Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/tm53bYrXYtjyd1bgF_EGu-q8Ozs.roa
File: tm53bYrXYtjyd1bgF_EGu-q8Ozs.roa (raw, json)
Hash identifier: vrv8oXRCqRKV5LFET6Irjh3GsFpuYF9oprMggQGITX4=
Subject key identifier: B6:6E:77:6D:8A:D7:62:D8:F2:77:56:E0:17:F1:06:BB:EA:BC:3B:3B
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0F93
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/tm53bYrXYtjyd1bgF_EGu-q8Ozs.roa
Signing time: Fri 01 Sep 2023 09:37:01 +0000
ROA not before: Fri 01 Sep 2023 09:37:01 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24163
IP address blocks: 60.198.32.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3987 (0xf93)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 1 09:37:01 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=B66E776D8AD762D8F27756E017F106BBEABC3B3B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:49:d2:f4:e9:48:8a:59:4a:49:16:db:ab:0b:
f4:4f:6e:ed:e8:62:3d:33:26:e4:20:a3:8d:0a:70:
ac:da:4e:e7:a3:72:39:84:2e:ae:76:58:48:69:1e:
6e:f8:79:af:fd:86:87:fe:d8:b9:fe:2a:f3:93:e0:
49:73:e8:1f:8e:b0:f7:78:f0:79:23:6c:22:5d:63:
9e:95:3a:52:0e:19:46:55:db:2c:a6:5b:9b:62:0a:
01:66:ba:e1:dc:16:af:82:29:ef:94:69:b7:7b:75:
95:5d:49:76:b3:cc:47:cf:f9:d2:74:26:66:27:70:
e6:7c:6b:56:13:5e:76:e9:e0:bc:f3:15:66:c1:4c:
4a:6d:4e:5f:00:32:52:27:2c:1d:65:57:e7:02:ba:
27:c1:f7:bc:1d:86:8a:6f:36:71:1b:50:a4:7e:39:
b1:e9:7d:90:f4:dd:a4:e7:c5:25:5a:3d:85:52:2c:
b5:50:c3:de:1a:57:7e:fa:b8:1a:3a:e0:e9:49:37:
09:21:a7:8d:4c:37:83:f6:74:d3:c8:3b:88:d6:85:
f5:f9:5b:24:1a:46:11:c6:d3:9c:2e:35:2f:e9:d1:
00:ed:da:5b:5a:92:2a:ff:8b:94:f3:57:f6:e0:2b:
9c:43:6d:d6:52:ff:91:a9:0d:de:84:52:1b:bd:29:
14:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:6E:77:6D:8A:D7:62:D8:F2:77:56:E0:17:F1:06:BB:EA:BC:3B:3B
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/tm53bYrXYtjyd1bgF_EGu-q8Ozs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.198.32.0/22
Signature Algorithm: sha256WithRSAEncryption
4e:dd:59:76:fb:ba:37:30:e0:70:a2:e5:2d:dc:f8:df:7b:95:
90:1c:f9:95:81:0c:80:8a:1c:ce:23:20:58:9a:09:4b:3f:af:
e3:b7:ed:9a:7a:ef:89:e4:bb:76:31:a4:d4:0e:30:03:b6:d1:
b0:cd:49:38:aa:61:08:db:2f:59:7f:74:16:95:7f:83:0e:58:
0c:62:ed:4a:3d:63:57:f1:ef:9c:95:f4:1d:32:f8:e9:43:eb:
26:6f:e9:f6:b3:21:b3:c2:31:39:50:58:6d:f0:95:a6:f1:81:
a7:a3:73:9f:a7:9a:2b:98:ed:b8:57:59:d1:7e:2a:87:9f:68:
e8:74:2f:b8:24:a5:37:31:32:5d:9b:e7:75:c4:38:ca:43:44:
81:48:c5:b8:d5:44:38:6d:3f:d9:4e:ae:cb:99:06:55:39:68:
38:f0:cf:ea:22:fe:df:b0:2a:65:55:d3:43:21:ea:db:73:b3:
d2:4e:21:dc:cc:73:9a:f1:85:6e:75:c4:27:15:d1:30:39:1d:
bc:9d:2a:c9:77:92:87:b9:6e:d4:54:c6:4d:07:9f:9f:3c:0a:
f5:98:c6:19:75:76:a9:b0:12:12:83:fe:9d:ad:12:c9:52:46:
44:25:37:56:3f:f2:71:50:2a:e5:89:b2:0e:23:d1:3d:b8:21:
e9:d6:a9:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:15 2024 by rpki-client on console-ams.rpki-client.org