Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/L_xCPUKexF-FOt3Kq9V7BC6Bw80.roa
File: L_xCPUKexF-FOt3Kq9V7BC6Bw80.roa (raw, json)
Hash identifier: 1xdFdYkrrvrUpx22lbgsvmfVad4dqV4aBz9UiNjPuNg=
Subject key identifier: 2F:FC:42:3D:42:9E:C4:5F:85:3A:DD:CA:AB:D5:7B:04:2E:81:C3:CD
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0EA5
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/L_xCPUKexF-FOt3Kq9V7BC6Bw80.roa
Signing time: Mon 10 Feb 2025 13:59:44 +0000
ROA not before: Mon 10 Feb 2025 13:59:44 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38843
IP address blocks: 223.27.54.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3749 (0xea5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Feb 10 13:59:44 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=2FFC423D429EC45F853ADDCAABD57B042E81C3CD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:73:a8:de:f4:2b:6d:12:39:bd:b6:0e:be:47:
89:56:43:44:5a:e0:e1:00:c4:3e:e6:5c:70:6e:be:
5d:f8:36:51:8c:03:84:65:01:f3:65:ce:55:aa:32:
d4:44:90:dd:42:03:2f:9a:af:66:39:dc:bd:d0:01:
28:67:1c:cb:bd:b8:f0:03:38:eb:0c:47:ce:b2:e3:
6a:39:4f:c0:94:3d:f5:2c:20:3f:d5:86:3a:97:36:
f8:43:b2:8a:39:fa:da:10:4d:2e:3f:9c:a6:ee:a5:
bf:4f:01:c1:a0:fc:e6:c2:a5:a8:d4:61:b7:f2:d0:
8a:a0:75:1c:16:25:5c:b9:f2:81:0a:fe:0e:6a:d6:
04:5f:1b:93:1e:91:1c:8f:3a:19:ed:cf:8d:b5:5f:
ce:1d:74:e6:82:df:0f:a4:e5:9b:09:e8:05:0d:52:
a1:dc:7c:9e:dc:7d:3f:4b:89:6a:f6:e6:9b:c9:fb:
b5:45:23:52:a2:ff:84:3b:21:67:08:e9:39:41:95:
86:e6:d6:1b:df:29:6c:8f:1d:36:81:aa:17:bd:2a:
7d:1d:34:5d:36:46:5d:72:9f:48:be:d6:aa:71:9d:
e4:f2:66:75:5b:51:76:17:35:39:be:06:67:5b:2e:
48:72:8d:e3:a3:c7:2e:9f:e1:41:a0:70:9e:d2:e4:
bd:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:FC:42:3D:42:9E:C4:5F:85:3A:DD:CA:AB:D5:7B:04:2E:81:C3:CD
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/L_xCPUKexF-FOt3Kq9V7BC6Bw80.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.54.0/24
Signature Algorithm: sha256WithRSAEncryption
87:0f:6f:fc:57:7d:66:1d:22:9d:ca:88:01:14:3e:eb:10:13:
be:d2:68:e8:ad:ae:b8:85:1c:74:16:be:c3:81:74:46:62:71:
81:50:77:fd:96:ac:07:03:1b:7f:3a:dd:1a:8d:27:94:07:8e:
e8:d0:44:01:59:cf:5a:c1:85:c5:33:ec:c8:a9:bb:4d:3a:34:
ff:b7:6e:02:53:07:18:a1:3b:c2:39:fb:59:a0:ba:af:00:36:
33:88:7f:ea:f8:8d:be:a6:2b:7c:23:1d:99:42:a4:eb:1c:6d:
0b:c1:93:ef:58:c1:51:cd:e9:c0:a0:5a:b0:74:78:05:7c:a1:
be:33:a5:55:08:1c:c6:ec:c8:65:43:8e:a8:cb:2b:36:d9:36:
e2:47:7a:81:7f:0d:14:ab:45:99:dc:66:6c:79:79:7e:a5:d3:
06:3c:5f:46:4c:3d:48:84:1f:ce:38:42:1a:53:d8:12:c2:74:
1c:b8:19:4d:21:24:e0:78:46:b7:82:68:90:6e:dd:6a:08:38:
1b:f4:01:ea:08:21:59:38:4e:ed:7e:37:c6:4d:13:31:2e:8a:
c0:ec:9d:e5:14:ee:47:0d:24:c0:c5:dc:eb:90:79:3d:b0:61:
f3:b1:39:77:83:09:3f:ce:3c:9a:80:3c:65:00:9a:ac:9c:bf:
d2:05:44:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 08:04:32 2025 by rpki-client