Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/lbODUClrZo1Ph8MiuhTEWFUEML8.roa
File: lbODUClrZo1Ph8MiuhTEWFUEML8.roa (raw, json)
Hash identifier: 7Zss+Qu4wOmYV0Rbe7HuYFgBwcCc39poqo1lLxmUcAc=
Subject key identifier: 95:B3:83:50:29:6B:66:8D:4F:87:C3:22:BA:14:C4:58:55:04:30:BF
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0EAF
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/lbODUClrZo1Ph8MiuhTEWFUEML8.roa
Signing time: Mon 10 Feb 2025 13:59:46 +0000
ROA not before: Mon 10 Feb 2025 13:59:46 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38843
IP address blocks: 223.27.48.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3759 (0xeaf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Feb 10 13:59:46 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=95B38350296B668D4F87C322BA14C458550430BF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:98:fe:9c:78:ac:3d:0c:37:48:b7:43:5a:64:
da:97:16:da:f1:5e:bf:c9:47:48:d0:d5:6a:49:a8:
44:ec:0e:ef:40:96:c0:ad:80:37:7c:50:d7:ad:b0:
14:bf:e1:d0:41:40:06:a6:a0:60:ee:22:c3:92:5b:
8c:79:2b:23:cd:97:3e:77:88:d0:e3:9a:ec:4b:4c:
65:7b:a4:9e:d0:33:d5:bf:47:f4:40:c1:e5:cb:01:
11:61:90:4e:7d:7a:1a:23:07:73:62:69:f6:23:94:
2f:6e:04:13:14:08:f7:94:39:24:21:21:be:39:db:
59:cd:7d:cf:d3:86:1f:6f:6b:d5:46:93:e8:d1:94:
fe:62:3c:24:31:58:57:ab:4c:5d:17:f4:52:dd:68:
3e:2e:23:45:6a:55:20:bf:bb:47:dc:7c:48:7a:bf:
ec:fe:2b:47:a9:54:16:40:31:58:24:e5:cc:cd:3f:
45:c5:93:6e:97:b3:90:88:56:d1:8a:27:1c:1d:65:
e8:72:8a:f2:a6:d0:35:b0:8a:3f:b9:f2:91:05:b6:
47:24:e7:85:6d:d6:67:10:ce:d8:a8:06:02:bc:2e:
fa:e0:c3:fe:92:4c:1f:ef:c6:a3:d1:3d:57:15:13:
9d:c4:ec:54:eb:17:6e:5a:33:57:bc:4c:87:dd:ad:
ba:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:B3:83:50:29:6B:66:8D:4F:87:C3:22:BA:14:C4:58:55:04:30:BF
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/lbODUClrZo1Ph8MiuhTEWFUEML8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.48.0/20
Signature Algorithm: sha256WithRSAEncryption
8d:6c:36:e7:4f:1b:18:5a:ee:e1:f6:68:5f:ce:6a:bd:0a:b2:
a5:ab:94:57:55:35:c3:cf:9f:61:ac:8a:9a:a5:d9:98:f6:31:
a1:32:52:07:bb:a6:7d:e9:8f:93:9b:62:6e:4d:5b:4a:8d:4a:
aa:af:6c:a5:3c:35:87:90:f2:f9:a4:e2:dc:49:9f:87:f0:ca:
fb:74:92:cf:f9:22:d0:07:ee:c2:f8:18:cb:4d:ef:b5:35:fb:
39:0e:a0:00:d7:d6:6c:41:8b:ea:36:73:9f:1d:d2:3c:4e:66:
75:c3:d9:6c:6e:33:7d:01:be:ce:b5:f3:eb:26:12:c7:ff:04:
6f:62:d7:14:f3:7c:15:f2:6b:e0:2e:29:a5:9c:ae:77:35:b5:
fa:77:26:6c:3d:da:16:d9:7b:52:01:7d:86:84:12:dc:a2:f1:
ed:c9:24:89:b9:2f:63:b3:29:fc:1e:83:5a:61:4e:e7:05:16:
80:25:77:db:cc:74:13:15:f0:30:5c:73:3c:7b:87:b8:c9:e9:
2a:e6:e8:6d:77:d4:90:23:20:65:ec:53:d2:7e:07:f7:66:bb:
d2:44:2e:6a:2d:e4:9c:85:7b:ad:ae:cc:18:bd:9e:99:d4:d4:
ad:fb:a6:36:e7:e8:a0:80:dd:de:2d:3f:85:77:6e:38:3c:78:
2a:56:32:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 08:08:28 2025 by rpki-client