Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/ot3fR9wSEC01BgEMHLvORkYU0TM.roa
File: ot3fR9wSEC01BgEMHLvORkYU0TM.roa (raw, json)
Hash identifier: qL4VnQf8+FTK4f5iZfgtzEMPRxOFcEvLjYZ0Qe5y8uo=
Subject key identifier: A2:DD:DF:47:DC:12:10:2D:35:06:01:0C:1C:BB:CE:46:46:14:D1:33
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0FA3
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/ot3fR9wSEC01BgEMHLvORkYU0TM.roa
Signing time: Fri 01 Sep 2023 09:37:05 +0000
ROA not before: Fri 01 Sep 2023 09:37:05 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24164
IP address blocks: 203.77.53.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4003 (0xfa3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 1 09:37:05 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=A2DDDF47DC12102D3506010C1CBBCE464614D133
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:a3:58:f5:48:0e:d5:54:9e:b1:c0:ae:1b:ff:
71:9e:db:96:93:c6:7d:45:e4:5f:fe:55:5e:c5:af:
2d:19:b1:18:74:94:f1:df:c7:23:1d:03:d2:c3:01:
33:b3:a1:12:2f:cd:e9:22:93:30:d5:ec:41:99:d6:
47:48:31:1c:87:e6:6a:90:e4:17:e2:2e:ad:67:f7:
5f:63:05:7a:d6:72:27:c0:e2:92:b6:64:96:f0:36:
e0:9b:88:f3:46:76:f1:9b:05:c0:6b:96:b4:fb:a1:
80:48:29:54:70:16:24:11:fb:36:b7:42:55:29:99:
5e:6d:a2:27:e8:35:43:b9:b2:d6:db:32:de:45:68:
e4:7f:36:79:ae:29:fd:c6:bb:42:10:f4:5a:70:9f:
72:95:85:9e:d4:b5:c8:1e:25:b5:45:f0:b6:a9:be:
04:76:d4:d3:c3:a4:f9:ad:c0:c7:8a:1d:ae:de:3d:
57:eb:cb:79:d2:9e:3e:e6:aa:14:50:c0:df:ed:d6:
c8:74:26:5c:cc:1a:c3:92:3a:84:6d:5a:a0:b0:31:
e4:54:76:b5:98:3d:a2:c2:ff:4e:94:a4:96:2d:fc:
02:f9:3a:86:12:78:3b:46:e6:2e:b8:3c:06:62:be:
09:d6:f7:49:5d:f5:2f:fc:83:0d:ab:db:33:17:6e:
b1:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:DD:DF:47:DC:12:10:2D:35:06:01:0C:1C:BB:CE:46:46:14:D1:33
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/ot3fR9wSEC01BgEMHLvORkYU0TM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.77.53.0/24
Signature Algorithm: sha256WithRSAEncryption
27:27:ce:dd:16:4b:e4:9b:78:6b:72:2b:86:f3:ef:d1:3b:13:
3b:99:42:c0:61:14:65:90:84:48:ba:19:3b:14:fc:13:bb:fd:
06:21:a4:23:a2:c3:60:27:25:41:95:04:15:f1:b5:ae:cc:4e:
e2:96:97:08:c1:8c:8f:c4:32:b6:6d:16:2a:85:9e:ff:b3:de:
59:9f:8b:13:76:47:e9:ff:00:b6:af:6c:ca:90:ad:b6:12:01:
cd:fa:31:4d:36:ec:e3:47:df:75:05:ee:0f:79:42:c6:ec:97:
33:27:94:34:08:09:e7:4c:cb:50:24:51:68:ad:b8:eb:b1:c2:
23:14:65:28:d3:8e:9f:a7:5a:e5:2c:6f:ec:d8:c0:d0:9b:db:
18:4e:94:82:90:93:4f:e3:95:e6:f5:95:e8:69:d6:cb:a8:67:
8e:06:60:2f:59:df:5e:ea:81:66:30:3f:7d:e8:00:a4:82:4d:
25:4e:74:53:72:e7:77:06:5f:5a:96:7f:31:fe:f7:29:1c:78:
2f:12:de:61:a4:46:89:dc:43:80:eb:0b:42:02:30:f1:64:de:
f9:dd:39:b7:d6:4b:0d:34:ad:93:e6:c6:77:27:b5:86:7f:f5:
e9:ac:23:fa:e9:8f:36:2d:3a:ea:6d:0c:65:c7:1b:8d:27:04:
81:cd:b9:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:22 2024 by rpki-client on console-fra.rpki-client.org