Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/pb40MMC68jto3mkGdpCyYxzgqFg.roa
File: pb40MMC68jto3mkGdpCyYxzgqFg.roa (raw, json)
Hash identifier: 6C7mH31y3ES+fUSA8WKY6PBxG53Vih7R335/ErVfvXg=
Subject key identifier: A5:BE:34:30:C0:BA:F2:3B:68:DE:69:06:76:90:B2:63:1C:E0:A8:58
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0F86
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/pb40MMC68jto3mkGdpCyYxzgqFg.roa
Signing time: Fri 01 Sep 2023 09:36:57 +0000
ROA not before: Fri 01 Sep 2023 09:36:57 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9924
IP address blocks: 210.67.144.0/20 maxlen: 25
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3974 (0xf86)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 1 09:36:57 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=A5BE3430C0BAF23B68DE69067690B2631CE0A858
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:b9:22:d9:4d:8d:6f:0d:43:ec:b7:ee:cd:f2:
d1:be:d7:b4:e0:94:21:7d:b3:de:9e:c8:ce:b3:3f:
be:f6:c5:0a:75:11:09:e5:8a:e0:07:2e:a2:67:61:
3d:01:ff:47:3d:69:4f:54:ea:a2:c5:af:d7:43:a2:
74:bb:21:07:90:98:ee:36:38:9a:c0:2f:35:66:74:
22:81:f5:63:b7:22:31:fe:51:4a:3c:f1:a1:18:22:
0d:4e:0d:a4:9d:b6:38:24:98:19:8b:67:73:85:f1:
f9:9a:19:da:de:53:01:f2:92:a2:cd:3c:36:83:92:
19:b4:d3:2e:c3:70:35:17:6f:80:71:6d:57:38:92:
eb:ba:a1:c3:19:ea:90:dd:c9:a9:ec:40:a2:4c:21:
47:f3:b2:df:39:9c:ac:e2:57:f5:bd:ed:02:0d:59:
04:e6:c8:e1:89:2a:6c:56:ad:9c:19:dd:19:14:65:
18:63:56:7d:2b:26:ac:5b:f3:0e:86:e3:b8:c2:17:
9e:cb:f0:ff:30:72:1e:b8:53:d3:39:b8:1f:46:38:
10:eb:47:52:75:38:05:03:8f:a1:60:78:ee:36:be:
c2:2e:3b:3a:2e:23:97:f1:e2:d7:a1:01:f3:fb:4d:
d1:94:3c:14:2d:6e:51:d0:03:15:24:d0:ea:57:c0:
93:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:BE:34:30:C0:BA:F2:3B:68:DE:69:06:76:90:B2:63:1C:E0:A8:58
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/pb40MMC68jto3mkGdpCyYxzgqFg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.67.144.0/20
Signature Algorithm: sha256WithRSAEncryption
13:52:f4:cb:19:50:ac:3e:47:b3:07:cf:64:ab:1d:56:8f:fb:
39:ab:b2:80:3a:a9:eb:ae:70:03:79:ef:30:aa:71:aa:5d:48:
f0:fb:48:45:e1:d6:33:08:02:b3:df:d6:f1:81:eb:30:e2:f6:
f1:36:7c:5b:90:b2:f5:ae:ff:b2:0c:c8:5b:58:e3:8c:66:23:
0f:33:0b:3c:ef:b9:71:4d:61:fe:fd:de:85:24:7e:e1:37:57:
f1:a7:57:d7:1f:e0:b5:4c:e2:a8:82:bc:a8:59:f7:d6:32:7b:
b7:74:21:39:f9:a7:73:50:91:59:9b:49:2f:e6:d2:46:05:31:
2f:d4:50:b3:6d:86:56:14:2b:02:3f:c2:9d:53:58:41:d7:f0:
f4:98:f0:84:dc:9e:f7:3e:2a:43:54:8b:bf:37:03:a4:71:90:
7f:76:3f:7d:c5:1c:26:01:3d:43:29:02:8d:53:e9:18:bc:19:
cb:11:fd:3c:f3:e7:f4:57:46:4b:36:23:29:1d:72:d1:35:54:
32:90:42:76:4e:68:e2:b7:6a:54:da:66:69:89:d5:fa:a7:5e:
d7:3d:1e:8a:8d:60:e0:d7:55:37:eb:91:46:62:9d:e1:99:3f:
b1:aa:ad:49:c7:3c:62:bf:92:c0:46:1b:7e:55:8f:1d:86:d3:
b3:13:10:90
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICD4YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMzA5MDEw
OTM2NTdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEE1QkUzNDMwQzBCQUYy
M0I2OERFNjkwNjc2OTBCMjYzMUNFMEE4NTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCmuSLZTY1vDUPst+7N8tG+17TglCF9s96eyM6zP772xQp1EQnl
iuAHLqJnYT0B/0c9aU9U6qLFr9dDonS7IQeQmO42OJrALzVmdCKB9WO3IjH+UUo8
8aEYIg1ODaSdtjgkmBmLZ3OF8fmaGdreUwHykqLNPDaDkhm00y7DcDUXb4BxbVc4
kuu6ocMZ6pDdyansQKJMIUfzst85nKziV/W97QINWQTmyOGJKmxWrZwZ3RkUZRhj
Vn0rJqxb8w6G47jCF57L8P8wch64U9M5uB9GOBDrR1J1OAUDj6FgeO42vsIuOzou
I5fx4tehAfP7TdGUPBQtblHQAxUk0OpXwJOJAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUpb40MMC68jto3mkGdpCyYxzgqFgwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvcGI0ME1NQzY4anRvM21r
R2RwQ3lZeHpncUZnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
BNJDkDANBgkqhkiG9w0BAQsFAAOCAQEAE1L0yxlQrD5HswfPZKsdVo/7OauygDqp
665wA3nvMKpxql1I8PtIReHWMwgCs9/W8YHrMOL28TZ8W5Cy9a7/sgzIW1jjjGYj
DzMLPO+5cU1h/v3ehSR+4TdX8adX1x/gtUziqIK8qFn31jJ7t3QhOfmnc1CRWZtJ
L+bSRgUxL9RQs22GVhQrAj/CnVNYQdfw9JjwhNye9z4qQ1SLvzcDpHGQf3Y/fcUc
JgE9QykCjVPpGLwZyxH9PPPn9FdGSzYjKR1y0TVUMpBCdk5o4rdqVNpmaYnV+qde
1z0eio1g4NdVN+uRRmKd4Zk/saqtScc8Yr+SwEYbflWPHYbTsxMQkA==
-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:22 2024 by rpki-client on console-fra.rpki-client.org