Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/v4lmFSMkyHTAoksrLFvPFeBGhT4.roa
File: v4lmFSMkyHTAoksrLFvPFeBGhT4.roa (raw, json)
Hash identifier: PZQxu82vzH3HTk8Fu1+1muYV2MXbz2Jdcx9m9JWENF4=
Subject key identifier: BF:89:66:15:23:24:C8:74:C0:A2:4B:2B:2C:5B:CF:15:E0:46:85:3E
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 1329
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/v4lmFSMkyHTAoksrLFvPFeBGhT4.roa
Signing time: Mon 10 Feb 2025 14:09:11 +0000
ROA not before: Mon 10 Feb 2025 14:09:11 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9924
IP address blocks: 60.199.110.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4905 (0x1329)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 10 14:09:11 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=BF8966152324C874C0A24B2B2C5BCF15E046853E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:fd:49:2e:a5:55:66:a1:f2:44:99:60:54:a4:
f0:59:a3:08:79:84:60:f4:3a:cd:97:6c:55:61:b8:
56:a1:39:58:de:a9:65:bc:eb:59:35:22:b9:a2:83:
7f:f3:ed:f2:3d:3a:0e:6e:d2:df:ca:df:31:11:84:
fa:57:3a:be:05:32:69:19:eb:39:8e:e1:da:f5:26:
46:27:e1:8c:8b:0f:41:f1:fa:48:14:62:bf:ea:b8:
bd:b4:e6:d1:23:4c:79:b3:40:9f:91:b3:85:9e:23:
91:96:65:b5:98:38:20:c0:70:0f:2c:7f:c9:7a:c6:
97:8a:81:1a:5d:28:96:9f:22:7e:6f:95:bf:45:40:
5f:50:0e:e3:0a:e9:b3:a5:14:18:98:28:30:db:1c:
79:b9:d1:50:e4:02:4c:c4:1f:f1:1a:9c:67:8c:87:
e7:71:d0:1d:8a:71:8f:21:6b:d9:d0:81:d9:20:f1:
08:d2:a6:9a:83:15:b2:30:53:c0:fa:e0:1f:39:75:
31:d6:9a:1a:fa:5e:7d:cd:60:b5:6b:6e:12:00:46:
05:f6:b7:31:06:7b:98:71:ba:94:4c:98:5c:9d:a1:
8e:f2:4c:b4:cc:7b:4a:0a:a4:bc:7b:63:db:2a:33:
77:ab:d5:0f:c3:ef:e0:1e:4d:0c:a0:9d:d6:c7:e5:
13:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:89:66:15:23:24:C8:74:C0:A2:4B:2B:2C:5B:CF:15:E0:46:85:3E
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/v4lmFSMkyHTAoksrLFvPFeBGhT4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.199.110.0/24
Signature Algorithm: sha256WithRSAEncryption
86:19:72:91:71:b8:6e:5f:c0:1c:a6:11:2e:3c:d9:93:12:78:
01:0d:b8:f2:99:13:38:8f:76:b3:8e:b0:ad:67:17:ea:8f:8b:
c3:61:33:94:b6:8c:77:b6:2c:63:5a:5c:63:9e:cc:dd:bb:44:
54:91:f4:78:63:75:87:bd:a9:ee:3d:03:03:1c:71:e4:f1:ad:
43:6c:cb:bd:f5:87:e5:71:b6:71:10:53:ba:98:3f:53:4c:a5:
e0:72:0e:7b:c9:fb:50:64:7a:47:f4:f4:2e:53:df:2e:25:0f:
e9:bc:58:7a:09:8e:58:d0:ac:8b:cc:ac:21:bd:a5:e8:0c:9a:
8d:1e:10:70:bb:f4:83:3e:be:09:00:9e:05:bc:1d:f7:59:df:
48:20:e4:c0:98:a8:e9:51:5d:16:c6:3b:b6:53:41:88:7a:97:
dc:4c:2b:a3:fb:37:59:62:d8:9d:68:76:e2:fa:7e:bf:06:3e:
9e:67:49:fd:7e:b8:96:3f:04:d2:7c:9f:3b:ac:a2:10:61:fb:
9a:65:56:fb:0c:e0:5f:f6:4c:17:72:e3:05:1d:fe:f7:c4:96:
68:71:dd:0e:98:44:f8:04:a4:cc:aa:e8:01:ea:8d:cb:5e:76:
81:44:e1:bc:d0:dd:45:2c:d2:17:9f:2f:ed:73:75:37:27:f4:
1a:75:63:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 05:07:48 2025 by rpki-client