Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/kLbatW5GrO72qyD3TeNsXQyYENE.roa
File: kLbatW5GrO72qyD3TeNsXQyYENE.roa (raw, json)
Hash identifier: iwzhPAyNL7MWzIQNIzvS2G1gB5J/wH9ADiOuyce95ME=
Subject key identifier: 90:B6:DA:B5:6E:46:AC:EE:F6:AB:20:F7:4D:E3:6C:5D:0C:98:10:D1
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0F84
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/kLbatW5GrO72qyD3TeNsXQyYENE.roa
Signing time: Fri 01 Sep 2023 09:36:57 +0000
ROA not before: Fri 01 Sep 2023 09:36:57 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24164
IP address blocks: 203.77.56.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3972 (0xf84)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 1 09:36:57 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=90B6DAB56E46ACEEF6AB20F74DE36C5D0C9810D1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:53:a6:38:b2:f6:43:b6:74:ec:51:a1:53:82:
4e:dc:2a:56:94:16:6d:91:01:b6:f9:ca:90:9e:2a:
1a:56:af:88:8e:06:eb:b5:6a:85:f4:05:96:c4:af:
56:84:2a:18:43:d8:07:d4:45:47:db:f5:fa:8b:17:
c5:66:8d:cc:20:fb:c3:88:4c:eb:11:9b:8b:4f:20:
33:33:6a:49:36:b2:a3:83:2e:05:94:b4:76:ec:73:
2a:f4:fa:12:50:81:0b:40:26:4e:f1:34:e1:78:c9:
14:9f:85:04:b1:ed:ed:10:41:f0:87:32:d0:98:b0:
bc:7a:44:fc:58:ed:6b:07:84:90:c5:86:bd:db:2e:
11:c8:59:cf:89:05:2a:65:60:b0:64:29:77:f7:7e:
d1:94:ed:53:3c:a2:19:48:71:2a:71:cf:40:5f:ed:
84:3a:b6:28:64:56:9c:3e:6d:16:82:e9:f9:61:96:
9d:6e:4e:93:d0:dc:e6:a4:1a:07:39:89:05:0f:a3:
8f:d4:0d:1c:3f:e0:03:2e:34:70:7f:28:43:b2:c9:
a3:27:9c:1a:48:d5:41:e6:76:11:58:26:bf:7f:24:
7a:99:e3:46:b5:e7:7c:ca:3c:19:81:64:36:ab:a3:
77:a5:6e:a1:6a:25:e0:64:ae:5f:dc:0a:78:f8:62:
58:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:B6:DA:B5:6E:46:AC:EE:F6:AB:20:F7:4D:E3:6C:5D:0C:98:10:D1
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/kLbatW5GrO72qyD3TeNsXQyYENE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.77.56.0/21
Signature Algorithm: sha256WithRSAEncryption
71:85:5e:4f:f1:8e:ef:53:b2:cc:78:22:28:cb:99:d6:b6:1a:
b3:97:a8:05:33:b9:4a:9b:b8:4b:f2:a7:53:fa:0e:8d:11:4b:
20:02:19:0e:cb:d1:fe:e2:61:b6:be:86:f6:64:e0:9e:fe:64:
88:40:df:ad:17:09:9b:75:24:95:71:f6:f7:2f:a5:7c:d9:d6:
90:fd:d7:c0:6e:4c:04:3f:db:bc:26:bc:88:2a:5c:4c:57:ef:
1f:74:1f:af:6e:c6:d5:8b:09:30:78:f0:49:70:be:22:39:33:
6c:3c:2c:fb:67:e1:28:c3:da:2b:23:64:bf:bc:61:5e:53:ef:
4c:16:30:0f:e8:5a:1d:4f:af:b0:2f:c4:63:08:5a:60:d1:b3:
d2:91:e5:5d:92:d1:72:c9:eb:1c:d3:bd:7f:71:4a:88:82:20:
53:48:09:4e:d5:ab:c2:87:af:42:37:2c:08:d8:8e:5d:67:d0:
b9:5a:08:98:c8:f3:8a:c1:db:40:86:e3:b5:5c:e7:58:f0:f8:
69:67:dc:d2:42:39:e7:09:e6:d5:31:47:28:19:85:11:6f:2d:
54:49:6d:de:30:08:f8:ff:da:fd:22:d1:c2:c9:e2:d1:82:64:
88:9a:3e:8c:db:4f:f7:62:7b:42:c3:e8:50:aa:09:27:0b:9b:
8f:92:8d:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:22 2024 by rpki-client on console-fra.rpki-client.org