Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/LupWxQq-iORU-HLx0zNfNmXfeP8.roa
File: LupWxQq-iORU-HLx0zNfNmXfeP8.roa (raw, json)
Hash identifier: 15FWb087qdADOiVUlvTqqCsTgpkT9YLdMsHXJYJfcHQ=
Subject key identifier: 2E:EA:56:C5:0A:BE:88:E4:54:F8:72:F1:D3:33:5F:36:65:DF:78:FF
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0EC6
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/LupWxQq-iORU-HLx0zNfNmXfeP8.roa
Signing time: Mon 10 Feb 2025 13:59:52 +0000
ROA not before: Mon 10 Feb 2025 13:59:52 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38843
IP address blocks: 223.27.60.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3782 (0xec6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Feb 10 13:59:52 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=2EEA56C50ABE88E454F872F1D3335F3665DF78FF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:34:e8:f6:86:e7:70:6c:49:7d:c4:fd:74:b1:
9e:b4:b6:f2:ee:e9:c3:f8:53:ff:c3:69:72:44:cf:
4a:2c:43:b2:c6:cb:4a:8d:71:f1:b5:3f:dc:79:6d:
c2:31:b7:86:51:3e:ad:d6:4d:24:9e:2a:07:2b:3d:
fe:0d:9a:e6:80:05:43:47:8b:10:31:d4:cc:f6:4d:
40:7f:64:b9:08:8b:df:6a:4b:15:51:8e:bb:ef:ad:
00:b4:a8:c3:5a:25:34:87:5f:1b:b5:21:14:80:8d:
59:ab:cd:e4:66:73:fd:76:60:e5:bd:eb:7f:39:6b:
bb:db:f7:ad:85:b6:8c:8d:de:5e:f0:26:8b:62:9c:
40:1a:0c:4d:5d:e4:0a:2f:8b:af:0e:3a:5e:16:84:
77:23:c2:b5:0e:b1:34:27:11:3b:4a:b5:c6:af:8f:
eb:dc:6e:6e:d1:eb:41:70:4a:09:9e:20:bf:03:33:
7b:d8:da:53:47:05:43:f9:67:9c:9b:a8:60:a3:fd:
1e:f0:b6:bb:29:a7:ce:03:64:a6:89:e2:f6:05:8b:
fe:61:70:71:96:21:03:1e:38:a2:72:06:bf:e2:4c:
35:79:70:6b:67:2c:c3:ce:ba:c0:64:88:7d:af:6a:
85:bd:50:97:99:e6:10:6e:7b:e9:33:c8:f6:84:5a:
dd:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:EA:56:C5:0A:BE:88:E4:54:F8:72:F1:D3:33:5F:36:65:DF:78:FF
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/LupWxQq-iORU-HLx0zNfNmXfeP8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.60.0/22
Signature Algorithm: sha256WithRSAEncryption
6a:28:74:01:37:ba:f7:3c:1d:0d:85:1d:83:19:de:49:fd:ab:
ce:07:bf:f8:4f:19:f5:0e:2a:4d:0b:9f:2a:88:22:b7:13:22:
3f:44:ba:13:8f:15:90:a1:8e:f8:b0:40:00:ce:9c:6e:2f:80:
a3:91:c4:12:5c:5e:ac:d9:a6:62:b6:d9:4d:75:22:6b:f5:45:
70:57:82:e1:bb:c0:8a:36:de:88:8b:81:07:10:35:47:2d:76:
02:3a:07:eb:7b:60:9e:1b:0d:fa:ab:52:f1:30:d2:7c:57:31:
04:1b:b7:77:53:68:78:ea:db:74:52:16:43:b6:00:55:cf:c5:
09:42:b2:0d:c3:fd:9b:a9:7f:79:a9:1c:3e:e4:88:ce:2e:46:
1c:92:77:8b:7b:e2:b0:5e:0e:45:10:0e:2a:80:db:5e:1a:af:
68:af:bf:8a:cb:de:3b:73:33:a3:8d:82:6b:e3:dc:b6:f1:db:
33:c4:1c:fb:46:0e:a6:e5:9c:5f:85:3a:ae:5d:ab:d2:d1:2a:
58:e4:92:1a:0b:60:71:24:f7:82:41:f2:e0:6c:90:60:c8:b9:
b4:1b:cb:c7:d7:65:a5:c7:ec:72:4d:58:1a:1f:50:69:75:04:
75:2f:de:5b:54:dd:14:82:98:67:97:50:ef:20:0e:27:ed:ee:
8d:5e:50:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 08:07:23 2025 by rpki-client