Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/gqKtKmT_JQv6Qg5Bdlu4ci9ZfjI.roa
File: gqKtKmT_JQv6Qg5Bdlu4ci9ZfjI.roa (raw, json)
Hash identifier: t6PExUUaw++q/JES3XX2659dg4CJGPH15RAt0+47vM8=
Subject key identifier: 82:A2:AD:2A:64:FF:25:0B:FA:42:0E:41:76:5B:B8:72:2F:59:7E:32
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 12B2
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/gqKtKmT_JQv6Qg5Bdlu4ci9ZfjI.roa
Signing time: Thu 12 Dec 2024 03:09:56 +0000
ROA not before: Thu 12 Dec 2024 03:09:56 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131602
IP address blocks: 210.62.48.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4786 (0x12b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Dec 12 03:09:56 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=82A2AD2A64FF250BFA420E41765BB8722F597E32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:21:d5:3b:35:13:31:de:fa:e1:7b:03:a9:74:
00:a9:78:c5:45:98:90:8f:ce:bf:41:85:8a:4f:a3:
48:5b:1a:e3:7c:68:87:5a:d4:69:bc:73:cd:00:65:
e9:54:3c:0c:bd:c5:51:b7:c9:a0:c5:e6:d1:48:66:
6a:e1:e6:85:0f:b5:16:d7:d6:b0:f3:7f:15:7b:ba:
1c:43:98:a9:4e:49:91:33:82:af:d9:a5:c2:4c:ba:
98:02:0f:7d:25:bf:b1:6b:cb:74:03:c1:84:96:03:
04:d1:58:f7:a1:7e:01:09:5e:c6:3b:cf:bb:54:ee:
32:63:92:e7:8e:96:13:db:a4:94:51:7f:e2:71:fc:
e1:86:00:88:15:65:66:88:05:1c:21:85:1d:8b:b3:
ef:ed:14:06:8f:4c:f7:05:11:3b:13:85:f2:ca:27:
94:6f:d5:54:c9:bf:a7:7a:01:b4:4a:87:42:a5:db:
c8:f9:81:7c:a1:6c:b6:aa:bc:ca:fa:c7:7c:c7:59:
d4:52:38:99:17:4c:47:66:90:36:f6:b6:7a:87:fd:
23:7d:e0:03:b1:ca:b8:61:30:c6:91:af:8c:6f:f8:
52:ca:9d:95:63:80:10:f6:2a:e8:e0:1c:b6:16:f6:
04:f2:9f:ed:9d:1c:10:01:8d:2e:a6:10:ea:56:9a:
74:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:A2:AD:2A:64:FF:25:0B:FA:42:0E:41:76:5B:B8:72:2F:59:7E:32
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/gqKtKmT_JQv6Qg5Bdlu4ci9ZfjI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.62.48.0/23
Signature Algorithm: sha256WithRSAEncryption
40:0a:f3:d0:0b:07:67:40:08:8e:b5:17:b9:7e:51:fa:9e:85:
60:7b:b5:ed:5c:d3:b3:99:2e:91:1f:4a:27:cd:b6:d1:17:7d:
07:06:ff:d4:37:e6:54:74:7d:10:9a:06:68:e6:9f:41:7b:79:
0c:c6:4c:fd:ad:c1:4d:ba:e5:2f:65:56:c4:5a:09:c1:d1:5e:
b3:6d:b2:2b:dc:47:ad:00:0f:82:1a:56:40:33:bc:93:e1:2c:
d6:0b:3b:bb:37:c8:23:e2:c2:1d:b4:2a:87:a7:8c:88:88:08:
5f:56:f2:f0:6a:5e:b4:ae:84:3d:37:64:29:39:f3:e5:5a:17:
fc:79:cd:5d:b0:09:78:2a:f8:d8:a2:38:32:61:b9:be:a6:1b:
21:a9:4b:c4:30:ea:12:24:9a:35:62:b8:af:04:5c:85:0d:7a:
3e:92:2f:7b:8f:04:6b:52:a3:61:a4:d2:44:9b:cc:ec:af:f2:
40:37:6a:39:62:b0:0f:fb:8b:03:5f:04:b9:5e:b9:31:4a:e0:
77:d4:5e:85:45:2e:c7:b9:71:6d:53:d8:cf:c6:4a:fd:54:59:
f8:85:24:fa:7f:8b:bc:6e:be:8d:63:eb:f0:1d:43:6e:18:2b:
93:f4:0f:c1:0d:a5:c7:2a:a3:b7:df:46:c2:bf:6f:4c:74:69:
01:ea:6f:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 12:25:25 2025 by rpki-client