Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/F0XydtmdCM8y_Chl38UgJixPbBU.roa
File: F0XydtmdCM8y_Chl38UgJixPbBU.roa (raw, json)
Hash identifier: 5aCkUHT4W2zv8SrQmaqJe44Lk0aiXMsxlXiINqfcI1I=
Subject key identifier: 17:45:F2:76:D9:9D:08:CF:32:FC:28:65:DF:C5:20:26:2C:4F:6C:15
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0EC2
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/F0XydtmdCM8y_Chl38UgJixPbBU.roa
Signing time: Mon 10 Feb 2025 13:59:51 +0000
ROA not before: Mon 10 Feb 2025 13:59:51 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38843
IP address blocks: 223.27.46.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3778 (0xec2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Feb 10 13:59:51 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=1745F276D99D08CF32FC2865DFC520262C4F6C15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:5a:c8:44:79:0f:9d:a7:ee:a5:84:db:54:b5:
5f:62:95:23:23:cd:d9:ff:87:d3:9d:7a:53:58:06:
6d:c7:4a:39:11:71:b2:0a:7c:3d:23:1f:27:5c:de:
f9:d8:40:6c:4e:31:72:45:ed:3e:26:bf:12:62:fc:
6c:9b:0a:56:fb:97:06:16:5a:46:af:07:a0:cc:b9:
ef:38:00:2b:02:d3:f2:fe:fc:62:81:59:73:bb:5b:
61:5d:5b:95:a0:42:ee:80:d7:de:95:6a:d7:ba:d6:
8c:11:1e:18:bd:4f:03:e9:83:98:e4:f7:eb:18:60:
db:3c:36:94:5b:0a:54:96:44:fc:34:17:c7:60:72:
22:58:e7:24:7b:6e:c2:e3:a8:69:8d:ea:58:2d:9d:
c8:5b:d2:60:10:b0:05:49:1d:4d:99:29:e0:58:ed:
31:ba:58:a4:79:c5:2d:c1:cb:fc:a1:a0:63:fe:5f:
4c:75:ed:3f:22:f1:6d:1c:8f:01:98:c4:e6:dc:61:
67:90:c5:03:d9:64:d2:79:0f:49:5a:81:d3:2a:a1:
2e:56:74:d5:ab:9c:56:87:f2:50:50:84:0a:08:4a:
ea:49:8c:23:a8:d8:5d:92:c3:0d:77:d0:2c:81:c0:
f6:26:51:24:12:6c:82:ff:48:e5:63:8c:4a:da:1c:
4e:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:45:F2:76:D9:9D:08:CF:32:FC:28:65:DF:C5:20:26:2C:4F:6C:15
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/F0XydtmdCM8y_Chl38UgJixPbBU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.46.0/24
Signature Algorithm: sha256WithRSAEncryption
21:cb:5d:70:fb:bf:90:f5:9b:6a:74:e0:6b:9c:ab:93:8f:19:
84:62:36:88:a3:62:29:93:26:37:d6:25:c3:5f:48:9e:b7:ae:
37:84:cf:08:a7:59:29:fe:4c:93:83:a0:cb:e7:e2:2f:fa:b0:
f7:ac:e1:be:2c:85:6a:54:0a:5f:a8:68:e3:43:62:80:93:aa:
e5:7f:40:56:a8:8f:33:cb:e9:61:a4:14:31:26:0a:08:79:46:
9c:29:b7:cf:25:10:35:73:be:f5:0d:b9:f5:b6:37:e1:d2:83:
e9:9c:21:1b:4f:f8:11:96:8d:97:1a:62:58:14:02:2e:e4:89:
e5:b4:33:31:55:5d:a8:0e:55:23:57:4c:db:47:29:fe:88:0a:
6e:4e:36:f2:cf:cd:99:b3:f8:4a:6e:c3:2e:24:21:09:bb:82:
e4:d8:e1:65:72:4c:9f:02:18:b1:6c:80:e0:13:11:62:07:6a:
1d:db:88:86:5b:f2:58:7a:05:48:5e:f1:66:5c:46:fc:2b:29:
ac:e6:db:18:0b:4a:33:44:ac:9c:f7:ea:88:95:d2:94:ad:d2:
23:6b:25:b6:02:7a:f4:c5:44:9c:10:92:70:b7:37:20:ae:72:
d4:3e:2b:bb:52:75:b5:25:34:14:c5:97:3f:2b:51:9e:8e:d0:
49:82:b3:ce
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDsIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzRE
RDQzMjk2MUFDNDJENjQ0QUVBRjM0QjE0QUVDNzAyNzVCMDZBMzAeFw0yNTAyMTAx
MzU5NTFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDE3NDVGMjc2RDk5RDA4
Q0YzMkZDMjg2NURGQzUyMDI2MkM0RjZDMTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC2WshEeQ+dp+6lhNtUtV9ilSMjzdn/h9OdelNYBm3HSjkRcbIK
fD0jHydc3vnYQGxOMXJF7T4mvxJi/GybClb7lwYWWkavB6DMue84ACsC0/L+/GKB
WXO7W2FdW5WgQu6A196Vate61owRHhi9TwPpg5jk9+sYYNs8NpRbClSWRPw0F8dg
ciJY5yR7bsLjqGmN6lgtnchb0mAQsAVJHU2ZKeBY7TG6WKR5xS3By/yhoGP+X0x1
7T8i8W0cjwGYxObcYWeQxQPZZNJ5D0lagdMqoS5WdNWrnFaH8lBQhAoISupJjCOo
2F2Sww130CyBwPYmUSQSbIL/SOVjjEraHE65AgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUF0XydtmdCM8y/Chl38UgJixPbBUwHwYDVR0jBBgwFoAUNN1DKWGsQtZErq80
sUrscCdbBqMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFVNTy9O
TjFES1dHc1F0WkVycTgwc1Vyc2NDZGJCcU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L05OMURLV0dzUXRaRXJxODBzVXJzY0NkYkJxTS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL1BVTU8vRjBYeWR0bWRDTTh5X0NobDM4VWdK
aXhQYkJVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAN8bLjAN
BgkqhkiG9w0BAQsFAAOCAQEAIctdcPu/kPWbanTga5yrk48ZhGI2iKNiKZMmN9Yl
w19InreuN4TPCKdZKf5Mk4Ogy+fiL/qw96zhviyFalQKX6ho40NigJOq5X9AVqiP
M8vpYaQUMSYKCHlGnCm3zyUQNXO+9Q259bY34dKD6ZwhG0/4EZaNlxpiWBQCLuSJ
5bQzMVVdqA5VI1dM20cp/ogKbk428s/NmbP4Sm7DLiQhCbuC5NjhZXJMnwIYsWyA
4BMRYgdqHduIhlvyWHoFSF7xZlxG/CsprObbGAtKM0SsnPfqiJXSlK3SI2sltgJ6
9MVEnBCScLc3IK5y1D4ru1J1tSU0FMWXPytRno7QSYKzzg==
-----END CERTIFICATE-----
Generated at Tue Apr 8 08:08:25 2025 by rpki-client