Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/viOSFgILZdd60XGiWAsXzV72V5g.roa
File: viOSFgILZdd60XGiWAsXzV72V5g.roa (raw, json)
Hash identifier: G8ifW0dPMC4zApjB1JoCUO7gpjzAhwdpjaglYeBIh8I=
Subject key identifier: BE:23:92:16:02:0B:65:D7:7A:D1:71:A2:58:0B:17:CD:5E:F6:57:98
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 1232
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/viOSFgILZdd60XGiWAsXzV72V5g.roa
Signing time: Mon 26 Aug 2024 05:24:47 +0000
ROA not before: Mon 26 Aug 2024 05:24:47 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 135596
IP address blocks: 60.198.154.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4658 (0x1232)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Aug 26 05:24:47 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=BE239216020B65D77AD171A2580B17CD5EF65798
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:a6:0a:f4:df:15:8c:11:7f:17:22:f3:82:b3:
27:5a:00:9f:e3:56:01:a8:bc:2c:f0:fb:c4:58:15:
27:81:34:9b:c5:fd:8e:c8:bf:30:b1:fb:5d:bc:bd:
3d:a6:d1:ca:24:41:ed:40:92:41:54:d2:12:35:f4:
b9:b1:60:e5:27:41:93:cd:84:fa:53:42:44:ae:74:
c0:77:0f:84:40:4c:c9:5a:ed:1d:cf:a5:20:47:e2:
da:11:93:6f:ca:f3:9c:a9:f5:a9:89:a1:45:0f:e3:
14:95:35:27:ef:ee:e9:43:d5:c7:78:87:59:0c:c9:
de:b9:89:11:88:19:dd:9d:a8:18:f8:fc:20:cc:6e:
84:b3:8f:32:c2:c6:32:14:e5:69:4d:36:ea:92:0d:
6c:d5:99:ec:e1:71:fd:8b:d2:c3:93:e1:05:9e:10:
d8:d5:8b:d1:45:50:b3:5c:52:61:3f:fb:c0:35:6d:
d6:92:22:ae:0e:60:1d:08:8b:a0:d6:e1:9f:76:c3:
a7:66:63:2f:aa:8a:94:52:44:75:5c:c0:8c:a8:a3:
28:c9:c5:e0:66:dd:53:94:c0:98:83:ea:7f:d0:32:
7d:88:7e:95:c5:16:cd:83:51:bd:de:f2:46:ab:4e:
9a:7a:9c:2b:fc:6f:ee:86:5f:2e:52:1f:6f:c9:36:
55:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:23:92:16:02:0B:65:D7:7A:D1:71:A2:58:0B:17:CD:5E:F6:57:98
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/viOSFgILZdd60XGiWAsXzV72V5g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.198.154.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:2e:9f:50:4c:c3:07:c4:f2:69:00:52:17:45:ed:8e:41:85:
9a:4f:d9:0e:2b:48:50:84:7e:05:95:b6:d9:ca:ab:08:ec:ce:
57:12:22:35:1a:ba:43:15:ba:84:6b:8f:98:f6:ff:a9:a1:77:
b3:58:57:42:e2:bf:3e:ca:46:7a:df:a6:2a:4e:80:12:93:46:
a2:e7:3b:22:3a:9c:cc:eb:fb:cb:49:e9:47:b1:0a:1d:92:63:
34:87:71:8a:00:be:88:41:e0:7d:ea:f2:42:c7:2f:93:77:e3:
e0:95:92:21:b5:ef:69:44:af:bc:34:0b:29:a8:84:4e:0d:df:
05:f6:71:1b:af:89:0d:d1:e5:b5:30:fb:bb:2d:ba:07:0c:7f:
a8:14:c7:ad:94:c4:f4:24:01:ca:8e:23:f7:8e:16:3a:32:b6:
d3:e5:58:ca:24:0d:09:e2:99:14:27:fc:3c:b8:3b:3e:e6:13:
0b:38:93:27:64:de:84:01:1d:78:22:8b:fa:3a:bc:03:ea:12:
50:9e:e0:4d:28:ed:e1:0b:6e:a0:8d:4c:72:fa:b3:71:6c:96:
c5:38:7c:e9:84:11:f9:70:91:bc:ee:55:94:7c:48:1e:95:53:
77:bc:98:84:39:5c:4a:c7:2b:40:84:2e:23:b5:8c:7a:bd:16:
0d:93:f5:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 12:01:56 2025 by rpki-client