Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/bXetWT8-vGIO4glaX4QgmTXjg50.roa
File: bXetWT8-vGIO4glaX4QgmTXjg50.roa (raw, json)
Hash identifier: sOXUqqC47o22nrOCqfAwm0adfqBhy9E9gSw+5kO2twE=
Subject key identifier: 6D:77:AD:59:3F:3E:BC:62:0E:E2:09:5A:5F:84:20:99:35:E3:83:9D
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0FA1
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/bXetWT8-vGIO4glaX4QgmTXjg50.roa
Signing time: Fri 01 Sep 2023 09:37:04 +0000
ROA not before: Fri 01 Sep 2023 09:37:04 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131611
IP address blocks: 124.9.64.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4001 (0xfa1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 1 09:37:04 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=6D77AD593F3EBC620EE2095A5F84209935E3839D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:60:40:0d:f9:45:ed:ab:19:e4:16:4e:ab:38:
46:0b:dc:2a:fc:e7:48:08:17:78:88:fc:e1:29:e2:
f4:bd:8e:84:83:1f:39:5c:7c:06:92:e9:62:9e:94:
ee:e9:f6:8e:b8:9b:41:e2:98:61:ef:bb:33:77:57:
ca:f1:82:78:f1:fb:76:2d:2e:38:87:1d:eb:5a:75:
59:6f:9c:68:fc:af:7b:bf:fa:fb:b6:e4:79:24:25:
3f:ad:0f:24:14:0f:c6:26:77:02:ba:f6:be:06:81:
f8:3a:e3:f3:33:87:21:68:20:d5:1f:a3:c6:ba:70:
38:cc:92:98:d0:18:49:0a:11:87:06:68:4a:20:14:
d5:8d:cd:d1:19:a9:d9:17:7e:c0:9b:1d:47:9e:c5:
c1:09:a2:92:1a:93:59:43:d7:dd:5f:a7:09:13:38:
09:60:a1:a0:39:2b:4a:fe:ae:a3:a3:84:30:63:12:
12:83:e4:1f:e3:13:96:dc:a8:7a:00:23:8d:14:4c:
64:35:69:97:40:c6:0d:50:2a:d3:bb:01:3a:91:ec:
10:66:60:41:ed:7c:88:2c:13:3a:cd:dd:b6:cf:bb:
0c:99:37:63:a7:10:ae:d3:22:78:32:2c:41:35:b4:
c3:db:74:4d:bd:7b:43:ce:1c:70:a7:c0:f7:25:e3:
cd:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:77:AD:59:3F:3E:BC:62:0E:E2:09:5A:5F:84:20:99:35:E3:83:9D
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/bXetWT8-vGIO4glaX4QgmTXjg50.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.9.64.0/19
Signature Algorithm: sha256WithRSAEncryption
86:02:c6:6b:5a:03:ed:ef:0d:5a:d3:85:6a:32:27:04:47:8f:
20:09:31:13:78:6f:f0:ee:23:44:bd:d4:6d:f8:17:54:a7:e4:
4e:eb:d9:89:e0:7e:6b:fc:39:49:0f:7c:3e:b7:b4:19:29:77:
cf:98:89:28:08:d0:ba:82:75:d4:01:63:b5:28:f7:53:76:56:
f8:88:e3:8f:40:20:f3:24:55:31:1c:3d:a8:1d:e0:31:80:df:
83:25:52:8f:82:f9:02:63:72:f4:b9:4c:17:9d:aa:9e:7d:4c:
d4:f6:86:ca:12:70:f3:00:c1:3b:08:52:e5:e4:9f:c2:1d:1a:
05:9d:f5:c6:81:41:63:9e:52:e4:c3:f0:90:2f:ce:d9:ff:65:
be:29:dc:e9:4c:4f:0f:1e:57:e3:fb:ed:a2:aa:8b:e2:f6:23:
6b:dc:f2:2d:30:ba:96:f7:70:6b:a6:70:6a:28:ef:e6:2e:3c:
af:11:56:6e:16:11:d1:d2:39:09:75:a4:12:33:18:fd:54:f8:
b2:fb:43:74:34:d7:2e:60:64:12:a9:ca:99:e5:dc:d8:39:59:
6b:92:9e:28:eb:53:58:8c:88:02:ea:09:cd:24:2e:41:1f:f1:
cb:20:0a:df:62:e5:91:89:67:56:fb:74:f4:2c:b1:78:59:10:
53:75:54:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:15 2024 by rpki-client on console-ams.rpki-client.org