Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/h8HLBTfqD53PYLN4ZIUm5WJAB7Y.roa
File: h8HLBTfqD53PYLN4ZIUm5WJAB7Y.roa (raw, json)
Hash identifier: jQWJwecTumeY3geo9vwzxOnyEEdVqEbCb5H3qW+EYp0=
Subject key identifier: 87:C1:CB:05:37:EA:0F:9D:CF:60:B3:78:64:85:26:E5:62:40:07:B6
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 134F
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/h8HLBTfqD53PYLN4ZIUm5WJAB7Y.roa
Signing time: Mon 10 Feb 2025 14:09:20 +0000
ROA not before: Mon 10 Feb 2025 14:09:20 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9924
IP address blocks: 124.108.128.0/18 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4943 (0x134f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 10 14:09:20 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=87C1CB0537EA0F9DCF60B378648526E5624007B6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:78:2d:62:03:7f:27:30:d1:ab:aa:1e:a4:47:
63:03:14:f0:3d:8a:37:80:b7:aa:a9:72:06:b2:77:
8b:2b:6a:cf:03:02:ed:cc:ec:06:a2:b3:91:06:90:
49:f7:e4:e1:ed:5a:1c:5e:17:88:ba:97:39:fd:43:
8a:eb:ff:2e:05:fc:d2:7c:e2:61:22:9f:bf:df:64:
5b:18:f2:9c:36:1c:ea:7a:1d:4a:18:c0:53:d2:24:
6f:bf:ba:27:34:78:11:94:e9:41:93:84:b0:41:85:
48:50:c0:95:10:d4:a0:d4:61:16:00:0d:98:69:e7:
1a:b4:91:76:62:39:3c:13:68:ca:96:51:d0:b1:45:
e2:76:53:cb:a9:5f:85:a8:ad:17:80:9c:76:f6:ab:
78:cd:39:ca:da:e9:b2:2c:d1:fc:46:1f:25:7b:30:
e1:b5:0a:4e:da:56:b7:68:e6:c3:51:ad:bb:72:ba:
a7:3b:a6:7c:ba:cd:f0:bb:86:fe:bc:e1:2b:56:ca:
b8:09:27:41:69:60:88:aa:7f:0d:41:bd:dc:b0:7b:
98:29:c0:45:83:fb:3d:bd:4c:bb:b0:f7:4c:5f:9f:
69:ca:14:e8:c6:97:a1:9f:3d:b6:af:d4:f4:9b:be:
75:d1:3e:56:18:80:45:0d:98:24:cf:a3:00:39:61:
9c:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:C1:CB:05:37:EA:0F:9D:CF:60:B3:78:64:85:26:E5:62:40:07:B6
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/h8HLBTfqD53PYLN4ZIUm5WJAB7Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.108.128.0/18
Signature Algorithm: sha256WithRSAEncryption
98:0e:7d:b8:7a:e9:94:07:36:af:90:80:b5:39:e8:9d:f5:e2:
65:ff:a2:d4:ed:27:47:dd:95:1a:ec:77:06:67:27:53:60:81:
3d:eb:0f:e3:a7:e2:5f:03:78:70:94:55:ec:5d:55:93:ae:ce:
93:40:52:c0:30:e2:3d:a6:62:6b:23:9f:72:30:38:5a:2e:9c:
84:81:22:ff:62:0e:c7:a2:6d:25:4d:92:fa:69:eb:ac:41:64:
25:a0:69:dc:89:c0:0f:b8:b5:b1:8e:c3:ed:9d:9c:3f:78:06:
d4:af:cb:ef:ee:76:13:ab:b6:8e:d8:85:af:e0:d2:47:68:a1:
85:c8:d9:91:ce:2f:f2:2e:bd:11:9c:4a:a7:ae:57:6d:f5:2e:
ab:c2:28:c7:dd:1b:17:c9:f8:7a:39:3f:e6:8b:04:18:0e:0d:
fd:6d:2e:79:ad:b9:82:0e:f7:1e:eb:fd:55:c4:65:d1:57:df:
9c:95:c8:31:55:75:c5:f9:98:88:02:4f:98:28:18:4d:a0:0f:
c6:d1:be:72:93:3f:4f:8c:46:22:93:d8:be:89:b8:10:70:7d:
27:da:81:1c:4d:55:b3:66:8c:0b:05:f7:ad:91:bc:9a:42:d4:
c2:95:e8:55:1a:0e:bf:a8:d9:5e:40:71:4d:b6:70:ec:f7:77:
6b:f2:30:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 02:00:10 2025 by rpki-client