Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/r2umK1ZvCXhgr09_kLYDzyzQQa8.roa
File: r2umK1ZvCXhgr09_kLYDzyzQQa8.roa (raw, json)
Hash identifier: 72LJZf5DUp9eob3HtWT4/MdhnXmojfp1PqOKnZq32gM=
Subject key identifier: AF:6B:A6:2B:56:6F:09:78:60:AF:4F:7F:90:B6:03:CF:2C:D0:41:AF
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0FE0
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/r2umK1ZvCXhgr09_kLYDzyzQQa8.roa
Signing time: Fri 01 Sep 2023 09:37:24 +0000
ROA not before: Fri 01 Sep 2023 09:37:24 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9924
IP address blocks: 60.199.224.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4064 (0xfe0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 1 09:37:24 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=AF6BA62B566F097860AF4F7F90B603CF2CD041AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:f0:e9:4e:fc:35:0b:d1:02:35:0f:95:fa:8c:
03:99:28:53:df:d6:7d:0e:e8:8c:f7:e9:1e:22:94:
4d:d1:1b:f7:03:32:a2:e2:2e:37:29:4f:ff:16:26:
fa:73:a1:8c:44:d4:d1:2e:55:02:5c:ad:8f:b2:b5:
1f:02:f5:8c:da:6b:55:99:3b:6c:33:c3:76:61:fb:
90:1c:2f:60:03:7d:83:f6:f7:d4:f4:77:24:4c:bc:
1a:6b:d7:8c:d1:11:53:5a:d9:4e:f0:73:19:1d:03:
a6:ff:e9:06:26:90:a8:18:ff:1c:da:e0:00:4c:30:
54:1e:1c:f3:82:8d:19:35:b9:13:c5:0f:dc:57:e8:
e9:90:64:43:c3:3d:d1:9f:52:03:d2:30:49:d8:cf:
12:53:b3:53:85:79:d6:54:33:86:ba:63:f7:3a:16:
43:6d:f9:bb:0c:d7:d8:1f:4e:e5:a9:5c:80:a7:85:
ae:4c:ab:ca:b3:ad:c9:47:95:98:54:42:c0:0f:9a:
68:a4:8f:dc:3a:a3:0b:9a:2e:80:f6:33:5d:bc:a5:
9f:cc:3c:c9:cd:ef:86:07:09:bb:ef:32:5e:44:1c:
9f:15:07:ed:b1:a2:52:22:eb:ea:90:6a:dd:2d:b4:
b9:b9:8f:35:bb:cb:d0:ae:e2:a8:ff:88:81:d2:60:
48:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:6B:A6:2B:56:6F:09:78:60:AF:4F:7F:90:B6:03:CF:2C:D0:41:AF
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/r2umK1ZvCXhgr09_kLYDzyzQQa8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.199.224.0/24
Signature Algorithm: sha256WithRSAEncryption
37:e8:19:c3:a6:d9:a0:31:84:c7:da:b7:a4:e8:14:ef:5e:a2:
b6:f9:04:95:cb:df:85:e3:95:cf:ce:e2:b7:f2:35:05:ba:f2:
33:a5:5b:e8:31:82:57:e0:53:db:6b:a3:ce:98:b8:32:d0:54:
de:dc:c4:d5:d5:34:5b:c3:99:40:ed:28:7f:5a:1e:d7:8e:24:
93:f3:ef:08:61:aa:7e:7d:46:0e:32:92:9b:70:33:fb:cf:f5:
26:33:f1:c0:d7:91:0f:b6:7b:89:ab:3b:02:a7:71:00:72:b1:
28:53:0a:38:ca:a5:6c:44:07:66:d9:d9:4e:2b:a6:56:a6:5c:
95:71:c4:59:86:c9:71:69:64:c4:a0:5b:77:8e:d7:da:02:7c:
3e:da:af:2b:d3:38:31:bd:e1:a4:f3:21:b4:2c:3e:46:ef:df:
13:9d:3d:ae:1c:b9:e1:0c:6c:37:ff:59:7c:e9:bd:da:44:8c:
ad:d1:e3:59:02:14:51:fd:c6:e8:0e:0a:0b:9a:98:a6:df:33:
f6:2c:94:b9:f0:3b:ad:df:e6:01:f3:ae:98:e5:cc:10:1d:c2:
38:94:ef:57:d4:5d:9b:a1:c8:f5:70:ba:7c:f6:12:25:41:47:
44:ee:2f:a3:c5:01:40:47:e7:aa:1e:99:f8:41:c4:55:96:d6:
ff:33:d3:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:15 2024 by rpki-client on console-ams.rpki-client.org