Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/tQ8L17taKmZyWTcz7iQK5gibZQ4.roa
File: tQ8L17taKmZyWTcz7iQK5gibZQ4.roa (raw, json)
Hash identifier: BnTAFcLqvilK0/ZqfRpnogfk+GXep7xUoRBJVFEPUhY=
Subject key identifier: B5:0F:0B:D7:BB:5A:2A:66:72:59:37:33:EE:24:0A:E6:08:9B:65:0E
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 1365
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/tQ8L17taKmZyWTcz7iQK5gibZQ4.roa
Signing time: Mon 10 Feb 2025 14:09:26 +0000
ROA not before: Mon 10 Feb 2025 14:09:26 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9924
IP address blocks: 210.17.76.0/22 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4965 (0x1365)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 10 14:09:26 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=B50F0BD7BB5A2A6672593733EE240AE6089B650E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:f8:ec:bf:7f:37:99:9c:cd:7c:e3:e6:b2:01:
d1:ff:06:8f:ee:02:0f:87:07:11:97:60:21:d2:c3:
80:cb:27:4d:d8:ea:2b:24:fc:fb:2f:c5:1a:9b:4a:
82:09:b1:b1:f6:00:a0:d6:d0:e9:a7:d0:8f:2b:d6:
09:33:7b:f1:eb:7d:b2:0b:00:86:71:0f:b4:6e:e1:
38:59:bb:b3:fd:70:ed:09:e2:fe:d7:d5:9b:6f:69:
4d:39:60:7d:ed:97:37:9d:69:22:e3:33:8d:43:51:
5a:02:06:d0:8a:88:98:d0:78:27:d6:f0:1b:a5:ca:
28:7a:5e:d8:d5:f5:bf:ec:1f:08:6c:d2:9f:b2:9e:
e8:2e:bf:c4:c8:5a:f5:c6:06:27:d9:1f:dc:0c:fd:
fd:dc:d6:0a:b4:6f:10:11:3f:85:81:1c:37:99:ff:
1d:b4:5b:f2:7c:3e:4f:a4:d3:d1:48:c0:11:76:fa:
84:13:3b:2d:bd:74:00:e9:48:0f:62:83:89:e9:00:
bb:39:c1:44:9d:b3:80:a1:a2:1d:f0:8e:38:ea:1a:
6c:11:64:38:7e:3d:28:e2:76:de:53:b5:93:08:31:
e0:7c:7f:95:65:83:1a:74:17:05:1c:f5:24:b7:f2:
75:82:96:bc:a5:1a:e5:1e:85:c5:21:2a:69:c1:7b:
07:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:0F:0B:D7:BB:5A:2A:66:72:59:37:33:EE:24:0A:E6:08:9B:65:0E
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/tQ8L17taKmZyWTcz7iQK5gibZQ4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.17.76.0/22
Signature Algorithm: sha256WithRSAEncryption
61:0b:89:8b:5d:00:c0:a0:42:66:5a:11:d2:1a:af:76:a3:44:
91:3d:f1:b2:bd:4c:ff:fa:4c:08:f0:48:cf:e5:15:1a:25:1a:
1d:67:80:a9:0d:7a:b1:04:5d:af:b8:9e:b0:1a:d3:76:11:fe:
21:2b:e5:f7:4d:58:47:d1:83:a1:da:0b:2d:9b:aa:a2:18:66:
d3:1a:be:44:e6:58:99:bc:7e:81:46:d9:74:e2:bd:a5:03:6d:
cd:a6:26:82:ae:ff:f2:2d:47:f4:54:5d:18:db:55:41:52:e1:
33:0c:fa:e4:4b:93:4c:5b:74:56:1c:4f:fe:d7:ef:a0:c9:38:
6a:01:41:4c:e6:25:c6:34:02:0c:49:0c:41:1a:f2:85:58:bc:
0e:df:b0:da:d1:38:aa:09:20:80:22:8a:27:a3:d2:fb:2e:2b:
54:e4:f2:1b:af:c9:27:59:5c:9f:9e:28:f5:c9:f4:32:05:9c:
da:d3:85:aa:ce:58:42:b6:06:42:bb:24:60:37:9a:c7:98:6c:
e7:16:a9:a4:03:3a:9e:7e:a1:15:2c:01:c4:25:75:b2:1e:55:
00:c8:ed:98:6d:68:76:7f:83:2d:17:69:2b:33:1b:ce:1c:cf:
e1:a6:cf:28:cc:4e:69:cc:f0:a9:99:94:62:d4:33:10:c1:a8:
0a:a2:c4:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 01:50:45 2025 by rpki-client