Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/FauKubIzX0Ytuy-1BLyARVNYS-8.roa
File: FauKubIzX0Ytuy-1BLyARVNYS-8.roa (raw, json)
Hash identifier: 2X3ZTHdcC6IMaJ8YH01DzeB2WfrGecsYvot3CwhR3Y0=
Subject key identifier: 15:AB:8A:B9:B2:33:5F:46:2D:BB:2F:B5:04:BC:80:45:53:58:4B:EF
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0EC0
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/FauKubIzX0Ytuy-1BLyARVNYS-8.roa
Signing time: Mon 10 Feb 2025 13:59:51 +0000
ROA not before: Mon 10 Feb 2025 13:59:51 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38843
IP address blocks: 124.150.131.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3776 (0xec0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Feb 10 13:59:51 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=15AB8AB9B2335F462DBB2FB504BC804553584BEF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:38:86:95:e5:83:4b:67:29:b3:c9:78:ad:e4:
9e:67:a1:e8:c2:61:76:6b:1f:66:06:bc:53:3c:e5:
de:3f:a9:f6:38:87:b6:03:bc:89:02:bd:16:27:a5:
c0:ab:70:83:5c:d6:85:e4:4a:ee:cc:f8:b4:e7:af:
24:62:37:a5:fa:fa:fe:2a:8c:61:ef:d7:67:d4:8a:
14:58:94:35:c5:6e:94:a4:4c:c2:2f:a5:f7:a2:3f:
cf:76:10:71:76:76:12:65:0e:00:8c:4b:e0:87:7c:
29:3c:be:a4:7a:57:13:4c:8a:6d:13:43:a8:50:73:
a1:88:88:11:5c:3d:2c:e7:6a:3e:9f:d7:fb:a7:af:
f0:b1:4a:10:72:09:bd:c4:50:56:aa:90:65:7f:a5:
75:0b:34:47:ba:ab:3f:fa:49:df:55:90:c3:89:51:
4e:51:64:23:f8:d8:87:f0:e6:7d:e2:42:37:e2:95:
f2:2b:d2:40:4a:ca:be:fb:d7:9b:6e:a4:0b:8e:0d:
b5:d5:da:14:6c:45:ca:78:7b:ed:09:f3:7d:4d:ce:
2d:76:71:d4:0f:4a:29:98:5e:e7:23:ff:7b:71:c5:
0a:7a:15:7f:5e:72:f5:2f:aa:c2:4f:57:35:2c:8c:
5c:27:3e:fa:7c:e1:41:8c:d7:03:0d:87:d4:95:07:
25:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:AB:8A:B9:B2:33:5F:46:2D:BB:2F:B5:04:BC:80:45:53:58:4B:EF
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/FauKubIzX0Ytuy-1BLyARVNYS-8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.150.131.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:35:c3:f4:a4:1a:e2:07:1f:12:47:dd:b1:b5:a8:eb:de:f7:
98:94:9d:c7:71:8e:64:a9:3b:8f:5a:28:26:1d:cb:b8:5e:af:
95:02:4f:60:be:78:65:73:aa:0b:44:fb:d8:7a:5f:5d:24:3b:
a3:4a:8d:21:c0:2e:47:c4:c6:e7:72:19:89:4a:47:6c:9a:2c:
33:f5:96:dd:69:75:71:c0:27:3f:68:e6:a7:0c:10:f1:39:f4:
e9:35:98:53:0a:65:57:e9:77:c8:b2:b4:da:a6:55:3b:b6:e1:
37:33:1b:99:eb:b2:2c:5c:9c:a1:c4:62:d9:6a:57:1f:02:4f:
bb:b6:6f:e0:88:02:25:f8:a8:90:70:13:a5:b2:84:ac:d9:d6:
36:5f:5b:5c:13:0d:a3:7f:c0:2b:53:f6:b5:34:43:af:42:25:
29:1f:a4:7b:c0:3c:8c:87:90:88:30:0a:6e:84:fe:d4:0a:dd:
d0:b4:7f:5f:51:e8:04:d9:f0:61:52:a2:3f:f1:48:82:f2:8f:
fe:17:12:06:57:01:25:f3:9d:c7:a8:08:3b:a0:f0:ec:df:a0:
b5:49:68:b6:cf:9b:65:01:b4:cc:a8:c5:f0:2a:d9:1a:dc:10:
98:c9:7b:e5:d0:7b:3e:f4:e9:a0:7c:f1:8d:ce:a3:99:17:84:
76:b5:9c:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 08:08:25 2025 by rpki-client