Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/0qcB0PP33iWwlVY3_5oorir5Owg.roa
File: 0qcB0PP33iWwlVY3_5oorir5Owg.roa (raw, json)
Hash identifier: Hd30rL6fonvd/zGK4zX/JrpJTE7vo+G0EUYAVpNunQo=
Subject key identifier: D2:A7:01:D0:F3:F7:DE:25:B0:95:56:37:FF:9A:28:AE:2A:F9:3B:08
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0CCF
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/0qcB0PP33iWwlVY3_5oorir5Owg.roa
Signing time: Fri 01 Sep 2023 09:39:48 +0000
ROA not before: Fri 01 Sep 2023 09:39:48 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38843
IP address blocks: 223.27.52.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3279 (0xccf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Sep 1 09:39:48 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=D2A701D0F3F7DE25B0955637FF9A28AE2AF93B08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:8d:be:13:66:4a:7a:76:9c:de:99:35:55:cb:
a4:39:f2:08:94:3c:a5:b3:8b:11:89:86:e1:ef:16:
b4:12:80:b8:d9:28:82:33:8f:1a:93:62:c4:57:c0:
b3:cf:fb:8a:75:a8:28:0a:88:e4:61:28:86:6b:ca:
cd:18:bd:d1:0b:73:6d:eb:2f:e6:2a:ae:b5:ee:24:
fc:9c:5b:f4:31:ac:e3:74:89:60:49:21:98:e9:b8:
cc:10:c7:68:4c:be:a8:b7:f8:e9:98:51:9d:20:6a:
bf:90:74:3c:26:61:37:7d:1d:c8:b6:08:dd:dd:b7:
72:a9:54:a0:b3:e2:67:9d:c8:83:9a:7c:53:a0:09:
cb:b7:39:88:50:da:c5:49:2f:a3:85:88:bd:5f:78:
d1:ea:85:a8:2f:1e:be:5f:f9:6b:16:7b:ad:66:a4:
cc:b1:20:99:c2:3a:45:ff:18:93:84:96:35:78:fe:
8d:cc:f2:54:df:fa:11:86:a3:9d:84:55:3f:03:63:
33:a1:19:ff:71:ef:2d:1a:82:e3:8f:54:73:ff:bf:
0b:64:bc:1c:88:a6:d7:01:7f:34:96:ab:63:8f:c0:
9a:fd:06:a9:6a:3b:7f:80:62:88:61:31:96:47:a7:
cb:1f:e9:3b:fc:76:9a:f5:12:a5:12:81:42:d9:69:
69:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:A7:01:D0:F3:F7:DE:25:B0:95:56:37:FF:9A:28:AE:2A:F9:3B:08
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/0qcB0PP33iWwlVY3_5oorir5Owg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.52.0/22
Signature Algorithm: sha256WithRSAEncryption
a4:8c:85:a4:2a:08:f7:05:06:28:4f:34:63:e6:4e:e6:49:bc:
3b:22:68:f2:f3:5a:70:35:c0:05:09:91:c0:c0:48:b8:11:99:
16:03:e5:7b:b4:9d:68:c2:c9:c0:c9:57:24:2d:0c:33:a5:5d:
09:ba:10:1d:6a:18:34:ef:6d:81:0a:c8:62:f1:25:6c:e2:15:
5c:c8:8c:68:d0:f7:a1:d4:e9:bb:af:ab:22:50:56:1c:38:40:
c8:a0:b2:3a:aa:ca:84:e2:a6:7c:e8:26:97:2b:56:ca:3b:ce:
9c:bb:9a:51:39:a8:e0:a9:ff:bc:df:5b:d0:fd:6d:93:24:4b:
9b:ed:c6:c1:46:3b:1e:6c:1c:0b:93:86:12:a0:ea:56:7a:04:
71:30:14:84:8e:a0:93:85:48:d3:ea:0a:b0:2a:e6:37:bf:fd:
64:aa:5f:6f:cc:c7:60:f3:94:a2:bd:59:ee:04:a6:86:d5:49:
44:1c:ff:76:ad:66:8b:0d:41:96:d1:f1:d9:c7:47:9e:bf:58:
0a:89:06:66:9b:87:79:42:68:d1:be:23:62:4c:cd:d7:60:09:
da:aa:eb:34:ee:08:5a:d2:96:70:0e:2c:92:8d:e6:cd:7a:20:
24:d4:12:c3:c7:ef:53:21:cd:ff:04:af:47:a7:37:06:48:bd:
86:a3:97:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:16 2024 by rpki-client on console-ams.rpki-client.org