Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/15RdURD6QQMw7HWThS8ibtY0bV0.roa
File: 15RdURD6QQMw7HWThS8ibtY0bV0.roa (raw, json)
Hash identifier: Qg4GTiHGET7OXMBJ846Zmri9Vkc/Kh9dmyF3PQvqDns=
Subject key identifier: D7:94:5D:51:10:FA:41:03:30:EC:75:93:85:2F:22:6E:D6:34:6D:5D
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0CC8
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/15RdURD6QQMw7HWThS8ibtY0bV0.roa
Signing time: Fri 01 Sep 2023 09:39:45 +0000
ROA not before: Fri 01 Sep 2023 09:39:45 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38843
IP address blocks: 223.27.37.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3272 (0xcc8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Sep 1 09:39:45 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=D7945D5110FA410330EC7593852F226ED6346D5D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:a6:cd:1c:b9:fb:98:28:0f:96:83:ff:c6:54:
6c:c9:49:7f:5f:1b:04:a2:90:fd:d7:e1:e2:b5:1b:
bf:6b:ca:a2:5c:7b:63:c7:d7:44:27:d5:ee:7c:d6:
da:f1:f8:2c:c5:69:34:e2:8e:fd:1b:f9:06:d6:da:
3c:58:61:ea:7f:39:4d:83:8c:67:06:a9:3d:83:03:
b3:35:86:3d:4e:e0:c5:1a:ff:56:78:10:db:4d:4c:
68:ce:64:28:e9:b6:15:eb:e4:9c:87:b3:8a:4e:ee:
ee:06:d6:0b:dd:a7:e9:61:77:67:36:a1:a1:12:ed:
bd:92:69:d4:d6:53:97:25:ae:97:86:ac:6c:df:42:
28:05:00:29:35:34:69:cf:98:3c:2d:a7:6c:74:e0:
57:ec:3c:93:68:5e:cf:2d:53:e0:b1:70:28:69:66:
e3:88:d7:4d:12:d1:5b:91:ea:ae:16:61:ed:72:91:
4f:ae:03:5b:1e:ff:ca:45:77:21:e6:66:7a:e0:93:
d8:96:2a:b3:01:7c:f7:0a:4f:de:f0:43:85:8c:cb:
1f:e8:57:e4:08:4e:78:ea:4f:1e:bc:ee:71:d7:39:
55:c4:81:0f:c7:45:fa:df:1d:66:4f:dc:22:7d:67:
84:95:3f:0d:42:c0:34:6f:85:61:c3:94:a0:8b:bb:
01:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:94:5D:51:10:FA:41:03:30:EC:75:93:85:2F:22:6E:D6:34:6D:5D
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/15RdURD6QQMw7HWThS8ibtY0bV0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.37.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:3b:27:8c:01:19:da:7d:1c:4f:b3:4d:72:96:7c:02:43:b8:
a0:0e:b0:88:ad:f3:3d:86:1d:1a:b2:70:4d:e4:9e:9d:b9:f5:
0e:de:56:6a:a3:c8:27:c4:43:a9:87:7d:d2:b0:7c:e1:26:ff:
8c:35:c4:20:b2:b8:20:a6:23:c1:4f:1c:b6:fb:e4:6b:08:ce:
23:71:a6:4b:ee:14:79:8e:84:ad:58:db:ca:9e:5a:d2:74:6e:
46:e9:a6:98:69:22:eb:91:ed:f0:85:e5:14:75:70:e8:66:a1:
9b:8b:47:9d:79:03:fa:58:a7:64:23:7f:cf:82:2d:e2:b0:16:
31:c1:7e:83:93:53:5d:cf:fe:f3:8f:d3:6d:02:0d:ab:12:27:
08:b7:16:76:3d:bd:26:5f:6a:f0:6b:d8:cd:7d:49:df:05:26:
18:19:59:2f:01:19:19:3c:89:5d:f1:c3:3a:84:5a:44:28:c7:
b1:65:c5:03:1b:58:49:38:5e:1c:49:d1:a6:07:71:8f:98:c3:
37:99:9d:b8:a8:06:f2:66:1e:4d:00:e3:5c:dd:57:72:dc:f8:
71:0d:2d:13:4d:0f:29:b6:6f:7c:87:cc:f7:4b:77:b0:35:f4:
72:e8:1e:71:78:e8:c6:9e:18:f0:92:ba:f4:29:b5:1f:5d:5d:
c2:7d:b2:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:22 2024 by rpki-client on console-fra.rpki-client.org