Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/aPxVZ-HTKPuSMEkPfM5TFW9vRpM.roa
File: aPxVZ-HTKPuSMEkPfM5TFW9vRpM.roa (raw, json)
Hash identifier: 85QUZnXaJkCtE9QtHrRijMIoIF92/kHT6DLvvMyclFE=
Subject key identifier: 68:FC:55:67:E1:D3:28:FB:92:30:49:0F:7C:CE:53:15:6F:6F:46:93
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 1008
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/aPxVZ-HTKPuSMEkPfM5TFW9vRpM.roa
Signing time: Fri 01 Sep 2023 09:37:39 +0000
ROA not before: Fri 01 Sep 2023 09:37:39 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9924
IP address blocks: 60.199.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4104 (0x1008)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 1 09:37:39 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=68FC5567E1D328FB9230490F7CCE53156F6F4693
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:43:eb:0b:4c:d7:4c:86:ab:be:27:b8:a8:99:
8b:23:4b:e6:72:ee:d2:9d:70:3c:63:fa:3c:54:72:
59:94:05:c0:0a:e5:10:09:c5:4d:0b:89:9f:18:b2:
47:08:ad:1d:af:51:7c:f2:38:d9:07:65:3d:4c:2c:
81:d0:3f:e0:3c:7c:a0:4d:c2:7e:08:43:59:01:ab:
20:aa:a8:28:26:16:1e:fb:42:87:b8:61:9c:df:d0:
1a:2b:33:99:e7:fd:a5:2f:ec:38:37:ad:cc:0f:48:
47:70:9a:64:9e:0c:56:62:41:14:a2:01:a0:39:a7:
0c:0e:8d:58:37:bc:a8:44:cf:1c:a1:fc:4a:75:8a:
9b:f6:d3:8a:e6:6f:b0:fa:33:a6:1f:d2:fe:e9:02:
32:13:58:fa:df:36:b6:e3:4f:1c:3d:bc:43:39:e0:
11:67:e3:2a:45:ee:05:d1:74:49:3a:2f:ea:d3:ba:
02:ec:50:32:a4:04:c9:81:a1:72:e7:d0:59:09:64:
41:60:f1:ec:b6:89:51:f1:5a:98:37:20:08:1f:d9:
be:52:2b:88:61:78:51:72:e1:df:d1:e4:ec:b7:cc:
e9:eb:db:0f:0f:86:bf:bb:0e:a0:ef:ea:4e:fe:fa:
b8:3b:15:e6:cd:ea:44:2e:ea:32:92:2d:2b:57:d6:
10:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:FC:55:67:E1:D3:28:FB:92:30:49:0F:7C:CE:53:15:6F:6F:46:93
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/aPxVZ-HTKPuSMEkPfM5TFW9vRpM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.199.0.0/16
Signature Algorithm: sha256WithRSAEncryption
43:b0:a7:50:84:c7:97:8c:68:eb:73:b1:e8:b6:5a:bc:bb:b6:
ae:09:50:c4:ee:f9:2e:0d:b9:23:62:6f:13:12:4f:48:bc:a7:
59:03:bd:ef:75:44:d0:36:c7:9f:f9:12:1e:5e:d9:a4:fd:62:
2f:e5:bb:e0:c5:3a:eb:10:fb:fe:48:31:00:4c:f9:20:19:94:
7f:fe:c3:cc:19:ae:0e:df:37:5b:44:9c:10:e0:28:52:f0:1c:
b4:ab:17:9f:57:c2:7f:7e:a8:2b:7a:03:c9:b3:aa:a2:32:63:
45:5b:bf:50:ba:f0:53:78:3a:51:c0:82:00:93:c3:dd:41:5b:
f8:03:a6:3a:e5:d6:6c:ac:77:f8:d7:33:dd:1a:01:a8:ab:2e:
38:92:ce:17:91:ab:dc:2e:da:05:d2:7f:fe:71:51:e9:1a:dd:
c1:4b:14:8f:a6:96:e6:83:62:83:ed:fb:a3:b3:f9:2e:95:a0:
c4:c7:32:1a:80:7e:1c:8a:b9:5c:9c:5d:0a:ee:48:0b:1c:72:
f2:e4:c9:bf:ca:8a:e9:46:a2:27:f6:be:8f:53:91:6e:d2:70:
83:49:02:f7:1c:b1:2d:d9:38:93:30:6f:36:76:5a:56:19:e7:
74:43:b7:e1:77:9b:27:0d:84:5a:4b:53:0a:af:d5:c5:d0:82:
f9:71:d9:82
-----BEGIN CERTIFICATE-----
MIIE0zCCA7ugAwIBAgICEAgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMzA5MDEw
OTM3MzlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDY4RkM1NTY3RTFEMzI4
RkI5MjMwNDkwRjdDQ0U1MzE1NkY2RjQ2OTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCxQ+sLTNdMhqu+J7iomYsjS+Zy7tKdcDxj+jxUclmUBcAK5RAJ
xU0LiZ8YskcIrR2vUXzyONkHZT1MLIHQP+A8fKBNwn4IQ1kBqyCqqCgmFh77Qoe4
YZzf0BorM5nn/aUv7Dg3rcwPSEdwmmSeDFZiQRSiAaA5pwwOjVg3vKhEzxyh/Ep1
ipv204rmb7D6M6Yf0v7pAjITWPrfNrbjTxw9vEM54BFn4ypF7gXRdEk6L+rTugLs
UDKkBMmBoXLn0FkJZEFg8ey2iVHxWpg3IAgf2b5SK4hheFFy4d/R5Oy3zOnr2w8P
hr+7DqDv6k7++rg7FebN6kQu6jKSLStX1hDpAgMBAAGjggHvMIIB6zAdBgNVHQ4E
FgQUaPxVZ+HTKPuSMEkPfM5TFW9vRpMwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvYVB4VlotSFRLUHVTTUVr
UGZNNVRGVzl2UnBNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMD
ADzHMA0GCSqGSIb3DQEBCwUAA4IBAQBDsKdQhMeXjGjrc7Hotlq8u7auCVDE7vku
DbkjYm8TEk9IvKdZA73vdUTQNsef+RIeXtmk/WIv5bvgxTrrEPv+SDEATPkgGZR/
/sPMGa4O3zdbRJwQ4ChS8By0qxefV8J/fqgregPJs6qiMmNFW79QuvBTeDpRwIIA
k8PdQVv4A6Y65dZsrHf41zPdGgGoqy44ks4XkavcLtoF0n/+cVHpGt3BSxSPppbm
g2KD7fujs/kulaDExzIagH4cirlcnF0K7kgLHHLy5Mm/yorpRqIn9r6PU5Fu0nCD
SQL3HLEt2TiTMG82dlpWGed0Q7fhd5snDYRaS1MKr9XF0IL5cdmC
-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:15 2024 by rpki-client on console-ams.rpki-client.org