Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/rNK7hGX_4JsnqvIM57G4qIvLSk0.roa
File: rNK7hGX_4JsnqvIM57G4qIvLSk0.roa (raw, json)
Hash identifier: szgShMWQ+7fCOeXe4+qxtk9to/q4k8T+QtK94+4R3+M=
Subject key identifier: AC:D2:BB:84:65:FF:E0:9B:27:AA:F2:0C:E7:B1:B8:A8:8B:CB:4A:4D
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0FDF
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/rNK7hGX_4JsnqvIM57G4qIvLSk0.roa
Signing time: Fri 01 Sep 2023 09:37:24 +0000
ROA not before: Fri 01 Sep 2023 09:37:24 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9924
IP address blocks: 203.211.0.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4063 (0xfdf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 1 09:37:24 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=ACD2BB8465FFE09B27AAF20CE7B1B8A88BCB4A4D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:8b:9d:91:8c:60:3b:45:13:9a:dd:5b:07:ad:
94:dd:0d:7c:7e:e4:b9:fc:4d:43:5f:7f:72:a8:77:
d3:5a:d6:1b:6e:8e:7c:66:08:eb:6c:9d:32:06:d9:
ad:35:63:4b:8c:b9:8d:2f:85:72:b4:cb:b2:ac:32:
20:ea:d2:bb:e8:9a:ff:9c:cb:85:55:6c:8f:d5:b1:
2f:fe:f3:03:13:33:fb:db:93:3e:eb:16:c3:58:51:
c3:63:df:a7:63:86:f4:ea:ed:cf:20:54:7d:c4:f3:
e2:20:a6:f1:33:01:85:ce:6a:85:62:d0:2e:88:0d:
d8:90:42:14:4b:92:b9:73:36:0e:a0:c8:02:d2:a1:
05:96:8e:a8:ba:48:15:d2:97:f4:63:1a:54:77:e6:
8f:e3:0a:48:fa:a6:16:f6:62:89:31:ea:95:c8:7d:
fb:d1:52:87:a2:2a:d6:02:30:30:ce:13:c3:be:4f:
c3:74:32:b5:f2:a9:e1:d2:35:a0:6f:b5:02:ba:3a:
2e:85:b1:e6:dc:0d:4a:34:ae:20:26:8f:a9:ad:27:
98:37:c6:6b:7a:1d:f4:b3:94:3f:2b:a5:93:21:b5:
70:9d:67:94:39:61:5f:9a:5f:fc:77:9b:f5:b6:e2:
82:d4:44:03:1e:e9:23:4b:cb:8d:53:cd:59:6e:54:
b5:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:D2:BB:84:65:FF:E0:9B:27:AA:F2:0C:E7:B1:B8:A8:8B:CB:4A:4D
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/rNK7hGX_4JsnqvIM57G4qIvLSk0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.211.0.0/19
Signature Algorithm: sha256WithRSAEncryption
30:8c:a2:55:18:d2:4c:c9:08:b8:27:9c:56:b3:c4:47:17:8c:
7d:9f:01:26:0b:c8:a4:73:0f:65:aa:7a:26:cc:9f:db:47:ed:
be:e8:bd:8f:fb:e8:41:b8:96:23:d7:50:90:cc:31:b0:e5:81:
f0:b2:d4:8e:93:e9:93:7e:49:3d:f6:5c:4c:2f:78:41:1f:6b:
f1:88:51:95:db:43:0b:6f:61:54:5b:cb:7a:55:3e:d3:b6:7f:
b8:97:55:47:61:0a:ee:fe:11:5b:e7:d8:00:09:53:d8:f8:48:
7a:9a:01:1e:e6:fc:c2:3f:58:a9:84:b8:ab:e8:fa:c4:15:ee:
4a:22:c9:ac:63:5b:cf:11:4b:8b:72:e2:03:40:5a:ea:90:9a:
0b:5e:a6:85:04:b9:c6:3a:f5:b0:61:51:5a:a7:56:57:10:c9:
c2:e6:a4:29:b4:25:5a:16:65:ac:72:cf:a3:9b:7f:f9:f6:be:
63:7b:db:7e:57:c8:c1:36:44:00:f7:df:c8:15:00:1f:8a:63:
ea:3e:8f:13:83:33:af:41:00:cb:45:2f:37:55:9a:55:61:7b:
ee:c6:d4:31:ae:e0:f7:ec:f7:55:8e:9f:f3:cb:bb:71:23:54:
17:e6:5b:70:5a:13:14:5c:fc:8e:d0:8e:ec:0d:be:16:2a:39:
c3:fb:db:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:15 2024 by rpki-client on console-ams.rpki-client.org