Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/oTyYjm0ZKuesUSAjDFHv3GNnlfc.roa
File: oTyYjm0ZKuesUSAjDFHv3GNnlfc.roa (raw, json)
Hash identifier: YclX4131KTQHQ2xCT5xjwicmtr5ypBgV2pgycmVq/sQ=
Subject key identifier: A1:3C:98:8E:6D:19:2A:E7:AC:51:20:23:0C:51:EF:DC:63:67:95:F7
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0EB3
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/oTyYjm0ZKuesUSAjDFHv3GNnlfc.roa
Signing time: Mon 10 Feb 2025 13:59:47 +0000
ROA not before: Mon 10 Feb 2025 13:59:47 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38843
IP address blocks: 223.27.41.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3763 (0xeb3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Feb 10 13:59:47 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=A13C988E6D192AE7AC5120230C51EFDC636795F7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:36:c6:26:62:bb:a4:db:98:36:83:4a:d1:db:
2a:33:60:da:7a:47:f9:1f:fd:0b:ff:8c:58:41:a4:
1d:68:0e:89:80:24:b3:b2:db:ef:84:2b:60:8d:aa:
04:07:d9:dc:db:4f:53:c1:b8:c3:4d:6b:b4:23:32:
7f:3d:fd:75:21:f7:a8:51:04:53:ae:2e:fa:1c:b0:
1b:93:7e:5f:ae:37:e8:6c:4b:b3:5f:95:f5:04:1c:
34:78:54:d3:0a:12:da:b8:ad:19:34:c3:8d:66:6a:
d3:62:2c:67:fb:29:b2:a0:b9:c7:d1:25:e2:9e:57:
0b:04:0f:af:fb:ad:b7:66:29:fc:94:bd:ef:42:3d:
69:94:67:14:b9:53:22:a4:fc:fd:63:53:17:b3:e9:
c3:aa:dc:01:9f:0e:e8:50:0e:d0:91:bc:50:69:25:
0f:37:28:a8:4f:28:6d:e1:61:2b:f2:59:cf:e8:c3:
d7:ad:8a:64:32:48:fe:9c:3c:ba:1c:62:ae:e0:95:
fd:0b:58:af:39:13:7c:91:7f:ec:76:f9:5e:09:f6:
53:c1:5d:29:a6:7b:13:ab:44:37:cb:0f:c0:ca:6a:
d9:d7:2d:70:56:6e:89:62:a8:f7:8d:a6:10:9f:3e:
b2:19:a9:df:39:5f:e4:7e:22:ec:d7:90:02:71:81:
e1:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:3C:98:8E:6D:19:2A:E7:AC:51:20:23:0C:51:EF:DC:63:67:95:F7
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/oTyYjm0ZKuesUSAjDFHv3GNnlfc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.41.0/24
Signature Algorithm: sha256WithRSAEncryption
67:2a:73:93:15:b3:61:5b:66:7f:ff:79:00:48:b4:d5:1d:31:
63:c7:fa:62:09:83:5b:b4:42:fc:92:45:09:95:75:0c:a2:13:
23:fc:a8:7f:f2:80:de:2a:55:25:75:2f:b8:11:4b:3b:8e:01:
e1:f2:a8:12:99:32:c2:41:69:05:ec:c3:dc:91:b2:2c:c8:b7:
7d:28:66:86:7e:11:54:47:99:49:7a:68:bc:5d:65:32:6f:41:
78:dd:6d:d9:a2:bb:76:21:27:83:34:09:12:36:69:40:77:e6:
b9:ac:7e:2e:b6:00:55:ce:81:cd:9e:6f:2e:41:4c:da:24:ad:
2c:d5:37:c1:e5:c7:41:90:b8:e9:15:40:7e:7f:62:b4:b2:81:
ee:7d:f0:95:f8:59:94:3f:20:6c:54:2c:9d:21:37:90:45:b6:
5e:36:f6:62:3a:7b:c9:1a:fd:9b:ac:ba:ed:88:c4:0d:87:10:
57:d4:38:58:4f:e2:3d:1f:29:c8:91:56:7c:d7:1f:d2:85:16:
7e:3f:a8:53:f7:5e:85:1b:85:e6:7d:52:00:95:65:0c:0f:8b:
15:18:ca:b3:5d:b9:a4:66:58:39:f6:61:1b:21:12:07:e7:a5:
48:97:26:59:3c:d7:15:7d:86:ff:f9:3f:08:df:28:3f:d7:c7:
c3:8e:38:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 08:08:28 2025 by rpki-client