Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/9dafJqO-M00ZzViZVjULKwMWnA8.roa
File: 9dafJqO-M00ZzViZVjULKwMWnA8.roa (raw, json)
Hash identifier: CTGoGTGpgELgjwnQ+pD0k5CUCdodWDreQOjotJPapL4=
Subject key identifier: F5:D6:9F:26:A3:BE:33:4D:19:CD:58:99:56:35:0B:2B:03:16:9C:0F
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0EB0
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/9dafJqO-M00ZzViZVjULKwMWnA8.roa
Signing time: Mon 10 Feb 2025 13:59:47 +0000
ROA not before: Mon 10 Feb 2025 13:59:47 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38843
IP address blocks: 223.27.56.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3760 (0xeb0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Feb 10 13:59:47 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=F5D69F26A3BE334D19CD589956350B2B03169C0F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:e9:c6:c0:bd:fa:ad:c4:5f:0d:74:79:1f:fb:
39:4f:cc:d9:44:9a:5f:cc:87:3e:9c:27:0c:97:17:
dd:2f:be:bb:50:f5:f3:a9:ae:32:3e:ac:10:6a:2a:
bd:57:37:98:26:d9:ba:cb:81:a8:85:99:3f:0e:30:
53:79:bc:d9:4d:3d:42:45:11:b0:eb:d0:db:9b:3e:
93:8f:82:41:65:65:d5:08:fe:1b:13:40:a6:2e:4b:
f6:a6:d1:41:37:6c:21:25:79:c0:59:18:ac:e2:9c:
60:fd:1b:c1:d7:4a:2e:cf:d2:e9:d6:d0:11:87:8c:
4e:e8:8f:60:5b:c4:6f:b9:27:af:6b:2a:94:c5:0a:
32:49:4c:3e:1f:a1:f5:18:2b:af:e7:5f:cb:b5:41:
68:5d:cd:7c:7f:d0:e5:44:ba:08:1c:7b:c9:d3:4a:
21:28:51:6c:15:a0:ed:49:9f:80:96:31:3f:db:3b:
c3:c4:60:c5:ff:6d:96:5a:da:98:9e:f3:9e:fe:f9:
2d:13:89:de:b9:86:1a:49:b8:86:95:83:db:c4:30:
ec:f8:42:70:5a:5c:83:3b:69:0e:db:a3:06:80:ab:
09:a0:fa:d3:e7:62:6f:3d:e1:cf:34:ab:82:16:38:
f3:0a:bd:47:6d:57:10:e1:0c:a6:6f:84:5e:1f:71:
c3:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:D6:9F:26:A3:BE:33:4D:19:CD:58:99:56:35:0B:2B:03:16:9C:0F
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/9dafJqO-M00ZzViZVjULKwMWnA8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.56.0/21
Signature Algorithm: sha256WithRSAEncryption
93:0a:86:3b:10:67:69:9e:5b:7b:bb:6b:28:fa:0a:12:d0:ac:
f3:d0:4b:c2:d4:53:9b:f7:15:74:51:0e:ff:a3:c5:b2:0a:18:
4d:24:1b:32:b5:3f:06:28:f6:05:6f:a6:33:5c:73:7c:a1:1f:
53:96:16:ea:7f:2b:9c:d6:13:e3:79:ea:9b:39:94:4f:9e:57:
6d:c8:f0:e8:1a:73:be:e4:93:9b:46:c7:3e:03:23:88:17:2d:
39:7f:f9:d2:4a:a5:f9:03:e9:54:c1:cb:df:17:32:10:04:7c:
c0:31:96:59:95:aa:df:3a:1d:19:7e:36:28:37:f2:99:30:b6:
81:31:dd:5b:62:4d:b5:61:de:a4:e4:2b:b2:e3:1e:b2:4b:57:
0d:75:a8:60:38:93:19:9e:ca:3a:fb:a1:20:28:7e:25:a4:e2:
ae:62:35:3e:c1:24:e2:e5:d0:49:79:26:bc:34:39:2b:6d:d0:
5a:4f:c1:9b:d5:1f:1e:09:47:e2:a0:ce:44:2f:c0:2f:d8:f1:
5d:84:bd:d9:19:f6:97:f6:2d:f0:b2:83:9e:dc:eb:b9:0e:81:
c5:62:a3:d6:8b:26:db:2c:1a:8f:73:4b:6c:6e:9b:ff:0c:da:
9a:72:f2:d1:db:37:1d:07:dd:cb:b2:21:ac:14:77:dd:14:64:
02:1b:61:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 08:05:41 2025 by rpki-client