Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/cabCXn_L6clirTmamflz3m5B2-w.roa
File: cabCXn_L6clirTmamflz3m5B2-w.roa (raw, json)
Hash identifier: IdKRp4Tw9Yj9qt4O+fRWDr/TAhpAB9rliX97updg/2E=
Subject key identifier: 71:A6:C2:5E:7F:CB:E9:C9:62:AD:39:9A:99:F9:73:DE:6E:41:DB:EC
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 100D
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/cabCXn_L6clirTmamflz3m5B2-w.roa
Signing time: Fri 01 Sep 2023 09:37:40 +0000
ROA not before: Fri 01 Sep 2023 09:37:40 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9924
IP address blocks: 203.105.224.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4109 (0x100d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 1 09:37:40 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=71A6C25E7FCBE9C962AD399A99F973DE6E41DBEC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:42:31:df:af:bd:ac:34:45:2b:88:d0:70:c7:
e4:12:0a:0d:a5:3f:06:53:e6:24:ec:db:4b:ef:3a:
2a:4c:88:b0:e0:53:66:47:c3:a3:77:a7:8f:3e:77:
94:d6:01:b9:88:96:61:47:04:2f:0e:91:e0:0d:4e:
70:e1:ec:db:18:d0:d1:c4:cc:0e:b5:d7:ad:94:c8:
82:21:fe:8d:a5:b3:3a:bb:76:f4:2b:e7:ea:20:ef:
f7:4e:c4:26:37:ed:68:6a:2e:1a:92:62:99:f6:80:
a5:80:1c:11:0c:28:57:64:34:27:8b:65:03:91:f5:
14:a8:2b:d7:d4:44:57:43:9c:23:43:19:dc:08:8f:
96:7e:9b:fe:52:0d:c1:d2:4b:7c:c5:5b:df:a8:05:
c4:19:53:5b:b6:60:57:34:a5:c9:7e:3f:c0:81:3a:
25:1a:e7:54:55:76:fb:51:53:e6:a5:e8:37:38:0e:
28:b1:67:53:c4:11:f1:2f:08:7f:85:4a:65:ab:e9:
7e:1d:26:0a:bb:45:7d:5a:27:f8:34:ad:7e:69:34:
85:dc:81:c4:54:c7:e5:5a:e0:05:07:0d:c9:8c:1a:
49:95:98:b4:60:0e:3c:fd:c7:67:40:9b:c4:11:f3:
84:38:91:79:e0:b9:25:67:0a:0e:92:f7:81:3c:65:
92:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:A6:C2:5E:7F:CB:E9:C9:62:AD:39:9A:99:F9:73:DE:6E:41:DB:EC
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/cabCXn_L6clirTmamflz3m5B2-w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.105.224.0/19
Signature Algorithm: sha256WithRSAEncryption
48:c3:94:5b:bc:7a:79:32:d7:49:71:8d:42:14:33:02:0c:8f:
45:25:c4:da:f9:eb:08:d0:1b:6b:10:93:fc:b9:3b:00:55:23:
44:eb:c9:81:95:7b:ae:8b:7f:2a:5a:87:c7:50:44:c8:77:e4:
9e:61:72:94:01:d4:54:a2:78:07:f0:2c:19:08:6b:9f:35:7c:
d9:65:8d:f2:79:43:df:a5:97:43:9c:75:d7:c6:3f:45:3a:d4:
75:55:ce:95:6d:41:32:d9:86:35:72:c4:0b:5d:db:dc:71:8b:
d9:00:08:17:f8:9b:9f:e5:b8:f2:06:af:19:34:01:f8:76:47:
f2:b8:fb:ac:2f:df:01:0d:e5:5e:70:ea:8e:4e:35:88:c1:45:
6b:99:a7:4f:02:37:af:c6:53:cc:91:82:97:ec:b2:ba:56:3b:
c2:50:36:69:b4:bb:2d:f0:8e:15:dc:7b:50:97:eb:0a:c4:1c:
18:9f:7e:5b:8c:90:e7:64:f1:05:15:4f:e6:53:4c:9e:3d:78:
0d:4a:d5:0f:51:ec:db:bd:cf:3d:f4:36:1c:2b:27:12:4e:a2:
3c:c9:48:33:c4:1c:b8:9d:88:7b:17:72:aa:12:bc:16:4d:38:
c2:86:bc:2a:e6:c9:52:7b:56:ae:44:5f:35:6d:e2:4b:02:7d:
71:71:55:18
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICEA0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMzA5MDEw
OTM3NDBaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDcxQTZDMjVFN0ZDQkU5
Qzk2MkFEMzk5QTk5Rjk3M0RFNkU0MURCRUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCpQjHfr72sNEUriNBwx+QSCg2lPwZT5iTs20vvOipMiLDgU2ZH
w6N3p48+d5TWAbmIlmFHBC8OkeANTnDh7NsY0NHEzA61162UyIIh/o2lszq7dvQr
5+og7/dOxCY37WhqLhqSYpn2gKWAHBEMKFdkNCeLZQOR9RSoK9fURFdDnCNDGdwI
j5Z+m/5SDcHSS3zFW9+oBcQZU1u2YFc0pcl+P8CBOiUa51RVdvtRU+al6Dc4Diix
Z1PEEfEvCH+FSmWr6X4dJgq7RX1aJ/g0rX5pNIXcgcRUx+Va4AUHDcmMGkmVmLRg
Djz9x2dAm8QR84Q4kXnguSVnCg6S94E8ZZKXAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUcabCXn/L6clirTmamflz3m5B2+wwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvY2FiQ1huX0w2Y2xpclRt
YW1mbHozbTVCMi13LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
Bctp4DANBgkqhkiG9w0BAQsFAAOCAQEASMOUW7x6eTLXSXGNQhQzAgyPRSXE2vnr
CNAbaxCT/Lk7AFUjROvJgZV7rot/KlqHx1BEyHfknmFylAHUVKJ4B/AsGQhrnzV8
2WWN8nlD36WXQ5x118Y/RTrUdVXOlW1BMtmGNXLEC13b3HGL2QAIF/ibn+W48gav
GTQB+HZH8rj7rC/fAQ3lXnDqjk41iMFFa5mnTwI3r8ZTzJGCl+yyulY7wlA2abS7
LfCOFdx7UJfrCsQcGJ9+W4yQ52TxBRVP5lNMnj14DUrVD1Hs273PPfQ2HCsnEk6i
PMlIM8QcuJ2IexdyqhK8Fk04woa8KubJUntWrkRfNW3iSwJ9cXFVGA==
-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:22 2024 by rpki-client on console-fra.rpki-client.org