Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/eryhPRS-T7mpz9np1e0bHxt8eCs.roa
File: eryhPRS-T7mpz9np1e0bHxt8eCs.roa (raw, json)
Hash identifier: dAVguzVMvOJIch2xwWdBOn6V82MDpqWf2RnZKxUfX8U=
Subject key identifier: 7A:BC:A1:3D:14:BE:4F:B9:A9:CF:D9:E9:D5:ED:1B:1F:1B:7C:78:2B
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0CCE
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/eryhPRS-T7mpz9np1e0bHxt8eCs.roa
Signing time: Fri 01 Sep 2023 09:39:47 +0000
ROA not before: Fri 01 Sep 2023 09:39:47 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38843
IP address blocks: 223.27.36.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3278 (0xcce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Sep 1 09:39:47 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=7ABCA13D14BE4FB9A9CFD9E9D5ED1B1F1B7C782B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:87:2f:5a:db:12:96:1d:fb:33:9c:fc:97:19:
72:9a:02:4a:7b:a2:4f:03:00:f8:ea:57:0a:58:95:
c1:9f:1f:6d:3e:46:d4:72:57:69:e5:c3:d3:fb:4a:
4e:36:ff:af:a3:00:70:89:ca:98:87:f2:fe:9d:b8:
49:9e:35:10:75:28:12:f9:2e:3b:23:ef:10:69:8f:
47:96:ee:d8:29:b9:36:10:90:c0:a3:11:51:48:8a:
0b:e3:0a:86:1b:02:af:83:fe:78:a5:78:f9:b6:bb:
93:1c:02:73:89:cb:7d:67:c8:2e:e3:5e:22:04:c8:
63:16:d0:53:17:75:83:d0:38:52:14:c3:37:f1:2e:
c1:6c:ca:b0:41:d9:85:6b:69:8c:a0:f5:cc:30:f9:
b1:5f:1d:54:a4:a9:a5:4b:56:d1:14:27:30:39:08:
7e:9d:64:31:62:9d:8f:e6:99:57:49:9c:85:97:47:
79:0b:60:24:73:e0:b5:c3:33:30:f0:ac:c7:ac:4e:
a0:f6:5c:2b:3e:56:17:1d:34:91:a5:e6:e0:c4:46:
2d:ac:90:ed:e7:fd:48:3a:60:cd:8c:39:ee:86:38:
00:4c:3a:a0:05:ff:ab:9a:49:ba:c0:4c:95:aa:9a:
a4:66:a8:03:78:46:4f:62:df:05:2c:ef:d6:05:73:
d2:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:BC:A1:3D:14:BE:4F:B9:A9:CF:D9:E9:D5:ED:1B:1F:1B:7C:78:2B
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/eryhPRS-T7mpz9np1e0bHxt8eCs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.36.0/22
Signature Algorithm: sha256WithRSAEncryption
2f:c8:2e:8a:fd:e3:06:2c:c5:79:c2:b6:64:da:cc:ef:f2:e0:
e3:18:b1:05:79:76:18:09:84:04:92:e4:5d:71:eb:87:05:8e:
91:b5:36:34:9d:4e:c9:cf:d5:47:f2:4e:ff:2a:71:67:0e:48:
03:58:78:01:1f:33:c3:20:ca:fb:8d:fc:b1:3a:aa:75:33:5d:
59:4c:6c:da:69:d2:5b:73:71:89:74:47:fe:63:ce:11:36:8f:
5b:21:23:c0:ae:e1:a4:89:f8:a8:4c:5e:5d:41:54:b7:51:13:
ab:57:07:ee:35:d4:42:90:13:df:45:a2:12:f7:4c:bb:e1:be:
14:ef:ce:6e:27:42:b6:da:e0:ce:d1:1e:ee:6d:cb:f6:da:57:
e3:57:f3:19:58:79:65:f7:1b:0a:81:30:0d:d2:48:21:ae:b9:
25:2d:8a:51:b7:2e:7b:21:a1:6d:79:52:ae:ca:dc:65:a0:d1:
48:88:14:8e:12:2e:6b:b8:a4:cb:e0:87:5c:4a:02:bc:3f:ca:
3f:bc:bd:09:7a:14:48:ef:36:fb:ef:37:b4:69:40:d7:d7:a9:
33:4b:a8:c3:7f:e8:ab:15:53:9b:72:a4:e0:74:09:ab:a3:2a:
e6:ca:ca:ae:dc:61:27:11:89:db:de:b7:4e:ed:f7:d6:6e:d5:
b7:58:b1:ab
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDM4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzRE
RDQzMjk2MUFDNDJENjQ0QUVBRjM0QjE0QUVDNzAyNzVCMDZBMzAeFw0yMzA5MDEw
OTM5NDdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDdBQkNBMTNEMTRCRTRG
QjlBOUNGRDlFOUQ1RUQxQjFGMUI3Qzc4MkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDdhy9a2xKWHfsznPyXGXKaAkp7ok8DAPjqVwpYlcGfH20+RtRy
V2nlw9P7Sk42/6+jAHCJypiH8v6duEmeNRB1KBL5Ljsj7xBpj0eW7tgpuTYQkMCj
EVFIigvjCoYbAq+D/nilePm2u5McAnOJy31nyC7jXiIEyGMW0FMXdYPQOFIUwzfx
LsFsyrBB2YVraYyg9cww+bFfHVSkqaVLVtEUJzA5CH6dZDFinY/mmVdJnIWXR3kL
YCRz4LXDMzDwrMesTqD2XCs+VhcdNJGl5uDERi2skO3n/Ug6YM2MOe6GOABMOqAF
/6uaSbrATJWqmqRmqAN4Rk9i3wUs79YFc9IZAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUeryhPRS+T7mpz9np1e0bHxt8eCswHwYDVR0jBBgwFoAUNN1DKWGsQtZErq80
sUrscCdbBqMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFVNTy9O
TjFES1dHc1F0WkVycTgwc1Vyc2NDZGJCcU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L05OMURLV0dzUXRaRXJxODBzVXJzY0NkYkJxTS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL1BVTU8vZXJ5aFBSUy1UN21wejlucDFlMGJI
eHQ4ZUNzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAt8bJDAN
BgkqhkiG9w0BAQsFAAOCAQEAL8guiv3jBizFecK2ZNrM7/Lg4xixBXl2GAmEBJLk
XXHrhwWOkbU2NJ1Oyc/VR/JO/ypxZw5IA1h4AR8zwyDK+438sTqqdTNdWUxs2mnS
W3NxiXRH/mPOETaPWyEjwK7hpIn4qExeXUFUt1ETq1cH7jXUQpAT30WiEvdMu+G+
FO/ObidCttrgztEe7m3L9tpX41fzGVh5ZfcbCoEwDdJIIa65JS2KUbcueyGhbXlS
rsrcZaDRSIgUjhIua7iky+CHXEoCvD/KP7y9CXoUSO82++83tGlA19epM0uow3/o
qxVTm3Kk4HQJq6Mq5srKrtxhJxGJ2963Tu331m7Vt1ixqw==
-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:16 2024 by rpki-client on console-ams.rpki-client.org