Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/jDIz3SQvt6vJaM0WpDaibQ_XHjk.roa
File: jDIz3SQvt6vJaM0WpDaibQ_XHjk.roa (raw, json)
Hash identifier: F93kN/yh5iCLAZN5GwjmCzmXdFmVq1zv41yzmIJX2RI=
Subject key identifier: 8C:32:33:DD:24:2F:B7:AB:C9:68:CD:16:A4:36:A2:6D:0F:D7:1E:39
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0FAA
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/jDIz3SQvt6vJaM0WpDaibQ_XHjk.roa
Signing time: Fri 01 Sep 2023 09:37:07 +0000
ROA not before: Fri 01 Sep 2023 09:37:07 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9924
IP address blocks: 60.199.168.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4010 (0xfaa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 1 09:37:07 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=8C3233DD242FB7ABC968CD16A436A26D0FD71E39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:14:35:70:9f:7d:32:35:59:42:b5:ee:60:84:
9f:4f:34:98:2d:7b:86:73:14:2f:28:29:80:f6:47:
90:94:e5:64:0a:45:c7:38:ea:71:c3:ac:5a:b3:d8:
cb:88:c9:46:04:0f:81:7e:55:14:b6:b3:2f:21:81:
50:53:3d:95:d1:89:83:98:61:c4:76:d9:49:0e:a8:
cb:15:98:71:ab:11:73:68:ca:e7:74:b9:13:33:25:
0c:a6:54:74:2d:df:c0:be:b2:25:b4:a3:c8:6c:ee:
16:d4:31:bf:f9:77:df:d6:22:f8:ca:80:d3:14:bc:
3d:33:69:dd:46:10:7d:02:49:31:2d:2d:d1:8c:b2:
45:89:a2:b9:95:58:52:07:7c:b7:6c:dd:38:04:b4:
32:e4:ad:24:e0:2d:70:72:0b:14:ae:3c:c4:2a:10:
99:b2:55:0d:0c:87:7e:bb:b7:a2:4e:76:64:b0:61:
63:9b:9e:87:29:5f:bf:31:c8:79:af:a2:c2:bc:5e:
b5:00:6c:bb:be:28:ef:21:4d:ce:2f:7f:a9:a6:6a:
37:c8:d1:ac:10:a3:0a:4f:1a:ce:e2:f2:2c:c9:4a:
f5:62:ed:25:90:0f:af:54:d5:a2:ae:18:36:ad:d8:
44:56:d8:f4:b9:bd:fc:01:f3:96:ef:23:6f:d2:68:
57:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:32:33:DD:24:2F:B7:AB:C9:68:CD:16:A4:36:A2:6D:0F:D7:1E:39
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/jDIz3SQvt6vJaM0WpDaibQ_XHjk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.199.168.0/24
Signature Algorithm: sha256WithRSAEncryption
38:25:de:4b:3e:cd:f4:01:16:69:49:9e:8c:fe:92:fb:85:30:
68:57:bf:cf:59:b1:b8:33:fa:3a:52:eb:c9:5b:d8:67:04:d1:
b7:fe:56:14:fa:0e:c4:00:b4:80:04:2e:ce:93:00:64:28:32:
ef:9d:b1:47:ae:94:a8:72:e7:a3:67:37:98:92:76:fd:56:c1:
94:1e:93:ca:45:48:27:c1:2a:67:ea:e1:b9:93:c5:0b:67:8f:
73:40:3f:7b:27:54:55:6a:9f:fe:95:6f:da:2a:83:24:a9:ff:
92:85:d0:df:13:21:36:db:ba:b7:61:2a:f3:9e:d1:9f:26:1e:
ec:d3:5b:e6:05:e8:2e:5a:6c:1c:b4:d1:91:98:ff:25:af:b7:
a0:f2:93:47:08:7d:b0:e4:a3:a8:fa:12:50:df:74:da:0b:c4:
0a:ac:7c:9b:63:d9:95:6f:fa:b3:f6:91:c2:38:b8:88:f9:02:
19:31:9d:a0:c3:2a:93:07:8d:07:ad:b1:cd:1b:7c:f6:0d:41:
36:7d:58:a8:df:f7:11:81:df:d8:b5:76:a2:e9:3f:c8:0a:9b:
98:8b:54:b4:76:a1:62:1a:1c:b9:21:d5:db:f6:a0:6e:84:0f:
0a:a0:de:80:7e:d9:bf:9c:4e:5a:39:e0:d8:15:58:b2:46:d3:
a9:a2:cc:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:15 2024 by rpki-client on console-ams.rpki-client.org