Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/unkOmLZyJ9y8rDmxyz9zsroWX34.roa
File: unkOmLZyJ9y8rDmxyz9zsroWX34.roa (raw, json)
Hash identifier: +evlyq9qhMd1TjeBUKoQUZXR0FkeFmJLboYtlyIlBXY=
Subject key identifier: BA:79:0E:98:B6:72:27:DC:BC:AC:39:B1:CB:3F:73:B2:BA:16:5F:7E
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 1369
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/unkOmLZyJ9y8rDmxyz9zsroWX34.roa
Signing time: Mon 10 Feb 2025 14:09:26 +0000
ROA not before: Mon 10 Feb 2025 14:09:26 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9924
IP address blocks: 210.67.160.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4969 (0x1369)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 10 14:09:26 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=BA790E98B67227DCBCAC39B1CB3F73B2BA165F7E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:53:98:43:4d:18:7b:49:76:90:4e:75:9f:6e:
3c:f9:c0:4a:af:47:9c:ec:e7:0f:dc:29:04:39:8a:
8c:3c:48:55:eb:a0:5e:1d:6e:39:db:17:dc:8a:44:
51:dd:4c:18:27:36:bf:9e:d0:33:fb:16:dd:bc:c6:
4c:04:9e:33:53:34:f2:4b:36:44:95:44:34:46:d2:
67:be:b3:ef:a0:05:a6:e9:d2:02:0b:f5:69:25:86:
9d:af:50:61:a0:07:54:df:e8:6e:e8:d6:d1:fc:16:
c3:73:f4:da:49:6c:5d:1a:c5:3d:55:bc:87:47:d7:
32:42:08:11:57:11:f0:68:91:c2:01:cb:be:06:f8:
8c:00:9f:45:b2:33:e1:99:17:1a:12:52:e3:74:5a:
15:0a:ac:9b:5d:81:27:e8:f2:b1:28:b7:23:96:09:
96:27:d0:87:99:62:86:09:bc:c2:9b:75:54:40:32:
a0:ae:28:3b:dd:4b:52:8d:94:8d:43:40:83:e6:66:
9b:f4:b7:17:de:09:9d:d0:2a:d2:dd:19:aa:c1:19:
2e:60:0f:60:53:15:57:eb:47:0e:69:50:85:41:df:
b1:40:d5:45:13:e9:fe:da:d8:ce:61:55:c2:95:29:
53:d7:9f:fd:6d:15:42:dd:74:6e:92:dd:89:28:38:
46:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:79:0E:98:B6:72:27:DC:BC:AC:39:B1:CB:3F:73:B2:BA:16:5F:7E
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/unkOmLZyJ9y8rDmxyz9zsroWX34.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.67.160.0/19
Signature Algorithm: sha256WithRSAEncryption
49:a7:53:ab:ce:ed:06:54:45:7d:04:a6:3a:d6:c2:40:21:6b:
25:c6:53:d9:63:27:92:a9:54:84:74:2f:57:48:b1:0c:e7:fc:
9a:48:79:d4:db:3d:53:78:12:c0:1c:54:25:81:40:b6:45:0e:
66:e8:6b:7f:81:14:55:01:4c:1f:4d:e1:b0:2c:f3:62:86:52:
11:61:8e:5e:46:a6:29:4e:9e:cd:bb:7f:1d:1c:24:97:71:f4:
4a:9e:f1:83:f9:c9:80:11:f3:5b:13:4e:b1:1a:37:15:e0:93:
86:d2:e5:7b:8a:e1:65:51:25:75:11:96:89:28:70:5f:5f:16:
50:6c:87:8e:31:c3:74:82:28:25:57:eb:df:75:dc:4c:53:dd:
56:82:73:41:cc:5d:9d:a5:cb:fa:b5:c2:bd:1e:63:87:c0:4c:
99:f7:ca:a1:d6:80:bb:d2:da:84:7c:90:aa:ff:a0:51:91:6a:
da:c1:9b:2a:6f:25:50:3e:45:96:0b:d3:79:d9:93:51:a1:0b:
7d:9e:6c:25:55:b3:f2:b9:60:0f:fa:e7:b1:c6:dc:24:ad:0e:
79:c9:56:9b:c4:fa:3c:b9:96:93:26:46:ec:58:c8:90:21:d3:
8e:26:c3:49:e6:9e:5b:0b:a4:fa:a1:78:6d:81:ec:cb:ac:61:
96:9c:a3:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 02:02:55 2025 by rpki-client