Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/hODcvYtvEZ_MPBf10_W1QPPRifA.roa
File: hODcvYtvEZ_MPBf10_W1QPPRifA.roa (raw, json)
Hash identifier: NspNu0HWQmKBmJh/GxcoAfZHI2+FPHPCyfEgD/ffQt4=
Subject key identifier: 84:E0:DC:BD:8B:6F:11:9F:CC:3C:17:F5:D3:F5:B5:40:F3:D1:89:F0
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 10DC
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/hODcvYtvEZ_MPBf10_W1QPPRifA.roa
Signing time: Tue 25 Jun 2024 01:54:28 +0000
ROA not before: Tue 25 Jun 2024 01:54:28 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 135596
IP address blocks: 60.198.152.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4316 (0x10dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Jun 25 01:54:28 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=84E0DCBD8B6F119FCC3C17F5D3F5B540F3D189F0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:fb:79:61:c9:c6:96:1f:9f:e3:8f:6f:0f:60:
3a:50:76:cd:b9:1c:28:1d:76:10:db:87:98:ab:10:
94:e8:ba:5f:cd:5e:d7:d2:b3:b0:1d:ff:ab:11:1a:
95:94:a6:46:46:d6:e5:26:0f:20:cb:e6:21:91:c0:
ba:7f:86:dd:62:e7:6b:5b:28:ff:33:48:61:49:54:
ec:c5:88:61:b3:2c:32:44:a2:fe:43:a0:93:33:c8:
54:fb:52:82:3c:05:cf:87:32:0b:34:03:b1:b4:04:
05:fa:52:69:07:04:c0:c3:0a:9c:94:2f:bf:af:3e:
d3:be:66:d0:3b:2b:eb:c5:62:dc:75:b2:00:04:3b:
c3:20:58:af:d4:82:8d:90:27:af:61:05:ef:1e:5c:
2e:f6:ad:b9:3a:78:09:52:99:e1:0a:bd:0b:c8:22:
11:9c:a6:ef:cb:54:b0:75:7b:9a:5e:34:8c:04:68:
a6:d5:69:bf:68:78:d0:b8:d5:46:7a:58:3d:ca:ef:
3d:87:fe:51:e2:ee:06:0a:fd:a4:70:a3:24:bc:51:
7d:23:e3:ff:b2:4c:48:ba:5a:05:9e:c2:13:13:1b:
c5:05:95:b6:49:92:9c:11:78:25:4c:a8:32:88:42:
8d:83:7c:38:0c:1d:73:d9:0d:6d:cf:7e:af:e1:48:
df:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:E0:DC:BD:8B:6F:11:9F:CC:3C:17:F5:D3:F5:B5:40:F3:D1:89:F0
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/hODcvYtvEZ_MPBf10_W1QPPRifA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.198.152.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:28:ed:71:d3:83:70:16:26:ed:62:9b:80:35:f9:c4:fe:12:
93:a3:ca:78:0e:d8:14:71:ac:23:37:62:ac:a3:c2:91:cd:42:
ff:ad:13:f2:61:a5:5a:e6:d5:06:1d:f2:af:75:a8:e7:12:cd:
b4:9d:44:98:f8:9d:4e:82:c1:23:ec:14:34:ea:25:68:d0:fe:
d2:86:57:ec:ba:74:90:0c:29:45:f3:61:4b:d0:b3:78:3d:fe:
10:c0:70:a9:2f:89:21:25:5b:2e:cb:82:a4:68:64:17:cd:b6:
3d:95:8f:f0:39:d3:69:bd:2f:a8:4e:a7:84:17:ff:2a:c0:eb:
7b:e4:80:a5:c2:40:d1:ed:e2:24:d4:1c:6f:a0:c5:7e:17:51:
2f:9d:4f:e7:06:38:36:40:25:be:de:ad:c5:b1:ae:a4:1d:a8:
19:06:cd:4c:46:8c:ba:13:52:de:98:47:bd:dc:5c:a4:25:2e:
36:12:02:00:a2:c4:e5:0b:e9:55:d5:20:18:4b:b6:10:c6:a2:
32:41:a9:49:17:27:cb:37:2f:d0:cb:51:70:cd:d6:05:d9:a5:
8e:8e:cf:60:ad:4c:e5:b4:ed:55:93:19:6a:3b:ac:92:77:17:
22:ed:42:e1:a9:f1:84:9b:02:31:4b:1d:92:4e:68:c9:37:63:
02:d2:49:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:22 2024 by rpki-client on console-fra.rpki-client.org