Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/4VJTmCltXe5GxG_hnnwGy6BoxoA.roa
File: 4VJTmCltXe5GxG_hnnwGy6BoxoA.roa (raw, json)
Hash identifier: dYPMaQDk+zXBOfMfcTbqt2Zphmif+gw9CzjrqOJj4bI=
Subject key identifier: E1:52:53:98:29:6D:5D:EE:46:C4:6F:E1:9E:7C:06:CB:A0:68:C6:80
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0EBC
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/4VJTmCltXe5GxG_hnnwGy6BoxoA.roa
Signing time: Mon 10 Feb 2025 13:59:50 +0000
ROA not before: Mon 10 Feb 2025 13:59:50 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38843
IP address blocks: 223.27.48.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3772 (0xebc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Feb 10 13:59:50 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=E1525398296D5DEE46C46FE19E7C06CBA068C680
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:55:9c:ca:ae:d8:89:ff:c8:6f:e3:d1:ec:eb:
24:01:3c:95:00:fb:20:1a:cf:69:d0:c1:a4:a1:14:
2f:51:34:13:ac:56:3b:01:57:d8:41:38:25:87:0a:
cc:00:3a:0a:6d:aa:f5:95:ec:5e:ad:86:f2:13:75:
c7:67:bb:76:ad:62:0b:be:a5:46:de:88:05:f4:fa:
6e:b5:59:40:04:71:bc:78:dd:ee:e1:12:75:66:5d:
61:24:41:1a:3d:bd:59:1b:91:66:af:c3:b9:1a:1f:
1f:7c:6a:72:97:4f:03:b4:dd:6e:b0:9f:13:d7:e0:
ed:78:63:1d:30:04:40:ac:4c:cb:1a:32:bc:59:05:
48:fa:0a:6c:6e:1f:42:b2:43:6f:97:7a:98:4b:3c:
18:0e:50:3f:58:08:77:8e:06:6c:90:60:22:4e:22:
21:17:32:69:f4:75:65:1c:0c:3d:ce:a4:5b:23:28:
9b:8d:57:37:9a:e4:66:c0:be:6f:43:cb:05:a9:1f:
9a:ed:c4:a3:10:9b:d7:95:d9:7b:2f:32:11:d2:34:
8d:73:c6:72:16:75:92:e4:78:25:eb:99:30:75:92:
3e:36:a8:c3:4b:6e:97:1b:1c:45:dc:04:d1:69:1c:
cd:95:20:d8:31:ba:df:d2:96:63:a4:ac:d8:bc:77:
a6:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:52:53:98:29:6D:5D:EE:46:C4:6F:E1:9E:7C:06:CB:A0:68:C6:80
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/4VJTmCltXe5GxG_hnnwGy6BoxoA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.48.0/20
Signature Algorithm: sha256WithRSAEncryption
4e:33:27:e8:cd:b3:f4:73:ea:68:82:70:51:8e:49:86:ba:e2:
7e:4a:15:32:e4:25:62:2f:ca:c0:32:56:20:f8:83:c9:09:25:
e4:07:7b:f9:d4:aa:0f:91:8e:74:fb:7e:ba:02:11:24:82:75:
ab:8a:a2:27:e0:7b:2e:27:29:4b:60:bf:ba:70:c1:93:bc:c4:
db:a6:5a:a0:9b:ff:08:37:90:ba:6b:6d:7d:ff:17:53:45:6f:
fc:db:4c:56:4c:30:b2:5c:8e:95:3f:7c:ec:73:4e:ca:64:6c:
92:37:ad:65:59:38:5f:18:51:9b:08:d4:1c:f8:6d:2b:d8:8c:
17:83:b0:62:c7:9e:2d:f2:84:9c:f3:09:8c:34:34:56:49:c8:
a3:d7:bb:55:b4:dd:63:c7:b4:6d:92:24:da:98:37:8b:25:fb:
f0:e2:5e:4e:db:ec:a3:2c:c3:af:f9:ff:e3:58:1a:78:c9:52:
c7:5c:55:06:b0:3a:6e:a5:59:af:56:ef:5d:94:70:3c:c5:34:
94:84:58:ed:01:ee:bb:96:e6:6e:d0:9d:4f:fe:de:d3:85:cb:
aa:0e:e5:43:fd:7d:20:bd:cf:bd:73:a0:8b:18:8a:c3:2c:35:
73:ae:58:96:ad:9f:f2:82:1c:47:a8:6b:19:64:83:da:61:64:
9e:16:14:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 08:05:40 2025 by rpki-client