Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/cUsvoxGeJt5HuIucQ-7F9SRlHeM.roa
File: cUsvoxGeJt5HuIucQ-7F9SRlHeM.roa (raw, json)
Hash identifier: 0jkoTjYRnSX3BC3yczFbvsUWKvOK24/BuObOg9AfzIE=
Subject key identifier: 71:4B:2F:A3:11:9E:26:DE:47:B8:8B:9C:43:EE:C5:F5:24:65:1D:E3
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 1347
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/cUsvoxGeJt5HuIucQ-7F9SRlHeM.roa
Signing time: Mon 10 Feb 2025 14:09:18 +0000
ROA not before: Mon 10 Feb 2025 14:09:18 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9924
IP address blocks: 210.243.96.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4935 (0x1347)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 10 14:09:18 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=714B2FA3119E26DE47B88B9C43EEC5F524651DE3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:61:8a:54:bf:ea:11:2a:f2:c5:86:a4:5a:0e:
32:6e:0e:d2:34:63:9c:b0:12:5a:93:38:04:80:18:
bf:4f:b4:e6:8b:88:94:85:80:eb:68:6a:3d:b3:3c:
46:c2:99:6e:02:ce:12:12:46:ec:cc:99:09:b4:7a:
42:09:e6:3f:a1:bc:cc:a8:8f:d3:9a:1b:5f:ff:66:
d8:49:a7:fd:76:e0:22:74:f2:b7:70:b5:a0:54:82:
24:14:6d:26:df:f2:d0:5d:c4:15:50:d7:43:28:04:
e2:93:cc:4a:91:a9:d9:82:4b:1e:01:18:18:3b:5b:
90:f2:4f:db:f6:55:75:f0:70:2a:8f:3f:5c:72:27:
a2:4a:55:c4:b8:21:36:20:78:35:38:7b:59:b4:2e:
8b:07:74:f2:03:52:74:14:5e:b0:38:0e:c8:ce:f6:
cd:2e:62:69:f7:78:40:63:ea:bd:6d:43:57:c7:69:
b6:41:3a:c6:3e:42:19:ed:e1:fc:d4:43:9c:02:39:
f8:4f:31:39:36:8c:39:30:0a:b3:7d:76:37:82:69:
6f:b2:de:a1:ad:48:11:31:c2:a6:e4:5d:35:c5:f9:
0e:e1:0e:80:74:a0:e6:fc:96:27:9b:12:ae:b1:a5:
00:53:60:f9:1f:32:25:77:a0:9a:45:ec:2f:b5:ee:
5e:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:4B:2F:A3:11:9E:26:DE:47:B8:8B:9C:43:EE:C5:F5:24:65:1D:E3
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/cUsvoxGeJt5HuIucQ-7F9SRlHeM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.243.96.0/19
Signature Algorithm: sha256WithRSAEncryption
31:61:d3:d6:71:c7:ed:93:2a:e7:0d:78:a2:e5:c8:bb:8c:3f:
be:b6:15:a9:b3:92:55:f3:34:c9:d5:38:18:4e:14:3a:f1:57:
66:0d:fd:f2:b7:24:20:87:b9:a0:9f:2f:fa:19:14:44:82:0b:
bf:3e:86:50:6d:75:b7:21:5c:9a:7a:3a:6f:b3:a4:02:2c:5a:
68:79:7c:ac:18:08:b0:18:d4:e7:2c:1a:ec:2f:e8:da:89:dd:
19:5f:5e:3e:c8:8c:54:f0:1b:04:91:f2:a0:38:3d:c8:6f:7b:
3a:9f:a8:9f:d9:90:1d:40:9d:a1:6f:9f:f1:a3:84:8e:9e:27:
8e:cf:27:e0:2d:20:15:a7:f6:12:4d:2e:7e:5f:ae:c2:3c:48:
d4:5b:95:bc:7c:14:6e:35:bd:f8:c7:37:6f:94:2f:c4:cf:59:
de:37:36:bb:14:96:93:33:a8:fd:e3:c8:b4:7c:c2:db:09:48:
95:cc:05:05:fd:d9:19:70:e7:ce:37:01:96:b7:75:33:6e:6a:
ab:f4:f9:b9:e1:08:0f:56:f7:22:d4:2e:5c:7c:7d:d3:d3:6b:
10:67:60:22:0c:1d:96:36:3c:a2:a6:46:dc:09:e4:7a:9b:0d:
24:0d:75:07:86:75:f1:d1:0f:3b:74:63:53:ac:e8:0a:05:b2:
c9:45:b9:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 05:38:24 2025 by rpki-client