Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/wz10711noc-w53cbPuMLLImOrNk.roa
File: wz10711noc-w53cbPuMLLImOrNk.roa (raw, json)
Hash identifier: 7L/RSghnYw8mS8BjlKTwQJoAY4kscH0Xn7fy0p3/5F4=
Subject key identifier: C3:3D:74:EF:5D:67:A1:CF:B0:E7:77:1B:3E:E3:0B:2C:89:8E:AC:D9
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 11D8
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/wz10711noc-w53cbPuMLLImOrNk.roa
Signing time: Mon 26 Aug 2024 05:24:26 +0000
ROA not before: Mon 26 Aug 2024 05:24:26 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131634
IP address blocks: 124.108.174.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4568 (0x11d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Aug 26 05:24:26 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=C33D74EF5D67A1CFB0E7771B3EE30B2C898EACD9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:4e:0b:f2:d4:c3:24:75:29:b7:1f:00:b8:5b:
38:1d:19:c4:3d:46:6b:6b:74:c8:dd:33:99:61:51:
a6:cd:7a:67:48:63:35:96:2a:d3:c8:6a:83:ba:c7:
1d:e6:fc:a5:f6:5a:8b:03:df:99:8c:b7:26:ac:7a:
6f:0e:0a:61:ad:0c:17:a5:a8:79:11:9e:6e:14:91:
4e:30:01:96:06:16:be:51:09:e1:66:6e:bd:20:ac:
6b:6e:d3:57:6e:a5:56:44:ee:04:7f:5f:d9:56:c2:
19:63:8a:7b:58:52:5d:c7:b4:8e:e7:8e:c2:82:ba:
c2:42:d8:d6:f8:ec:fc:91:04:58:03:fb:50:14:c4:
5e:2e:ae:09:e3:be:ce:93:23:98:a3:83:3f:d8:f4:
94:2b:9b:74:c3:0e:e4:af:e4:ce:bc:43:63:e1:dd:
de:22:f2:b1:13:12:1e:53:68:f5:28:0b:b7:26:30:
36:40:f6:b7:a4:1b:df:ac:94:3e:f5:10:98:e6:60:
9e:c0:68:dd:31:45:9a:d6:ff:8c:a5:61:50:23:b6:
00:3d:f0:d0:df:6b:1b:70:2f:25:a4:68:6c:5d:b0:
aa:1c:aa:e0:07:59:60:67:d6:1f:7f:bd:fa:db:30:
90:d5:6e:80:3e:89:a5:da:0d:f2:f7:10:c7:18:ec:
ad:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:3D:74:EF:5D:67:A1:CF:B0:E7:77:1B:3E:E3:0B:2C:89:8E:AC:D9
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/wz10711noc-w53cbPuMLLImOrNk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.108.174.0/24
Signature Algorithm: sha256WithRSAEncryption
06:ea:b5:e3:9b:39:e0:54:4b:ee:51:e9:60:a8:eb:02:e8:6e:
c2:2b:f5:bf:79:ee:38:66:f9:55:88:44:9b:e9:93:cb:a2:aa:
19:ef:25:c3:f9:cf:9c:24:87:cd:3c:4c:a9:9f:cd:7f:c7:d4:
40:58:e5:10:2a:ce:b8:0d:74:61:6e:ce:99:39:27:f5:b9:73:
a3:bc:42:19:d8:80:8a:79:c4:3b:73:41:18:8d:db:02:0a:a9:
65:81:2e:6f:8f:8d:8d:af:f8:25:59:61:31:55:19:b9:78:91:
f1:0b:c6:07:b3:0d:48:91:3c:9e:5a:63:d0:af:41:52:17:6b:
1d:2d:09:1e:a4:fe:30:aa:53:3e:86:56:ef:6a:84:95:7f:f7:
0e:b4:02:e0:5a:36:af:25:83:19:b1:b8:9d:1c:72:8b:78:00:
cc:6b:3d:03:c6:1a:a9:a9:15:95:1d:09:72:1a:99:17:47:3e:
1b:e9:93:5a:a2:26:88:4f:3c:35:81:c2:0d:dc:6e:66:e4:0c:
70:9f:9b:89:8f:b4:95:c2:2a:5d:50:91:2b:a9:a3:31:8a:ac:
39:19:f6:05:10:d8:1c:17:b3:34:87:f4:73:95:7b:a7:74:1b:
c8:f2:d4:06:47:07:8f:d3:d6:3b:71:bc:e0:55:8f:d9:ab:e4:
30:ff:3d:03
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICEdgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNDA4MjYw
NTI0MjZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEMzM0Q3NEVGNUQ2N0Ex
Q0ZCMEU3NzcxQjNFRTMwQjJDODk4RUFDRDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCmTgvy1MMkdSm3HwC4WzgdGcQ9RmtrdMjdM5lhUabNemdIYzWW
KtPIaoO6xx3m/KX2WosD35mMtyasem8OCmGtDBelqHkRnm4UkU4wAZYGFr5RCeFm
br0grGtu01dupVZE7gR/X9lWwhljintYUl3HtI7njsKCusJC2Nb47PyRBFgD+1AU
xF4urgnjvs6TI5ijgz/Y9JQrm3TDDuSv5M68Q2Ph3d4i8rETEh5TaPUoC7cmMDZA
9rekG9+slD71EJjmYJ7AaN0xRZrW/4ylYVAjtgA98NDfaxtwLyWkaGxdsKocquAH
WWBn1h9/vfrbMJDVboA+iaXaDfL3EMcY7K01AgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUwz10711noc+w53cbPuMLLImOrNkwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvd3oxMDcxMW5vYy13NTNj
YlB1TUxMSW1Pck5rLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
AHxsrjANBgkqhkiG9w0BAQsFAAOCAQEABuq145s54FRL7lHpYKjrAuhuwiv1v3nu
OGb5VYhEm+mTy6KqGe8lw/nPnCSHzTxMqZ/Nf8fUQFjlECrOuA10YW7OmTkn9blz
o7xCGdiAinnEO3NBGI3bAgqpZYEub4+Nja/4JVlhMVUZuXiR8QvGB7MNSJE8nlpj
0K9BUhdrHS0JHqT+MKpTPoZW72qElX/3DrQC4Fo2ryWDGbG4nRxyi3gAzGs9A8Ya
qakVlR0JchqZF0c+G+mTWqImiE88NYHCDdxuZuQMcJ+biY+0lcIqXVCRK6mjMYqs
ORn2BRDYHBezNIf0c5V7p3QbyPLUBkcHj9PWO3G84FWP2avkMP89Aw==
-----END CERTIFICATE-----
Generated at Wed Apr 9 11:54:03 2025 by rpki-client