Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/xcnZwUa4xnOgt6k5Vpr73QYvBCE.roa
File: xcnZwUa4xnOgt6k5Vpr73QYvBCE.roa (raw, json)
Hash identifier: LE22I5RPpKV7Hsq49tCbvQSzY6XoZE3pi969GuPSNsk=
Subject key identifier: C5:C9:D9:C1:46:B8:C6:73:A0:B7:A9:39:56:9A:FB:DD:06:2F:04:21
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 11DA
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/xcnZwUa4xnOgt6k5Vpr73QYvBCE.roa
Signing time: Mon 26 Aug 2024 05:24:27 +0000
ROA not before: Mon 26 Aug 2024 05:24:27 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9924
IP address blocks: 61.57.0.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4570 (0x11da)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Aug 26 05:24:27 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=C5C9D9C146B8C673A0B7A939569AFBDD062F0421
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:1b:89:93:d0:36:52:22:19:4a:20:a4:f9:48:
99:29:3d:44:84:b0:1b:82:36:48:7b:92:bf:85:2a:
41:3c:46:84:86:de:0e:3e:9e:bb:6b:9d:c6:16:d2:
49:e7:a5:1f:32:e0:ba:2b:29:fb:1b:e8:1a:dd:8d:
92:5e:20:cc:a3:de:ce:36:cb:98:de:b7:0c:b7:20:
3f:2f:f0:92:0b:c8:a9:53:9b:33:b1:6a:5f:b6:c0:
e8:85:7e:3d:91:4a:e3:e5:81:c6:bb:66:54:21:eb:
bc:50:51:71:7e:43:18:a7:82:f2:c5:3f:11:e7:75:
9c:44:59:ad:fd:75:d2:9c:ba:64:56:ae:02:a4:4f:
39:2c:6a:78:fe:32:5c:89:1b:4a:9d:a3:7f:7f:1c:
2d:7b:e6:c0:38:8a:82:9f:02:57:ae:88:6e:5a:3c:
39:3b:5e:e7:db:00:53:70:9d:ef:00:e0:34:ef:14:
ce:1a:47:aa:1d:81:56:ab:db:28:ce:ba:d1:01:fd:
25:49:eb:37:65:ee:0d:05:23:d3:de:b7:a1:e7:8f:
71:51:e4:17:85:53:28:02:54:79:12:50:47:08:43:
e9:04:f7:86:2a:d0:7e:6b:0f:5e:80:96:7d:ec:1c:
a5:a6:26:50:96:84:88:cb:db:39:82:7e:e6:aa:cb:
ea:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:C9:D9:C1:46:B8:C6:73:A0:B7:A9:39:56:9A:FB:DD:06:2F:04:21
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/xcnZwUa4xnOgt6k5Vpr73QYvBCE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.57.0.0/19
Signature Algorithm: sha256WithRSAEncryption
15:13:e9:b6:ed:b3:e7:ec:fa:ea:e8:58:56:02:d8:e4:c6:c4:
6c:64:68:c4:6f:0d:a7:e6:99:4e:43:79:34:2d:8a:d6:53:db:
3e:cd:39:58:41:16:2a:3b:2e:5a:bf:d6:a7:b2:89:9a:41:c7:
96:0d:51:60:70:de:7e:d4:ff:ed:0c:1f:73:79:46:42:79:13:
d0:1c:39:85:cc:a6:5e:29:44:e2:b6:23:3e:8a:d3:9f:f2:2c:
de:07:db:cd:67:de:97:ed:de:36:0b:95:88:ff:72:4c:48:f8:
8e:8a:b6:ea:98:42:0c:36:33:d6:e7:8e:b0:4a:45:b0:ad:09:
e5:f3:b8:82:15:2e:17:d7:53:cc:55:a1:56:62:e5:46:5e:68:
89:c7:ae:02:91:8f:e3:d8:c1:28:66:1b:04:40:0c:68:03:13:
cf:2e:05:9f:aa:4a:ce:b8:20:f7:5e:3b:70:d3:a4:a6:41:49:
a5:db:4d:84:9b:b6:40:9a:d9:da:e5:1c:b0:c3:09:1f:28:87:
48:8a:b3:b3:37:fc:34:de:0d:a9:c4:1b:07:e7:c7:7e:09:2f:
c2:56:88:cc:41:84:f5:3f:52:41:3a:df:af:48:aa:5d:26:27:
94:f3:ca:ed:2b:18:17:c2:f8:02:cf:92:5c:c6:5c:95:65:65:
ee:1d:ce:55
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICEdowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNDA4MjYw
NTI0MjdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEM1QzlEOUMxNDZCOEM2
NzNBMEI3QTkzOTU2OUFGQkREMDYyRjA0MjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCsG4mT0DZSIhlKIKT5SJkpPUSEsBuCNkh7kr+FKkE8RoSG3g4+
nrtrncYW0knnpR8y4LorKfsb6BrdjZJeIMyj3s42y5jetwy3ID8v8JILyKlTmzOx
al+2wOiFfj2RSuPlgca7ZlQh67xQUXF+QxingvLFPxHndZxEWa39ddKcumRWrgKk
Tzksanj+MlyJG0qdo39/HC175sA4ioKfAleuiG5aPDk7XufbAFNwne8A4DTvFM4a
R6odgVar2yjOutEB/SVJ6zdl7g0FI9Pet6Hnj3FR5BeFUygCVHkSUEcIQ+kE94Yq
0H5rD16Aln3sHKWmJlCWhIjL2zmCfuaqy+rPAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUxcnZwUa4xnOgt6k5Vpr73QYvBCEwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQveGNuWndVYTR4bk9ndDZr
NVZwcjczUVl2QkNFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
BT05ADANBgkqhkiG9w0BAQsFAAOCAQEAFRPptu2z5+z66uhYVgLY5MbEbGRoxG8N
p+aZTkN5NC2K1lPbPs05WEEWKjsuWr/Wp7KJmkHHlg1RYHDeftT/7Qwfc3lGQnkT
0Bw5hcymXilE4rYjPorTn/Is3gfbzWfel+3eNguViP9yTEj4joq26phCDDYz1ueO
sEpFsK0J5fO4ghUuF9dTzFWhVmLlRl5oiceuApGP49jBKGYbBEAMaAMTzy4Fn6pK
zrgg9147cNOkpkFJpdtNhJu2QJrZ2uUcsMMJHyiHSIqzszf8NN4NqcQbB+fHfgkv
wlaIzEGE9T9SQTrfr0iqXSYnlPPK7SsYF8L4As+SXMZclWVl7h3OVQ==
-----END CERTIFICATE-----
Generated at Wed Apr 9 12:20:29 2025 by rpki-client