Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/ty-JsXrnLofKpXYG18xDuZhFAWg.roa
File: ty-JsXrnLofKpXYG18xDuZhFAWg.roa (raw, json)
Hash identifier: /BWVAmE5lindTlaX6Biv/lKtL+6JVuHBG8bSCmZ5ZAs=
Subject key identifier: B7:2F:89:B1:7A:E7:2E:87:CA:A5:76:06:D7:CC:43:B9:98:45:01:68
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 1349
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/ty-JsXrnLofKpXYG18xDuZhFAWg.roa
Signing time: Mon 10 Feb 2025 14:09:19 +0000
ROA not before: Mon 10 Feb 2025 14:09:19 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9924
IP address blocks: 60.199.193.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4937 (0x1349)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 10 14:09:19 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=B72F89B17AE72E87CAA57606D7CC43B998450168
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:16:2c:8b:ca:16:eb:a9:79:9c:a6:6f:89:0d:
ce:84:37:3e:70:93:98:15:e6:45:58:fa:61:90:64:
f1:89:65:26:5c:a9:53:0f:48:05:c9:cb:2c:af:9a:
2f:ab:b6:36:43:ce:4f:9a:11:ad:71:bd:66:4e:99:
79:74:7b:46:23:13:3f:f4:df:da:e0:f1:10:bd:79:
8b:f9:16:ea:37:cc:a6:e1:98:ea:07:7a:10:18:df:
9f:5d:c3:e1:10:6b:d3:20:47:24:f0:c5:27:29:7a:
83:4a:98:8d:03:c8:e2:79:7f:64:15:ce:cb:1a:78:
57:fc:91:e7:64:e2:da:40:5c:f7:80:04:61:f0:ec:
78:c4:20:90:fb:d4:79:77:3f:d9:2d:ce:f4:99:9c:
85:11:ff:7d:5e:b8:a9:95:ba:da:32:2b:03:e8:b3:
88:79:93:e7:51:7c:73:50:57:d2:57:a3:4a:b6:73:
c8:47:30:a6:d2:e1:93:d3:21:aa:99:19:75:80:b3:
e1:e9:91:e0:3d:18:97:55:72:8f:43:81:ef:66:b2:
e2:3e:23:42:59:2d:61:b7:67:a4:70:c8:94:26:c0:
20:f1:4c:a1:32:ed:0d:44:2d:3d:4a:3a:29:26:b3:
78:7f:f6:3e:59:0f:c3:95:f0:d9:c2:1e:d0:92:42:
71:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:2F:89:B1:7A:E7:2E:87:CA:A5:76:06:D7:CC:43:B9:98:45:01:68
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/ty-JsXrnLofKpXYG18xDuZhFAWg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.199.193.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:0e:97:cc:dd:6a:9b:b2:e6:62:c5:39:fc:26:2c:45:63:11:
27:1f:5d:ef:0e:87:01:09:84:b5:00:af:77:cf:71:b3:76:ef:
e3:0a:d4:2f:74:a5:32:d1:95:97:e3:57:2b:50:8d:36:a2:6e:
32:b1:02:e4:b2:a3:4d:fd:0f:5a:56:13:3f:32:da:b8:cc:9e:
8f:7e:89:af:b7:35:f3:59:4e:17:f7:ff:e3:69:dc:e3:42:58:
4b:09:4e:91:36:49:dc:e6:55:00:16:0e:7e:2f:60:23:29:e7:
03:6b:2d:64:fd:ec:f7:2c:e2:4f:19:a6:13:9f:df:b2:5b:f6:
ff:4f:90:18:0e:29:81:d6:a3:52:32:1a:47:a4:f6:be:31:48:
b1:77:cf:d7:a3:34:0a:c5:7c:69:22:f8:78:69:d7:22:8b:d3:
4e:c5:6c:b0:a8:19:1e:6a:4e:ab:16:84:91:27:b9:75:fc:5b:
20:29:3a:9b:c4:0d:68:2f:e9:5d:33:0b:3e:71:73:9c:cd:3f:
ff:f6:0a:f2:b9:98:bf:60:94:86:3e:cc:0e:8c:c6:19:cf:5d:
ef:32:81:77:14:fa:a4:01:b3:b7:c9:cf:5f:9b:f2:e2:98:a9:
b1:87:eb:7f:5f:6e:93:ff:8a:1f:48:61:e4:1a:20:da:53:bd:
28:68:70:d6
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICE0kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTAyMTAx
NDA5MTlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEI3MkY4OUIxN0FFNzJF
ODdDQUE1NzYwNkQ3Q0M0M0I5OTg0NTAxNjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCqFiyLyhbrqXmcpm+JDc6ENz5wk5gV5kVY+mGQZPGJZSZcqVMP
SAXJyyyvmi+rtjZDzk+aEa1xvWZOmXl0e0YjEz/039rg8RC9eYv5Fuo3zKbhmOoH
ehAY359dw+EQa9MgRyTwxScpeoNKmI0DyOJ5f2QVzssaeFf8kedk4tpAXPeABGHw
7HjEIJD71Hl3P9ktzvSZnIUR/31euKmVutoyKwPos4h5k+dRfHNQV9JXo0q2c8hH
MKbS4ZPTIaqZGXWAs+HpkeA9GJdVco9Dge9msuI+I0JZLWG3Z6RwyJQmwCDxTKEy
7Q1ELT1KOikms3h/9j5ZD8OV8NnCHtCSQnGBAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUty+JsXrnLofKpXYG18xDuZhFAWgwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvdHktSnNYcm5Mb2ZLcFhZ
RzE4eER1WmhGQVdnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
ADzHwTANBgkqhkiG9w0BAQsFAAOCAQEASw6XzN1qm7LmYsU5/CYsRWMRJx9d7w6H
AQmEtQCvd89xs3bv4wrUL3SlMtGVl+NXK1CNNqJuMrEC5LKjTf0PWlYTPzLauMye
j36Jr7c181lOF/f/42nc40JYSwlOkTZJ3OZVABYOfi9gIynnA2stZP3s9yziTxmm
E5/fslv2/0+QGA4pgdajUjIaR6T2vjFIsXfP16M0CsV8aSL4eGnXIovTTsVssKgZ
HmpOqxaEkSe5dfxbICk6m8QNaC/pXTMLPnFznM0///YK8rmYv2CUhj7MDozGGc9d
7zKBdxT6pAGzt8nPX5vy4pipsYfrf19uk/+KH0hh5Bog2lO9KGhw1g==
-----END CERTIFICATE-----
Generated at Mon Apr 7 01:52:59 2025 by rpki-client