Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/oenkWKGgsMHTCWVlfTngzR5LHC4.roa
File: oenkWKGgsMHTCWVlfTngzR5LHC4.roa (raw, json)
Hash identifier: 3faWAm924N9X/MNf+Isk4A+kJVQvX+2cMmO8LUHUoDE=
Subject key identifier: A1:E9:E4:58:A1:A0:B0:C1:D3:09:65:65:7D:39:E0:CD:1E:4B:1C:2E
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 133B
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/oenkWKGgsMHTCWVlfTngzR5LHC4.roa
Signing time: Mon 10 Feb 2025 14:09:15 +0000
ROA not before: Mon 10 Feb 2025 14:09:15 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9924
IP address blocks: 203.77.32.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4923 (0x133b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 10 14:09:15 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=A1E9E458A1A0B0C1D30965657D39E0CD1E4B1C2E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:22:13:be:56:96:8c:ef:e0:dd:15:ff:68:0b:
79:cb:13:81:e3:d2:29:09:5e:52:65:90:39:15:bb:
37:ee:8b:ea:87:c3:40:51:a6:29:b9:77:ff:09:08:
66:be:cc:64:12:93:05:a6:38:e5:0e:de:16:2e:97:
3e:81:64:dc:ad:6e:24:9c:51:e2:5d:fa:6b:e0:f7:
ed:99:09:ba:35:12:00:4b:40:e5:61:22:54:3b:d9:
ec:58:c2:da:8c:3c:0a:9b:db:be:63:d8:c6:b5:6a:
af:1d:13:4e:a1:db:13:2f:e0:79:53:9a:dc:29:3b:
8f:a7:0f:e7:2d:c5:b3:61:0c:3d:52:3a:b0:00:4a:
d8:f3:7e:98:40:10:60:6b:40:12:3a:02:64:b4:37:
83:96:14:a4:11:96:b5:64:6a:fc:f2:86:8e:4f:fb:
82:71:0b:62:85:81:48:11:b4:fd:0e:34:3a:10:c5:
40:85:87:6e:34:b1:e1:85:0e:91:9b:07:26:13:eb:
dd:63:70:27:4f:1b:55:77:ba:e3:aa:8a:b1:3d:2e:
40:4d:e8:c1:0f:dc:45:fc:82:61:8e:bc:d2:0d:53:
c8:27:0e:c8:8b:91:eb:4c:3b:43:58:a6:a4:85:04:
54:90:84:1e:1f:46:b7:5f:cc:cc:bc:92:6c:b4:86:
34:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:E9:E4:58:A1:A0:B0:C1:D3:09:65:65:7D:39:E0:CD:1E:4B:1C:2E
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/oenkWKGgsMHTCWVlfTngzR5LHC4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.77.32.0/19
Signature Algorithm: sha256WithRSAEncryption
78:7e:dd:3e:de:5e:b8:c0:0a:e1:46:ef:85:4e:c3:24:ca:e0:
bd:d6:44:19:be:6b:b2:d2:c4:22:d0:86:bc:3b:12:0c:40:de:
af:b7:30:26:f0:75:19:56:ff:48:cd:33:40:af:1d:80:e5:2b:
9b:4d:ab:69:e1:f5:ef:f0:59:20:1f:c0:f3:ff:09:dc:fe:9b:
51:a9:8b:e1:71:de:70:ef:8f:b1:97:d3:ff:e1:a4:bd:ea:5b:
75:a9:d6:21:a1:b9:48:73:bd:cb:61:f2:0c:60:59:4f:53:46:
94:21:4a:bd:d1:a6:cf:33:01:50:c2:5e:05:87:d6:52:5f:dd:
e5:f8:f6:d9:f5:16:a3:b0:a9:42:73:8a:ca:4a:67:7c:5e:0d:
d3:48:4f:68:31:fd:6a:15:5b:56:9c:cb:b2:65:72:bc:ef:61:
7e:99:28:d3:1d:21:0e:82:72:23:24:9f:c6:3d:93:19:72:55:
1a:77:b9:69:78:b0:3c:fd:f3:b9:7c:be:e7:9e:a3:ea:c0:81:
95:24:92:b8:0d:f5:36:2e:35:8c:6e:4a:c7:4e:87:c8:5f:ad:
80:34:ad:ab:ea:0b:77:5c:ae:28:4f:a3:72:7f:a4:4f:b1:be:
53:9f:0b:db:73:df:d6:06:f7:c8:6d:2d:94:3a:ae:81:7c:2c:
86:68:36:6b
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICEzswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTAyMTAx
NDA5MTVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEExRTlFNDU4QTFBMEIw
QzFEMzA5NjU2NTdEMzlFMENEMUU0QjFDMkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCkIhO+VpaM7+DdFf9oC3nLE4Hj0ikJXlJlkDkVuzfui+qHw0BR
pim5d/8JCGa+zGQSkwWmOOUO3hYulz6BZNytbiScUeJd+mvg9+2ZCbo1EgBLQOVh
IlQ72exYwtqMPAqb275j2Ma1aq8dE06h2xMv4HlTmtwpO4+nD+ctxbNhDD1SOrAA
StjzfphAEGBrQBI6AmS0N4OWFKQRlrVkavzyho5P+4JxC2KFgUgRtP0ONDoQxUCF
h240seGFDpGbByYT691jcCdPG1V3uuOqirE9LkBN6MEP3EX8gmGOvNINU8gnDsiL
ketMO0NYpqSFBFSQhB4fRrdfzMy8kmy0hjQBAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUoenkWKGgsMHTCWVlfTngzR5LHC4wHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvb2Vua1dLR2dzTUhUQ1dW
bGZUbmd6UjVMSEM0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
BctNIDANBgkqhkiG9w0BAQsFAAOCAQEAeH7dPt5euMAK4UbvhU7DJMrgvdZEGb5r
stLEItCGvDsSDEDer7cwJvB1GVb/SM0zQK8dgOUrm02raeH17/BZIB/A8/8J3P6b
UamL4XHecO+PsZfT/+GkvepbdanWIaG5SHO9y2HyDGBZT1NGlCFKvdGmzzMBUMJe
BYfWUl/d5fj22fUWo7CpQnOKykpnfF4N00hPaDH9ahVbVpzLsmVyvO9hfpko0x0h
DoJyIySfxj2TGXJVGne5aXiwPP3zuXy+556j6sCBlSSSuA31Ni41jG5Kx06HyF+t
gDStq+oLd1yuKE+jcn+kT7G+U58L23Pf1gb3yG0tlDqugXwshmg2aw==
-----END CERTIFICATE-----
Generated at Mon Apr 7 01:50:42 2025 by rpki-client