Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/prBmgFhghxaOThfg5nUqrnWOtjM.roa
File: prBmgFhghxaOThfg5nUqrnWOtjM.roa (raw, json)
Hash identifier: oHXoaV3OvlGE3YZDPkcaDGIOBdoN0jQvIHbYmKb387s=
Subject key identifier: A6:B0:66:80:58:60:87:16:8E:4E:17:E0:E6:75:2A:AE:75:8E:B6:33
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 136E
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/prBmgFhghxaOThfg5nUqrnWOtjM.roa
Signing time: Mon 10 Feb 2025 14:09:27 +0000
ROA not before: Mon 10 Feb 2025 14:09:27 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9924
IP address blocks: 219.80.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4974 (0x136e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 10 14:09:27 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=A6B06680586087168E4E17E0E6752AAE758EB633
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:d8:85:3f:c0:4b:b6:7c:34:c3:ef:fd:87:ad:
ce:86:5c:c9:e1:38:ad:33:be:8c:a9:f2:88:fb:95:
ad:8b:e9:04:5d:78:d9:18:ba:59:00:14:25:69:2f:
76:b2:05:76:b8:d5:d2:5b:82:6c:5d:83:be:6c:05:
37:4e:47:ee:3c:f1:ca:b1:df:72:f0:42:67:59:62:
20:ba:44:f7:48:6c:55:ad:93:46:73:51:1c:07:df:
f6:05:1a:96:95:7c:4c:51:23:8a:12:df:de:c6:62:
2b:c8:e7:60:d0:9d:75:d8:81:f9:92:2f:3e:72:94:
59:74:86:65:33:39:70:29:9c:d6:f3:ed:26:18:a0:
65:e4:74:80:a4:d4:0a:1c:33:9d:57:b3:77:51:27:
1a:c7:ee:56:99:c4:02:f9:03:e7:65:72:56:88:f4:
ea:6a:20:38:d5:eb:e8:b3:22:2f:0b:87:43:a1:38:
a5:5c:21:c4:46:e9:8a:50:3f:8b:03:1e:59:ff:97:
b2:f5:e3:cf:6b:3c:4d:ee:f4:0a:8d:62:57:06:c0:
a0:4a:3d:1a:b1:00:45:88:8e:84:cd:85:e4:f1:16:
76:15:81:73:96:be:7f:0b:2f:d5:34:9c:67:2f:ff:
4a:0b:2d:fb:e5:ea:db:1c:50:ff:d5:ed:be:b2:4d:
52:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:B0:66:80:58:60:87:16:8E:4E:17:E0:E6:75:2A:AE:75:8E:B6:33
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/prBmgFhghxaOThfg5nUqrnWOtjM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
219.80.0.0/16
Signature Algorithm: sha256WithRSAEncryption
1f:f6:c4:c4:f3:98:18:e2:1c:94:ff:41:4d:e5:35:dd:7c:30:
78:fe:1c:ca:ef:f8:7c:6d:41:3a:44:b6:01:03:00:51:bf:b0:
8d:5e:b1:99:74:60:2f:90:7f:98:64:39:73:75:02:31:8a:3f:
0e:1c:b5:ef:7f:a5:29:98:d2:0a:23:c3:9c:19:25:de:80:d0:
e5:5c:7c:e3:d0:e0:fb:fa:86:21:cb:c5:e3:1a:c6:9c:9a:73:
73:80:f0:1b:14:65:1b:ae:8c:d5:22:df:c9:58:fe:45:53:10:
8c:cb:95:51:c6:df:bf:e4:8f:78:be:aa:93:51:b4:17:e5:3b:
46:84:af:d1:bc:6b:7c:a8:87:7b:51:db:0b:88:1b:7b:ce:6d:
5d:31:38:d6:d6:51:13:44:c5:12:4b:a6:0c:78:da:d9:ef:47:
2b:23:3d:6b:ba:d0:32:8c:21:f0:ff:16:b4:54:8c:cf:0b:b4:
f3:a3:23:19:f6:d0:92:f2:d6:39:50:d6:d4:09:3e:bc:d6:15:
6b:31:49:3a:ea:38:1d:4f:03:4a:23:4d:ff:69:d8:3b:e7:c4:
c8:ad:2e:e6:8b:f5:58:68:89:3c:36:61:8c:e9:3e:7f:8f:88:
d2:58:68:8c:88:66:32:b6:86:de:52:04:9f:a6:11:78:3d:e0:
e7:e3:ac:17
-----BEGIN CERTIFICATE-----
MIIE0zCCA7ugAwIBAgICE24wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTAyMTAx
NDA5MjdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEE2QjA2NjgwNTg2MDg3
MTY4RTRFMTdFMEU2NzUyQUFFNzU4RUI2MzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC32IU/wEu2fDTD7/2Hrc6GXMnhOK0zvoyp8oj7la2L6QRdeNkY
ulkAFCVpL3ayBXa41dJbgmxdg75sBTdOR+488cqx33LwQmdZYiC6RPdIbFWtk0Zz
URwH3/YFGpaVfExRI4oS397GYivI52DQnXXYgfmSLz5ylFl0hmUzOXApnNbz7SYY
oGXkdICk1AocM51Xs3dRJxrH7laZxAL5A+dlclaI9OpqIDjV6+izIi8Lh0OhOKVc
IcRG6YpQP4sDHln/l7L1489rPE3u9AqNYlcGwKBKPRqxAEWIjoTNheTxFnYVgXOW
vn8LL9U0nGcv/0oLLfvl6tscUP/V7b6yTVLRAgMBAAGjggHvMIIB6zAdBgNVHQ4E
FgQUprBmgFhghxaOThfg5nUqrnWOtjMwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvcHJCbWdGaGdoeGFPVGhm
ZzVuVXFybldPdGpNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMD
ANtQMA0GCSqGSIb3DQEBCwUAA4IBAQAf9sTE85gY4hyU/0FN5TXdfDB4/hzK7/h8
bUE6RLYBAwBRv7CNXrGZdGAvkH+YZDlzdQIxij8OHLXvf6UpmNIKI8OcGSXegNDl
XHzj0OD7+oYhy8XjGsacmnNzgPAbFGUbrozVIt/JWP5FUxCMy5VRxt+/5I94vqqT
UbQX5TtGhK/RvGt8qId7UdsLiBt7zm1dMTjW1lETRMUSS6YMeNrZ70crIz1rutAy
jCHw/xa0VIzPC7TzoyMZ9tCS8tY5UNbUCT681hVrMUk66jgdTwNKI03/adg758TI
rS7mi/VYaIk8NmGM6T5/j4jSWGiMiGYytobeUgSfphF4PeDn46wX
-----END CERTIFICATE-----
Generated at Mon Apr 7 01:55:33 2025 by rpki-client