Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/gxvwzirjmjvj8zyeLgDAIumVh_k.roa
File: gxvwzirjmjvj8zyeLgDAIumVh_k.roa (raw, json)
Hash identifier: gsPwogInTC1wVBTEyBB0yCsu5Xzxk7OFszaYfM7km1U=
Subject key identifier: 83:1B:F0:CE:2A:E3:9A:3B:E3:F3:3C:9E:2E:00:C0:22:E9:95:87:F9
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0EC5
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/gxvwzirjmjvj8zyeLgDAIumVh_k.roa
Signing time: Mon 10 Feb 2025 13:59:52 +0000
ROA not before: Mon 10 Feb 2025 13:59:52 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38843
IP address blocks: 223.27.40.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3781 (0xec5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Feb 10 13:59:52 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=831BF0CE2AE39A3BE3F33C9E2E00C022E99587F9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:d6:d1:eb:be:6a:eb:f6:ee:cd:43:8b:a6:51:
ba:e2:1d:e1:c8:89:e2:a3:df:2e:0a:78:da:8a:a7:
5d:b3:d5:22:c8:c7:b5:ca:d8:cd:6d:f9:bf:2c:84:
f9:19:3d:0a:ab:57:0a:50:95:8c:6d:64:ec:1a:5b:
de:cc:0f:0e:7c:10:2f:17:1a:27:97:29:c2:67:be:
5a:1c:cf:08:7f:d4:af:bf:a8:3d:39:5a:ec:9c:77:
25:42:27:2a:33:6e:ef:9e:ee:2c:03:41:a8:fa:b6:
ee:ee:bf:60:4a:e3:10:8d:ec:b3:f6:f0:57:34:ba:
cc:90:1b:19:36:40:41:10:00:4d:a1:4c:8e:59:86:
f6:41:f9:bf:fa:f1:7e:1e:96:a8:c4:11:ac:15:a3:
a6:00:6e:f9:c8:0e:5e:25:c1:5f:71:44:3e:89:b9:
00:58:08:ed:f1:0b:51:9d:91:09:76:f9:0a:de:94:
76:04:7e:d0:70:21:8b:9b:f2:21:a6:36:3d:28:16:
bf:d3:ea:da:4a:de:9f:de:37:69:37:5c:99:72:cd:
24:27:a3:86:59:a9:69:88:34:19:bd:18:f5:f1:a4:
b9:f6:f0:bd:c0:5b:84:f3:aa:fa:b4:d3:dd:3b:8f:
4d:e1:85:6d:d7:e2:ff:29:35:23:2e:83:ba:dd:3f:
8d:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:1B:F0:CE:2A:E3:9A:3B:E3:F3:3C:9E:2E:00:C0:22:E9:95:87:F9
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/gxvwzirjmjvj8zyeLgDAIumVh_k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.40.0/21
Signature Algorithm: sha256WithRSAEncryption
94:23:25:b1:2b:e1:da:ef:33:2f:92:8f:6d:f5:5a:ba:5f:64:
63:0c:09:c1:32:17:3c:db:6f:35:f2:52:e0:a0:5e:d9:13:02:
51:d2:28:24:65:88:9e:58:50:65:95:cb:4e:37:f9:45:6f:01:
8b:88:f6:e1:a9:95:1c:8d:d2:a6:ee:ae:57:c8:38:df:76:d0:
65:c0:f8:82:89:47:7c:28:ec:32:d5:15:57:9b:2f:df:f5:d5:
39:ed:b6:b7:ae:b8:a4:dd:df:42:0a:b0:ec:95:06:2b:dd:52:
ae:45:ec:1e:13:64:d4:8c:01:30:2b:8b:04:77:05:96:fd:6f:
d5:9c:a3:b5:3b:c5:48:d2:39:b3:c6:e0:3f:32:ea:8f:51:e1:
89:38:8e:43:45:f2:40:ee:e9:b3:71:d4:74:0d:3b:f4:b2:8e:
44:83:aa:0a:9d:02:fc:9c:30:0d:b9:09:54:19:ca:5c:ec:bf:
b3:63:b0:50:90:c0:f7:4b:6d:7f:a2:bd:23:50:8f:7f:69:f4:
51:4c:c5:ce:05:de:c6:12:fa:02:dc:d5:f8:28:d6:71:49:10:
63:f8:c2:45:0e:2d:9e:7b:fc:28:bb:e0:7c:6e:83:c6:4e:4c:
c7:62:80:47:45:71:6d:b6:e3:dc:a8:45:6d:45:72:c4:37:ff:
f3:7d:a5:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 08:08:28 2025 by rpki-client