Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/_ecU0LTinW3cMZGGblFIn1uXA1A.roa
File: _ecU0LTinW3cMZGGblFIn1uXA1A.roa (raw, json)
Hash identifier: hQYpfJNW+j5js2M9E0VBhRlocf/1S1nPcJN+3ma/xLM=
Subject key identifier: FD:E7:14:D0:B4:E2:9D:6D:DC:31:91:86:6E:51:48:9F:5B:97:03:50
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0CDA
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/_ecU0LTinW3cMZGGblFIn1uXA1A.roa
Signing time: Fri 01 Sep 2023 09:39:51 +0000
ROA not before: Fri 01 Sep 2023 09:39:51 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38843
IP address blocks: 223.27.39.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3290 (0xcda)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Sep 1 09:39:51 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=FDE714D0B4E29D6DDC3191866E51489F5B970350
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:2d:bd:37:01:1e:b8:fa:8f:14:36:e8:84:c9:
40:50:a5:28:ad:e1:ea:2d:8e:41:d9:f4:b8:5e:d7:
1d:21:cc:e0:3a:62:aa:4b:28:d2:19:6b:e4:a1:70:
26:ff:83:ce:23:90:a3:07:83:8b:0f:9c:3b:73:0f:
58:89:78:60:9d:5e:18:f5:b9:52:fb:17:04:e4:37:
b2:b6:0d:1b:5a:5c:e5:5f:be:2c:13:c5:7e:24:39:
0f:62:36:36:e4:2c:79:ce:1e:90:1f:a9:40:e3:53:
1d:4e:b5:6f:a3:f6:27:ae:6f:ee:a7:e6:07:c4:3c:
e6:70:57:38:44:86:90:ee:5f:09:5f:92:7c:e1:21:
d2:05:db:fd:e4:84:e0:34:3f:96:04:f9:a6:e9:7e:
6c:bd:3d:92:44:60:5b:e1:04:9c:99:03:86:a3:bb:
47:98:7e:9c:81:03:ca:6c:dd:07:c8:9e:3f:71:f9:
1b:15:65:48:46:44:7b:5a:b2:ea:bb:a9:0d:bc:12:
5c:0c:5c:4c:7a:8b:c5:ff:95:ee:30:73:75:96:8e:
3c:ae:4f:87:c4:4d:82:65:89:b1:60:a5:80:ba:91:
f8:46:05:dc:8f:b0:a2:8a:bd:c4:be:5e:b6:08:31:
a9:36:d2:6b:92:00:f1:11:38:ab:52:dc:36:37:11:
1c:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:E7:14:D0:B4:E2:9D:6D:DC:31:91:86:6E:51:48:9F:5B:97:03:50
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/_ecU0LTinW3cMZGGblFIn1uXA1A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.39.0/24
Signature Algorithm: sha256WithRSAEncryption
18:ba:ad:98:cb:1a:9e:83:65:56:09:f5:a8:f6:9c:85:ca:e6:
99:07:a8:1d:e7:49:6d:e9:d4:4d:c9:e6:53:82:f3:53:42:bf:
80:13:25:2a:20:91:27:0f:d2:89:a5:98:03:0e:8e:eb:8f:a9:
2e:af:20:b9:17:91:b4:a3:ee:8a:18:8a:22:ba:63:f8:7a:27:
a4:48:7f:e9:60:68:9e:87:d3:2a:9a:c5:e5:b5:a1:11:0e:64:
a5:63:99:aa:93:27:43:bc:22:a9:73:bc:85:c4:bc:ec:24:bf:
36:8f:8a:fd:4b:42:e8:2e:f9:7e:05:7c:db:39:e2:07:52:5b:
c7:e3:b2:77:d5:54:d7:1d:71:21:e5:dc:ef:e1:23:6d:fe:85:
7d:98:d7:81:74:ee:61:1c:80:ab:da:da:7c:2a:f2:cc:c1:ae:
7e:3a:c5:1b:14:cd:b6:d4:9d:83:c2:47:7c:6b:ec:0b:9e:df:
44:a1:f8:96:fd:16:c5:08:6c:65:15:9e:3c:e6:4d:02:16:e6:
dc:fa:3f:c5:6e:3b:a4:8a:f3:06:f7:d3:99:c6:b1:d4:ac:a0:
fe:a5:5d:05:ea:c5:89:4e:e2:27:11:43:18:e8:ec:08:ba:db:
9e:20:4a:58:d0:f4:40:b9:d1:9a:8e:9b:ca:3f:8d:20:c4:37:
5c:85:77:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:22 2024 by rpki-client on console-fra.rpki-client.org