Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/qgdZWEHN38hEugYiw2sAWnilsLM.roa
File: qgdZWEHN38hEugYiw2sAWnilsLM.roa (raw, json)
Hash identifier: +G4W8cI3qOU8xIXokvO1kgf9G84q4KkpIzkTcK9b8f0=
Subject key identifier: AA:07:59:58:41:CD:DF:C8:44:BA:06:22:C3:6B:00:5A:78:A5:B0:B3
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0EB2
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/qgdZWEHN38hEugYiw2sAWnilsLM.roa
Signing time: Mon 10 Feb 2025 13:59:47 +0000
ROA not before: Mon 10 Feb 2025 13:59:47 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38843
IP address blocks: 2400:b380::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3762 (0xeb2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Feb 10 13:59:47 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=AA07595841CDDFC844BA0622C36B005A78A5B0B3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:bf:3b:fe:df:0e:df:4f:af:be:29:26:3f:3f:
77:9b:66:36:9c:50:99:0c:26:b7:47:87:74:4e:b5:
b3:83:b6:7e:c0:25:06:48:ac:41:9e:fe:1c:75:79:
cf:71:ac:d0:63:7d:3e:a0:b6:07:df:69:92:00:c0:
77:c3:90:ed:25:29:6a:9f:e0:8e:46:d3:9d:50:67:
2b:31:8f:70:96:06:76:df:23:7a:cd:bd:8b:8b:f0:
58:bb:99:5b:6f:55:cc:f0:92:91:29:d0:c6:6f:c9:
03:db:83:05:01:e4:39:43:51:f1:f6:11:d8:68:f3:
0c:5d:76:81:22:b2:0c:7b:8b:72:61:55:62:39:3b:
f8:ca:2b:84:4b:38:fe:12:b7:5e:37:e2:88:57:df:
8e:66:07:3a:44:a8:47:eb:00:f7:17:2d:85:a6:74:
8f:5b:b3:05:a8:78:33:63:df:f2:bf:b2:70:d0:8f:
5b:7c:df:77:f4:cf:d0:b6:93:1e:6c:ad:1a:46:5a:
e3:b2:39:de:e8:ec:e3:41:cf:28:28:8e:ab:05:e0:
4f:e7:f2:aa:2d:13:e3:bc:3f:d6:04:5e:0b:16:79:
40:0f:c8:0b:cc:5e:8b:0f:18:a2:5a:7e:65:ce:ef:
a3:7d:c6:f9:24:55:25:6d:5c:c0:ff:62:a7:38:75:
47:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:07:59:58:41:CD:DF:C8:44:BA:06:22:C3:6B:00:5A:78:A5:B0:B3
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/qgdZWEHN38hEugYiw2sAWnilsLM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:b380::/32
Signature Algorithm: sha256WithRSAEncryption
51:2c:2c:86:c0:27:2b:a7:a2:92:5f:28:7c:7e:81:d0:b3:5e:
fc:a6:96:95:80:3b:df:a4:4d:e7:04:d9:8c:df:18:16:eb:6d:
bc:e7:d2:46:95:1d:13:82:59:f9:b2:b3:cd:d5:a2:2a:75:45:
f7:12:36:6d:66:b6:eb:7b:1f:89:20:37:e5:aa:97:00:08:3b:
92:66:73:56:e4:37:34:3d:43:12:73:7e:b3:cf:88:3b:00:26:
af:3e:ad:4d:8d:fa:a0:3e:db:06:56:fb:18:dc:72:26:b7:b9:
82:af:6d:a6:00:f7:6d:af:33:bc:db:d9:48:2b:4a:bb:22:49:
ee:09:63:fa:b5:27:e2:30:bf:53:fb:c7:d9:91:c3:82:42:5d:
18:28:34:90:49:e2:7f:8a:93:7e:c4:2a:03:04:8a:57:07:fb:
83:f4:40:3c:bf:c0:17:4d:27:94:58:10:a8:46:9a:43:3f:fe:
25:f8:5f:2a:0d:ff:af:d4:0e:c4:4e:81:a6:7a:71:19:12:df:
b7:36:0d:c2:6f:f1:bc:dc:d9:1a:86:e7:2e:7e:50:db:99:33:
c6:21:71:7f:a0:19:0f:f2:14:07:e0:07:f3:3d:fc:ee:74:4d:
46:5d:b2:a2:be:a9:0f:e5:09:96:ec:fc:31:54:00:c1:c0:71:
01:0e:18:f9
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICDrIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzRE
RDQzMjk2MUFDNDJENjQ0QUVBRjM0QjE0QUVDNzAyNzVCMDZBMzAeFw0yNTAyMTAx
MzU5NDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEFBMDc1OTU4NDFDRERG
Qzg0NEJBMDYyMkMzNkIwMDVBNzhBNUIwQjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCVvzv+3w7fT6++KSY/P3ebZjacUJkMJrdHh3ROtbODtn7AJQZI
rEGe/hx1ec9xrNBjfT6gtgffaZIAwHfDkO0lKWqf4I5G051QZysxj3CWBnbfI3rN
vYuL8Fi7mVtvVczwkpEp0MZvyQPbgwUB5DlDUfH2Edho8wxddoEisgx7i3JhVWI5
O/jKK4RLOP4St1434ohX345mBzpEqEfrAPcXLYWmdI9bswWoeDNj3/K/snDQj1t8
33f0z9C2kx5srRpGWuOyOd7o7ONBzygojqsF4E/n8qotE+O8P9YEXgsWeUAPyAvM
XosPGKJafmXO76N9xvkkVSVtXMD/Yqc4dUdfAgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQUqgdZWEHN38hEugYiw2sAWnilsLMwHwYDVR0jBBgwFoAUNN1DKWGsQtZErq80
sUrscCdbBqMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFVNTy9O
TjFES1dHc1F0WkVycTgwc1Vyc2NDZGJCcU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L05OMURLV0dzUXRaRXJxODBzVXJzY0NkYkJxTS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL1BVTU8vcWdkWldFSE4zOGhFdWdZaXcyc0FX
bmlsc0xNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQAs4Aw
DQYJKoZIhvcNAQELBQADggEBAFEsLIbAJyunopJfKHx+gdCzXvymlpWAO9+kTecE
2YzfGBbrbbzn0kaVHROCWfmys83Voip1RfcSNm1mtut7H4kgN+WqlwAIO5Jmc1bk
NzQ9QxJzfrPPiDsAJq8+rU2N+qA+2wZW+xjccia3uYKvbaYA922vM7zb2UgrSrsi
Se4JY/q1J+Iwv1P7x9mRw4JCXRgoNJBJ4n+Kk37EKgMEilcH+4P0QDy/wBdNJ5RY
EKhGmkM//iX4XyoN/6/UDsROgaZ6cRkS37c2DcJv8bzc2RqG5y5+UNuZM8YhcX+g
GQ/yFAfgB/M9/O50TUZdsqK+qQ/lCZbs/DFUAMHAcQEOGPk=
-----END CERTIFICATE-----
Generated at Tue Apr 8 08:07:23 2025 by rpki-client