Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/KaAF-suJ9ymm2mBtdv5cVsbf6hs.roa
File: KaAF-suJ9ymm2mBtdv5cVsbf6hs.roa (raw, json)
Hash identifier: pF4vyo5ljdeDxvNObZcwSug+phL+VJMNmrTSpskTseA=
Subject key identifier: 29:A0:05:FA:CB:89:F7:29:A6:DA:60:6D:76:FE:5C:56:C6:DF:EA:1B
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0CE9
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/KaAF-suJ9ymm2mBtdv5cVsbf6hs.roa
Signing time: Fri 01 Sep 2023 09:39:56 +0000
ROA not before: Fri 01 Sep 2023 09:39:56 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38843
IP address blocks: 223.27.35.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3305 (0xce9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Sep 1 09:39:56 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=29A005FACB89F729A6DA606D76FE5C56C6DFEA1B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:d8:b8:85:a4:3d:5f:ad:58:fc:fa:80:0f:60:
3f:00:90:27:b3:8f:e6:50:86:80:5f:0a:58:fb:ff:
81:b1:51:42:dd:6b:68:b3:42:81:21:e7:3f:88:4c:
15:b3:4b:5a:66:6c:24:91:78:e7:84:87:1a:0e:cc:
86:cc:40:2b:51:2f:59:aa:14:61:d1:22:36:e9:c9:
ed:1d:1f:d9:e9:69:82:19:44:49:f8:26:da:27:0c:
f5:05:14:98:54:ce:c7:77:c8:44:bf:04:a2:9e:60:
c6:4e:5a:e2:d5:b0:6c:94:56:13:f5:66:61:e2:1a:
1f:77:bb:bc:d0:ff:0d:33:f7:3c:f3:05:83:cc:5f:
84:3c:9e:7f:51:94:ab:1c:35:dd:55:37:bb:99:53:
5d:15:5e:94:3a:06:ee:76:9a:f4:da:0c:dd:73:af:
76:96:28:5e:f8:3c:e6:59:e8:d9:6e:b4:7a:06:32:
3f:6b:0b:3d:e0:94:09:7a:86:78:65:2d:4e:06:55:
79:8a:07:9c:0f:fb:fe:87:de:7f:7a:9d:d0:50:8e:
fb:c5:21:5d:42:d1:1e:44:ad:01:87:81:7f:00:d6:
e5:79:17:53:a8:2a:74:97:7c:ec:1d:7c:73:ba:b2:
01:08:bc:80:ae:5a:14:7c:f5:35:c5:0c:70:27:5c:
99:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:A0:05:FA:CB:89:F7:29:A6:DA:60:6D:76:FE:5C:56:C6:DF:EA:1B
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/KaAF-suJ9ymm2mBtdv5cVsbf6hs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.35.0/24
Signature Algorithm: sha256WithRSAEncryption
54:7c:ef:6a:7f:2b:24:04:14:06:de:9b:cb:56:4c:5f:9c:ea:
50:09:83:ad:9e:b1:9f:f4:fe:3e:e1:50:72:98:29:0c:93:b9:
a6:01:f7:f4:ca:eb:ff:a0:33:26:ac:6b:2a:7e:fc:91:19:a4:
0a:61:ee:b2:2c:a9:0a:ec:8b:1e:3e:1a:18:55:f6:24:9e:2e:
e1:2b:82:5e:5b:36:f6:65:44:9b:b6:0a:19:a6:5c:b1:7a:84:
9f:18:a6:a0:0f:84:be:e1:7b:8f:10:2d:d8:5d:ac:f6:e0:9c:
a9:05:3d:a1:2e:95:3c:3b:b7:a4:2d:70:eb:a4:8f:ab:8c:a5:
85:71:af:d2:0a:a0:62:49:15:96:02:42:7f:89:d5:53:2a:4c:
e5:6f:80:be:98:98:60:76:0f:bf:27:e6:a1:c8:2e:bf:c1:8e:
e9:0b:db:ca:70:d0:b4:83:94:ee:ae:70:b6:8b:f0:04:49:10:
69:0c:81:fa:96:53:ea:ba:5a:36:6a:cc:a2:3b:5f:d5:b2:56:
a6:5c:06:7f:6a:59:2c:33:b6:a2:eb:da:2d:77:0f:14:d0:2b:
0b:38:41:8b:92:e6:12:56:e0:70:c6:5e:1f:20:11:66:03:69:
e6:2f:1a:ae:68:a7:a3:6f:94:77:c6:a6:0e:4a:ac:a3:e6:cd:
29:a0:f6:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:22 2024 by rpki-client on console-fra.rpki-client.org