c6:19:9a:30:77:f6:67:50:80:e2:6a:
25:10:50:49:9a:8c:63:03:ff:58:a0:1e:c0:e0:00:74:05:34:
09:81:02:a2:15:f3:9f:7a:22:8b:59:14:7d:9b:a7:84:5e:44:
62:62:bc:f9:59:e0:6e:12:10:24:f9:bc:dc:ec:ac:98:2b:e4:
65:23:bf:c2:c9:6a:71:13:b9:5e:b0:22:1c:26:88:30:14:ae:
9f:16:2a:9f:4c:d9:63:c3:b3:88:9f:00:9b:a5:17:18:14:c5:
bb:67:bd:1e:f1:6a:a3:68:9c:c4:9e:ca:fc:14:8e:e3:dd:2d:
e6:1a:46:c8:ab:09:e5:f4:a4:40:df:c3:ce:99:8f:c9:8c:49:
c3:81:1f:fb:81:4c:6b:99:be:0b:01:ac:28:4b:02:07:78:c0:
1e:43:5d:cc:af:84:40:3d:0f:76:85:dd:93:bb:82:2c:6e:9a:
7f:23:a1:b0
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICEukwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTAyMTAx
NDA4NTNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDVFMkM2QzlBNzg5MkQ3
NDE0QTY4QUUxRkI3NUYzQzE3OUNBRDYwMEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDo8xsb8ocDuZtIJqJeVmett6iRgSq3j+W5V8VsvzhdDZ87rr/l
XenRuyuWUdJSO3c0lvNvsOs+LKZxm9SLZmSgcRpbJxDmFX/L9kWfVpoe6k1GAgFN
DN0aXrhchWoUFCTdZRYkj26EEd8A5nlnBUkK0F8Nj+OJ7aE57vwLBNqZBxnggkjs
Vuh41TYUqT52F6/G+y7mhC2FURfCaGRNL96TJ0UcGJ8xtnJB0E7MHw2RmFAjTzxm
JP8wrn5FUvE+htzndYyrMb0YBNhDPeuEFoKrpCAB4cw5xe5zZWahJlQ6bOh9gZil
cy39fGDeVMYRzfUH2+S6EvXHHZEtIJja6kvbAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUXixsmniS10FKaK4ft188F5ytYA0wHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvWGl4c21uaVMxMEZLYUs0
ZnQxODhGNXl0WUEwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
BNIRcDANBgkqhkiG9w0BAQsFAAOCAQEAS3o1jKQ+rXn+sdE5i735G55oCpWXwz83
+VwMmXLua5WSexUsN3MqMyP2CFyQbzwYRkMOnUT1zESG7kqs2EUtD+mcM/MmSUgV
3ArK/USJDsYZmjB39mdQgOJqJRBQSZqMYwP/WKAewOAAdAU0CYECohXzn3oii1kU
fZunhF5EYmK8+VngbhIQJPm83OysmCvkZSO/wslqcRO5XrAiHCaIMBSunxYqn0zZ
Y8OziJ8Am6UXGBTFu2e9HvFqo2icxJ7K/BSO490t5hpGyKsJ5fSkQN/DzpmPyYxJ
w4Ef+4FMa5m+CwGsKEsCB3jAHkNdzK+EQD0PdoXdk7uCLG6afyOhsA==
-----END CERTIFICATE-----
Generated at Mon Apr 7 02:00:11 2025 by rpki-client