Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/7xjjfPOSailggY-btWVg0jPqq0E.roa
File: 7xjjfPOSailggY-btWVg0jPqq0E.roa (raw, json)
Hash identifier: Ak6atKHixjrk6kt7hEVzSJgUwIde8OakGgtKEhu93Cc=
Subject key identifier: EF:18:E3:7C:F3:92:6A:29:60:81:8F:9B:B5:65:60:D2:33:EA:AB:41
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0EAB
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/7xjjfPOSailggY-btWVg0jPqq0E.roa
Signing time: Mon 10 Feb 2025 13:59:45 +0000
ROA not before: Mon 10 Feb 2025 13:59:45 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38843
IP address blocks: 124.150.134.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3755 (0xeab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Feb 10 13:59:45 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=EF18E37CF3926A2960818F9BB56560D233EAAB41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:4b:db:70:eb:53:70:3d:ac:d8:a6:63:40:54:
52:50:2e:6a:8f:14:51:64:6e:fe:86:0e:04:ac:ed:
86:5a:e3:38:95:45:cf:de:0d:e0:18:99:69:d7:2d:
a3:64:39:11:6f:af:25:f2:f9:bd:e0:e0:4c:b9:c4:
77:e4:c2:9a:5b:79:f2:eb:40:d4:b1:36:c9:7a:08:
07:44:d9:c6:e8:5a:b0:1d:e6:2a:7e:46:53:b2:83:
d9:c4:44:44:3a:99:9b:77:c9:c5:0a:cb:9c:c5:1a:
4e:a9:7e:d7:28:08:6f:8b:5d:d4:a9:b3:06:0d:b7:
98:9e:55:a0:26:3a:02:ac:3d:de:e0:e0:fd:66:10:
70:89:1d:20:24:cd:2f:96:97:2c:c6:c6:d8:0f:f4:
c3:26:aa:00:7b:84:66:d2:a7:c8:6f:62:8d:71:84:
d5:eb:0f:ca:ea:f6:f6:5e:4b:ea:10:1b:e8:9c:93:
78:94:36:54:5b:38:49:f5:85:50:01:93:4b:10:5a:
19:17:9a:e0:96:e6:a1:a0:99:db:3b:72:a3:6b:25:
c4:ad:85:d8:8f:09:09:45:22:eb:ba:fc:9e:2e:98:
d6:6d:f6:56:b3:39:3e:2d:2b:85:d4:47:69:0b:32:
8d:22:bd:12:9d:38:10:d8:af:15:e0:63:c8:3a:3b:
d2:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:18:E3:7C:F3:92:6A:29:60:81:8F:9B:B5:65:60:D2:33:EA:AB:41
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/7xjjfPOSailggY-btWVg0jPqq0E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.150.134.0/24
Signature Algorithm: sha256WithRSAEncryption
39:c3:2e:63:7a:36:ba:89:17:5c:75:65:a3:16:79:56:5e:56:
d8:3a:9c:a7:8d:5e:f5:f4:d6:18:61:c9:15:25:eb:7d:83:8f:
ec:f7:e8:9d:49:b4:86:d5:ff:8c:4f:b1:b8:df:de:cf:a1:af:
46:81:81:65:a3:09:50:90:c4:5f:d3:d6:4c:0a:79:ea:ed:50:
f6:27:8a:0d:bf:6a:68:34:b7:d7:30:3b:c7:f6:b7:5a:bf:37:
ad:41:16:1e:76:d2:3c:1d:ac:fd:f9:77:f0:08:34:37:01:c7:
8c:59:81:00:09:2f:4b:2d:68:c6:12:ec:3e:0a:07:6c:ab:a6:
30:2b:13:20:5a:de:a3:37:64:2c:89:a1:d4:2f:63:3a:2b:9e:
41:55:4d:9f:48:2f:9a:07:c7:b5:1f:f0:3c:b9:a7:2f:bc:5c:
64:5e:da:d0:3f:fd:15:d4:f1:82:7e:98:05:a5:1e:da:67:e8:
06:a2:05:1a:49:b1:c5:69:f6:07:48:b1:46:ec:67:ef:02:2d:
46:e8:d2:f2:41:a0:96:84:c1:d2:cc:59:f2:5e:d9:86:e5:6e:
8d:c6:ef:da:cb:fd:a5:12:41:97:dc:ca:a6:e8:77:f0:b4:ae:
fd:5d:bc:dd:9d:a1:e7:d5:db:53:c4:a0:59:19:cc:27:53:b1:
1b:34:db:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 08:08:25 2025 by rpki-client