Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/yrzzPttWJPHZHOye1U9A1kMvn5w.roa
File: yrzzPttWJPHZHOye1U9A1kMvn5w.roa (raw, json)
Hash identifier: R7FWGbJzCubElKshoaIWjOnCdb8CDm6/ci0wyXCHRKQ=
Subject key identifier: CA:BC:F3:3E:DB:56:24:F1:D9:1C:EC:9E:D5:4F:40:D6:43:2F:9F:9C
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0EBB
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/yrzzPttWJPHZHOye1U9A1kMvn5w.roa
Signing time: Mon 10 Feb 2025 13:59:49 +0000
ROA not before: Mon 10 Feb 2025 13:59:49 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38843
IP address blocks: 223.27.57.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3771 (0xebb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Feb 10 13:59:49 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=CABCF33EDB5624F1D91CEC9ED54F40D6432F9F9C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:c2:06:3a:39:e8:c5:d7:82:43:fa:d6:07:af:
b1:21:ff:5f:3e:eb:e2:68:83:07:3c:b3:4e:a3:7c:
a7:67:4e:cf:9b:d5:ba:6f:f6:70:a0:68:b6:16:bf:
0d:62:bc:42:9a:f0:fe:98:e9:e7:56:8b:c3:cb:cf:
fc:5b:cd:79:65:89:7b:da:77:a0:2a:50:a2:c9:fc:
20:10:01:60:a4:ab:3a:0f:2a:91:4d:ff:50:4d:2e:
77:b5:3a:89:ec:e3:ef:8d:b9:78:69:70:12:27:08:
b2:76:cb:19:b5:cb:f8:7c:c8:98:79:6b:f5:a7:ea:
91:88:de:8d:76:88:72:61:ae:56:9d:4f:93:d0:04:
cf:10:e5:2a:aa:28:d0:df:46:b8:ec:cc:31:d3:f3:
cd:15:7a:4c:42:d2:0e:ac:76:9a:d8:ed:3f:2e:1b:
92:6f:07:3f:af:8e:61:74:09:a3:2e:1b:db:5d:17:
52:97:dc:9e:fe:1d:dc:16:88:4f:09:4d:22:89:12:
aa:7c:44:af:25:64:88:ed:ed:17:d2:4e:4b:a6:e7:
0d:94:22:15:11:51:51:e6:9f:aa:5e:76:20:ac:1a:
a8:17:dd:d9:5a:51:1d:b1:77:23:d9:15:bd:2a:e4:
6d:79:65:06:ad:10:bb:36:2a:3e:30:78:c1:46:02:
d2:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:BC:F3:3E:DB:56:24:F1:D9:1C:EC:9E:D5:4F:40:D6:43:2F:9F:9C
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/yrzzPttWJPHZHOye1U9A1kMvn5w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.57.0/24
Signature Algorithm: sha256WithRSAEncryption
66:10:1f:9e:01:ab:4c:5a:b1:2d:46:16:92:47:c1:53:1c:fb:
d9:6a:5d:1b:d2:8e:19:d4:f3:81:73:62:11:5f:a1:bc:74:c3:
2a:d2:f0:19:79:45:6b:98:5b:a6:0a:3f:30:77:e9:4e:34:84:
6a:7d:fc:75:e5:4b:19:eb:4a:6f:07:39:2c:d4:79:4c:5e:4d:
b3:3f:aa:94:6a:25:55:89:ff:58:7a:ba:3e:fd:d5:dd:fb:ff:
9c:6e:e0:d3:1c:7e:29:dd:a4:6c:43:56:77:e6:36:e6:03:e8:
8d:ab:d8:cb:11:b9:5e:70:00:17:95:ce:72:b2:19:5b:f5:c3:
9c:8f:2e:cb:40:68:6a:ce:2d:30:02:af:d6:3c:d9:47:69:02:
03:6b:7b:e8:e6:a8:91:02:2c:1c:ef:a4:6d:4e:36:77:88:ec:
f1:1f:be:54:1b:c3:1a:00:71:a6:14:71:86:79:8f:22:2a:97:
50:fa:b8:a8:4a:c0:62:0d:96:8c:6a:77:19:a6:af:b8:4d:eb:
fb:41:62:f7:90:2a:c8:38:5c:6b:37:d9:6d:3b:7c:fe:bd:d6:
a6:2a:15:56:8a:82:26:31:11:0e:a3:f1:06:7c:dc:5f:fc:25:
bd:c3:aa:c0:db:64:7a:9c:52:82:32:19:49:ce:c3:86:6d:2e:
85:ff:e7:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 08:08:26 2025 by rpki-client