Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/erpQr4tTVhW2YCD75XICD7DFtD4.roa
File: erpQr4tTVhW2YCD75XICD7DFtD4.roa (raw, json)
Hash identifier: gvTvN7M3GEjqU9TcvIDxPQvEw80UitTF77EzNiD7H60=
Subject key identifier: 7A:BA:50:AF:8B:53:56:15:B6:60:20:FB:E5:72:02:0F:B0:C5:B4:3E
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0CCB
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/erpQr4tTVhW2YCD75XICD7DFtD4.roa
Signing time: Fri 01 Sep 2023 09:39:46 +0000
ROA not before: Fri 01 Sep 2023 09:39:46 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38843
IP address blocks: 223.27.46.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3275 (0xccb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Sep 1 09:39:46 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=7ABA50AF8B535615B66020FBE572020FB0C5B43E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:7b:cd:2c:58:92:6c:66:bc:be:0b:a5:29:a4:
f9:34:a4:bb:84:c2:8e:14:52:17:e7:d8:2d:fe:90:
8a:d0:a4:b0:b6:7c:ad:82:48:5f:95:7a:71:ef:dc:
29:95:08:58:74:d2:37:9e:02:49:aa:54:68:fa:1b:
4e:0a:11:a6:a0:01:a6:e5:a5:32:98:b7:92:3d:1d:
c2:c7:8c:9b:eb:f6:0f:52:19:fe:8e:d7:48:c5:e9:
bd:24:da:b6:74:d1:26:03:ad:40:96:95:97:55:b0:
e7:89:db:2a:68:c6:9e:91:9d:a2:8d:55:a8:63:76:
66:9d:e8:b0:aa:1a:58:e7:93:36:83:61:4d:20:4b:
90:82:90:db:f0:4e:c4:e3:37:a1:22:64:04:f8:99:
30:6e:bb:d3:79:93:39:86:65:54:20:94:72:d9:a9:
ac:04:f4:61:cc:17:fc:92:05:d5:02:7a:b5:d7:d1:
bc:a6:2b:dc:a7:c6:84:28:ec:1c:5f:85:41:bd:8b:
f5:f0:77:a0:7b:90:a9:f3:00:31:ed:5b:f8:4f:5e:
95:fb:f9:fd:0e:26:9a:78:73:93:de:e0:1d:e3:32:
26:c6:d5:9c:0b:3d:33:8d:4e:d6:aa:09:3d:5e:59:
dd:f7:e8:84:30:f7:0d:fe:6c:50:33:d4:4e:65:f2:
8b:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:BA:50:AF:8B:53:56:15:B6:60:20:FB:E5:72:02:0F:B0:C5:B4:3E
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/erpQr4tTVhW2YCD75XICD7DFtD4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.46.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:10:c4:52:b9:4f:bc:67:df:85:a7:de:9d:69:2c:fc:d9:4e:
b5:1b:fa:9f:74:3f:a9:9d:e2:fc:83:9b:91:b7:c8:47:0d:de:
41:0f:e5:91:c4:29:33:01:dd:a7:d2:65:f1:66:50:e1:37:c5:
21:55:3a:cc:9f:3f:ee:e6:53:09:9a:0e:a0:a7:2d:82:b2:d8:
b7:60:19:2a:c6:88:2e:b4:0e:45:e9:a1:aa:94:87:c2:40:e9:
2e:cc:f2:31:e4:12:b6:a3:b2:c6:6e:47:37:9f:c2:c6:8b:85:
78:48:0e:cc:cc:3c:36:98:db:0b:b4:da:5b:29:55:94:21:a8:
6c:3b:70:7c:8a:0d:58:26:44:fc:6a:a9:b9:05:c1:60:60:c4:
40:e5:6e:e3:35:23:84:62:c0:8d:06:6b:41:09:fe:4a:d1:46:
60:88:5c:63:f4:61:eb:28:92:74:6f:b9:27:78:5d:69:14:27:
ec:b7:2e:04:87:e3:65:1d:5d:78:cc:a7:aa:82:5b:d1:8a:06:
d9:11:22:82:23:98:99:f7:78:5d:d0:0b:24:01:82:6a:be:2c:
77:13:8e:bb:5f:2f:f0:0c:c0:ff:24:4e:c6:24:e9:49:0b:ba:
d4:70:36:75:e2:05:e3:be:a1:57:b4:98:53:f5:be:6e:e9:36:
9c:56:6c:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:22 2024 by rpki-client on console-fra.rpki-client.org