Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/5Iax4iqAI7l2UjkT-WVKTTYCdnA.roa
File: 5Iax4iqAI7l2UjkT-WVKTTYCdnA.roa (raw, json)
Hash identifier: vI9UCobZzt+Bnra6lSyuBW9BD4KydKFOIQuXvYQsGWM=
Subject key identifier: E4:86:B1:E2:2A:80:23:B9:76:52:39:13:F9:65:4A:4D:36:02:76:70
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0EA8
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/5Iax4iqAI7l2UjkT-WVKTTYCdnA.roa
Signing time: Mon 10 Feb 2025 13:59:45 +0000
ROA not before: Mon 10 Feb 2025 13:59:45 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38843
IP address blocks: 223.27.32.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3752 (0xea8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Feb 10 13:59:45 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=E486B1E22A8023B976523913F9654A4D36027670
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:38:ad:38:04:0f:e8:3f:04:91:f2:74:95:9d:
58:9d:29:8e:a0:6e:5c:3c:54:16:62:27:ae:4b:ff:
8b:ef:cb:a6:88:01:d4:47:a3:cb:fe:ec:02:00:5b:
9b:42:60:4a:37:e1:40:ed:2e:22:21:c2:a4:36:73:
d7:f6:1c:b1:19:e8:c2:2c:92:82:b0:8f:24:f5:b0:
ef:57:eb:e0:8f:fa:b3:92:b5:03:21:50:c5:e4:3f:
49:62:f4:1f:98:81:3d:6f:ba:95:35:05:3c:0c:29:
48:14:4c:80:0a:fb:c3:c3:42:1a:e9:e0:e0:f1:e0:
35:b1:01:ab:f4:31:9d:76:2f:cc:d8:e9:6e:69:2f:
00:ed:ee:92:37:c7:b6:8a:6a:7f:da:97:6c:a7:ff:
ff:b7:76:33:8b:ef:2d:f8:c0:a9:ba:76:1b:04:4a:
eb:0e:5a:13:67:e7:f0:57:69:a9:4a:d5:a9:d7:13:
39:c4:af:af:63:75:25:aa:3f:89:c0:ec:5a:c0:ce:
f6:c1:21:92:57:23:98:24:43:63:47:26:1d:af:ea:
d6:be:84:10:e3:12:7b:3e:23:aa:fa:23:a9:eb:92:
58:17:5e:3f:d7:18:21:99:41:62:32:44:ac:7c:5e:
51:cf:81:ff:77:e0:bd:2a:9a:38:e2:1e:50:a9:ad:
2b:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:86:B1:E2:2A:80:23:B9:76:52:39:13:F9:65:4A:4D:36:02:76:70
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/5Iax4iqAI7l2UjkT-WVKTTYCdnA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.32.0/19
Signature Algorithm: sha256WithRSAEncryption
67:d7:4b:e8:c6:32:4a:af:b6:77:e9:67:e2:79:10:c7:d3:d6:
3e:b9:f1:82:d0:e3:38:4f:12:05:09:47:0b:ee:5f:b0:d0:7a:
f1:d6:a6:76:07:8c:15:6e:79:8a:f0:28:aa:27:c5:4d:7a:43:
49:0e:18:20:be:e4:65:3c:fd:c2:00:0a:14:96:93:b3:0d:1b:
24:27:3e:db:86:52:72:78:32:71:fb:09:cd:02:1f:d2:fb:e6:
28:18:32:03:ef:0b:db:09:cf:5a:68:c6:4b:a9:11:37:7d:79:
f7:79:19:1f:54:d6:ab:08:46:84:6d:f2:b0:c2:29:c2:93:48:
93:ef:95:81:2e:86:bd:3c:69:86:0f:40:ee:f8:df:b2:84:22:
7d:58:39:61:c9:ad:d4:63:8a:d3:48:59:33:a9:a2:47:1b:6b:
2b:7c:8b:3f:d0:88:55:8a:fd:f1:f0:39:c5:f4:d9:d7:63:61:
77:66:f7:4f:8f:21:fb:6d:62:46:ec:a7:3e:ae:16:a6:c2:6b:
49:10:f1:b2:f7:f8:ac:c8:de:bb:2a:c3:6f:6e:e3:4a:3c:94:
8b:ec:df:bd:55:49:5a:ee:ff:94:fe:95:74:c2:14:51:60:19:
89:a2:e8:a7:91:cf:a1:a7:67:b5:2a:a0:25:a7:cb:16:39:6b:
b1:13:96:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 08:04:34 2025 by rpki-client