Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/huBnkkUlLky-HsMWZ6NsAGOeqJc.roa
File: huBnkkUlLky-HsMWZ6NsAGOeqJc.roa (raw, json)
Hash identifier: TwA4oPt39UYSYAtSQuVUEdS1K6dv2JFFTF+GOeeY1Ho=
Subject key identifier: 86:E0:67:92:45:25:2E:4C:BE:1E:C3:16:67:A3:6C:00:63:9E:A8:97
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0F9B
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/huBnkkUlLky-HsMWZ6NsAGOeqJc.roa
Signing time: Fri 01 Sep 2023 09:37:03 +0000
ROA not before: Fri 01 Sep 2023 09:37:03 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131634
IP address blocks: 124.108.149.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3995 (0xf9b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 1 09:37:03 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=86E0679245252E4CBE1EC31667A36C00639EA897
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:d9:a8:53:22:f3:f2:e0:1e:f3:44:8f:0f:f5:
22:e3:f2:01:e9:b5:82:21:c3:e3:e4:ab:3b:b7:20:
47:79:5c:81:da:12:1f:54:8c:e3:df:5c:46:b6:28:
6b:bf:be:82:4f:d8:2a:c7:98:00:6f:0b:25:e7:57:
ad:98:63:75:fc:d1:e2:b9:fb:47:b4:b5:df:e4:0d:
ec:1f:bc:33:f2:13:ba:cb:16:11:3c:eb:6e:3e:cb:
a1:1d:50:60:9a:6a:12:a5:10:9c:98:bd:af:83:fd:
e5:0b:4c:10:f6:38:10:db:b6:14:ee:18:be:4f:e8:
6c:45:f8:33:fb:14:0e:22:86:58:1b:a2:c2:ab:0c:
8b:6d:9a:7a:d2:e8:21:38:9b:02:27:df:35:03:27:
21:2e:8c:d6:f5:40:57:c0:20:ba:87:7b:a1:2f:43:
52:1b:40:f1:9c:ab:2c:74:04:38:4d:cb:f1:d8:c6:
38:77:fb:ab:8b:7f:7d:34:f6:d8:5b:77:a6:70:36:
96:be:e4:8a:99:fd:01:02:73:0f:b2:56:af:77:5c:
88:4c:4e:a8:3a:60:4b:83:13:12:7b:11:a7:b2:71:
42:9d:ba:f1:0c:6b:0a:b3:d6:96:78:33:33:38:eb:
ee:91:91:fd:ac:96:11:f6:a7:a0:37:f4:32:10:4c:
ac:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:E0:67:92:45:25:2E:4C:BE:1E:C3:16:67:A3:6C:00:63:9E:A8:97
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/huBnkkUlLky-HsMWZ6NsAGOeqJc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.108.149.0/24
Signature Algorithm: sha256WithRSAEncryption
03:3a:e0:62:ce:82:f4:6f:ab:d2:a1:a3:54:5a:a2:cf:8b:fd:
c4:42:3f:1e:f8:84:cc:16:b0:ac:f2:45:86:87:cd:fd:b8:8e:
7d:1a:19:d1:93:64:77:db:b8:de:2b:61:97:e7:aa:94:ab:8e:
84:ce:e8:66:f9:11:d5:c1:7b:fc:eb:e5:c7:a6:9a:38:34:61:
ff:7c:46:38:67:2d:01:1c:2c:85:3b:86:2d:81:7b:6b:d0:f9:
cb:7f:8b:52:f5:a3:5e:ae:15:c7:fc:70:3a:ce:b7:b5:55:3f:
6e:a1:a0:13:6f:7a:60:72:a3:b1:99:74:14:e9:87:69:e7:36:
cb:a3:1e:2a:9a:37:0b:ab:8d:57:fb:fd:0a:4a:bd:18:ad:e8:
2c:cf:3f:07:3b:18:96:91:93:61:94:d6:5c:19:92:30:13:35:
16:b2:e5:c6:cd:35:04:7b:10:e7:e7:b4:9b:9c:46:14:03:83:
e7:01:05:a8:92:7f:b7:0f:b3:95:de:75:fc:1c:d0:16:2a:82:
e0:ed:7c:09:4c:af:09:6d:87:97:01:12:76:f9:87:bc:7a:5d:
ed:c4:32:ce:88:90:2c:1b:81:89:81:38:6d:e4:1d:5d:9f:58:
a0:30:5e:7a:61:e7:60:85:fb:17:72:9d:62:d1:ce:a3:c5:3d:
1a:58:a5:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:22 2024 by rpki-client on console-fra.rpki-client.org