Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/uxfkY0vMG7b2GHbiAzp-mMNs9d0.roa
File: uxfkY0vMG7b2GHbiAzp-mMNs9d0.roa (raw, json)
Hash identifier: WTtWbyz1vxmgN66hqdv670OFxh4SOcxM3hKTM684iOk=
Subject key identifier: BB:17:E4:63:4B:CC:1B:B6:F6:18:76:E2:03:3A:7E:98:C3:6C:F5:DD
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 134E
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/uxfkY0vMG7b2GHbiAzp-mMNs9d0.roa
Signing time: Mon 10 Feb 2025 14:09:20 +0000
ROA not before: Mon 10 Feb 2025 14:09:20 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9924
IP address blocks: 202.145.32.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4942 (0x134e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 10 14:09:20 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=BB17E4634BCC1BB6F61876E2033A7E98C36CF5DD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:ed:bc:3d:5d:1b:ba:8c:ec:f6:28:27:73:5e:
8e:33:de:61:42:58:a7:d7:94:a3:07:b0:22:7b:02:
2b:b9:a2:bd:4f:94:5f:eb:a8:b8:cd:a5:57:70:d9:
37:1f:41:1c:ef:25:8c:24:c1:4c:b0:be:39:34:a1:
94:8c:1a:c0:5c:37:78:d5:22:f2:1b:d7:54:56:b3:
ca:47:5c:fc:70:a0:d8:f7:6f:8d:26:4d:74:eb:61:
17:37:12:1b:93:98:32:e0:a1:8f:cc:94:db:ea:62:
00:d3:3e:8e:13:8d:99:1e:04:53:83:e5:df:0c:c8:
d2:0f:0f:74:a2:1c:8c:b1:fc:86:61:9d:0e:d3:49:
da:a9:18:8d:25:a1:7f:89:dd:3e:fe:48:f4:2e:83:
72:c1:4b:44:70:bb:0d:90:28:41:de:85:58:49:a4:
0c:23:1c:3e:50:e1:35:c8:d0:6a:6f:f3:d1:32:58:
26:87:ea:75:d4:85:ea:5b:8c:fd:65:cb:cc:32:bb:
3a:ad:09:2e:66:44:95:fe:88:98:3d:9b:b0:1c:65:
d8:b3:9a:cf:56:bb:83:d6:b0:df:47:c3:4c:3a:21:
c9:48:90:68:54:8c:1a:56:d1:47:21:a7:26:9d:f6:
75:f6:a5:e1:30:14:5e:32:f2:94:5f:2b:4c:c3:fb:
c9:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:17:E4:63:4B:CC:1B:B6:F6:18:76:E2:03:3A:7E:98:C3:6C:F5:DD
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/uxfkY0vMG7b2GHbiAzp-mMNs9d0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.145.32.0/19
Signature Algorithm: sha256WithRSAEncryption
23:b7:46:b6:df:b5:d2:72:75:16:24:c8:2e:c8:59:8e:a4:6b:
1f:fe:5c:f0:7b:ad:e1:fd:9a:b4:96:de:39:dd:b5:1c:c8:73:
c9:9b:d5:cc:7d:02:d8:b4:53:7f:14:8e:44:cf:b2:5a:c5:b6:
c8:14:46:10:96:04:e4:77:a5:bc:ce:69:af:3e:2c:d0:36:c6:
cd:87:6a:c7:ff:ed:f0:fd:68:ef:5f:5c:73:d9:ae:88:6c:58:
dd:3e:e9:a7:60:37:94:95:75:5f:77:7c:e7:97:a3:29:f0:d2:
fb:e2:df:9b:ad:a8:17:bc:71:31:03:26:62:a0:c4:6d:12:c0:
95:18:38:58:ab:2e:48:48:14:a1:e0:c1:45:e1:cb:f5:eb:f4:
8b:a9:12:fd:be:5d:01:cd:ec:1d:f0:56:1f:27:37:96:ca:97:
4e:78:f0:0c:f4:10:93:91:0b:74:72:43:5b:18:fc:69:41:50:
1a:3d:d5:f2:8c:44:8b:35:8b:c2:72:bf:2f:db:3b:e9:e7:f2:
7b:56:a7:f0:f4:b7:d4:5f:e6:5f:2f:42:7c:d6:5a:c6:72:bc:
81:db:71:58:07:16:98:6a:24:af:26:d5:4b:f1:aa:0c:98:31:
90:8e:cd:07:e9:92:f4:80:10:9d:78:ef:d7:b7:cd:c3:d7:c0:
53:79:55:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 01:50:45 2025 by rpki-client