Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/1_4XcXUMVtBSJGO8s1AAZteBWCM.roa
File: 1_4XcXUMVtBSJGO8s1AAZteBWCM.roa (raw, json)
Hash identifier: R7SAnTFnCLR5L/072RGlhlnDC6dzLCBJ5WbQ4X29ynU=
Subject key identifier: D7:FE:17:71:75:0C:56:D0:52:24:63:BC:B3:50:00:66:D7:81:58:23
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0EC7
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/1_4XcXUMVtBSJGO8s1AAZteBWCM.roa
Signing time: Mon 10 Feb 2025 13:59:52 +0000
ROA not before: Mon 10 Feb 2025 13:59:52 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38843
IP address blocks: 223.27.55.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3783 (0xec7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Feb 10 13:59:52 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=D7FE1771750C56D0522463BCB3500066D7815823
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:bf:df:5e:a0:a1:86:e8:3d:c4:5d:20:36:d4:
12:ac:24:cf:1e:74:53:03:18:9c:e5:c9:32:57:28:
9e:b4:30:30:4d:97:fe:41:ac:28:40:02:ef:66:69:
57:b1:06:ba:02:80:4e:a4:4c:60:67:a1:0a:73:2f:
ec:d2:52:84:65:e6:5d:56:8e:dc:9f:0c:55:08:99:
0f:57:68:8f:cd:82:2c:72:35:1c:7b:fd:10:ba:44:
8a:81:10:8a:15:9f:e7:f1:bb:4c:10:3e:f7:7b:e9:
bd:80:7e:20:65:b8:2a:53:3f:59:0b:8e:4d:1c:87:
ec:54:dc:f4:39:f8:34:45:cf:85:1f:de:db:ff:f5:
4e:d6:4c:31:4a:4a:ab:29:2e:81:33:a7:65:b8:b6:
e4:80:73:5b:a7:ea:fa:e8:62:35:dd:d4:11:81:9a:
ab:70:9c:be:81:c1:c5:9f:ed:6f:6f:0a:6c:1f:41:
7c:9b:73:76:81:ce:73:18:50:b4:c2:dc:69:43:39:
dd:25:60:10:35:e0:58:b1:bc:03:fb:50:c5:48:3a:
be:0f:d9:cd:6d:75:2c:9a:27:b3:a2:61:d2:0f:bd:
63:40:64:01:20:c7:33:de:80:4b:d6:c6:9c:f8:ac:
bd:92:50:78:e3:9c:66:d7:31:e0:9e:e3:a6:55:41:
df:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:FE:17:71:75:0C:56:D0:52:24:63:BC:B3:50:00:66:D7:81:58:23
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/1_4XcXUMVtBSJGO8s1AAZteBWCM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.55.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:43:69:36:fd:10:9a:0a:d0:4a:70:3b:81:a7:2a:53:c9:5a:
39:58:93:4d:c2:e1:2c:9d:b9:27:48:ad:ac:e0:b3:01:88:a9:
68:9b:ea:ed:bf:24:1f:7c:9f:b4:75:97:c9:2b:bb:11:b9:a3:
b6:d8:88:07:94:6b:63:ab:e0:2b:25:50:92:62:3c:66:c5:61:
1b:6e:98:d5:a2:79:2a:c4:92:55:36:9d:b6:74:f4:69:f3:50:
72:14:b9:e6:a6:77:9e:2c:04:aa:26:f1:59:b4:89:bb:e7:a0:
1e:eb:8e:41:7b:6f:e4:14:61:c6:d1:de:40:a6:d4:93:ef:d0:
fd:80:c2:03:6d:43:f9:6d:2f:a1:99:ce:3e:15:3b:9e:c5:07:
1f:89:6a:ff:e2:4b:d7:68:b2:f4:3f:27:fa:81:fd:80:0e:f5:
3f:ea:5a:0b:d5:ad:0b:89:b5:9a:19:16:49:ba:da:dc:e3:ea:
3c:68:ca:c4:40:32:88:82:2a:37:71:ec:e8:7c:41:c5:b2:9a:
43:ed:54:85:45:0f:55:aa:33:58:b8:b0:31:e5:99:82:a5:68:
93:25:0c:01:48:85:53:76:87:5e:ca:2d:f3:93:8a:a8:3a:e7:
50:6f:eb:fd:8c:4c:4a:de:92:84:ba:5a:22:98:fe:e9:9b:f6:
da:91:1b:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 08:04:35 2025 by rpki-client