Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/gSjFMwW2zxUFEloYnTTTAnoHf-4.roa
File: gSjFMwW2zxUFEloYnTTTAnoHf-4.roa (raw, json)
Hash identifier: +Zi3uO3mIhGqvS7QB1+q2xcsatkwdBBciel8UBIH1gk=
Subject key identifier: 81:28:C5:33:05:B6:CF:15:05:12:5A:18:9D:34:D3:02:7A:07:7F:EE
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0CCC
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/gSjFMwW2zxUFEloYnTTTAnoHf-4.roa
Signing time: Fri 01 Sep 2023 09:39:47 +0000
ROA not before: Fri 01 Sep 2023 09:39:47 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38843
IP address blocks: 223.27.47.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3276 (0xccc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Sep 1 09:39:47 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=8128C53305B6CF1505125A189D34D3027A077FEE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:93:8c:08:d4:56:3b:e4:52:d8:8b:e9:71:0b:
50:77:9f:1b:8b:8a:44:dd:8b:ef:c4:9a:19:fc:c5:
49:6b:a1:e7:5e:0d:36:29:6e:46:99:5a:f9:02:09:
1e:61:d5:ac:2f:d8:08:af:10:f7:76:b3:e0:9b:3b:
92:38:ce:4c:af:a2:b2:66:02:c2:20:ab:7e:c0:a4:
17:f2:b2:17:66:4d:e8:02:9a:a7:39:01:40:0f:5c:
a2:4a:4f:33:21:d9:8a:03:65:92:08:aa:16:73:54:
1d:d9:45:39:74:9d:f7:7a:be:1f:48:8a:89:0c:cd:
ea:b1:5b:58:af:ed:75:d0:0a:3b:80:1c:ee:77:1f:
7a:70:b8:5b:42:5c:c6:50:6f:29:b3:37:89:53:fe:
b0:c2:0d:36:4f:2b:02:d6:cf:bb:1c:cf:7a:bf:9e:
a2:81:9f:ef:48:e5:39:d3:4a:d2:f8:10:16:6d:26:
2a:e0:b5:63:19:a2:a5:1f:2c:07:7c:e7:8f:f7:fe:
fb:5b:0c:59:68:65:56:06:38:ba:08:6f:cb:92:85:
dd:35:b4:dc:af:e4:50:05:31:33:1e:39:35:9e:e8:
96:2c:42:de:49:de:18:34:70:46:9e:ee:5b:c2:6a:
b2:30:5e:eb:cf:ab:b3:9f:1e:12:98:cf:fa:c6:ef:
da:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:28:C5:33:05:B6:CF:15:05:12:5A:18:9D:34:D3:02:7A:07:7F:EE
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/gSjFMwW2zxUFEloYnTTTAnoHf-4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.47.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:13:96:37:21:49:94:39:56:67:ca:b5:59:9b:fb:67:ac:46:
7c:46:d1:91:18:05:14:68:62:e3:3d:b1:a3:06:4b:7e:36:b7:
b0:cf:0e:2b:cb:ac:1d:a1:46:ce:0f:17:b7:69:4d:ed:95:da:
6b:97:42:7e:f5:75:83:41:25:da:77:56:bf:7d:46:40:19:3b:
e7:34:1c:3b:7e:a3:ca:95:be:29:5c:52:58:b6:b9:ad:4e:fb:
5f:24:69:e1:a0:41:e2:ef:4d:3f:42:e9:f0:5c:72:e0:3e:c5:
26:25:64:f0:28:10:01:94:2b:8b:fb:c8:c0:e9:5d:ea:5f:69:
b0:65:ee:4c:fc:6b:e9:8d:31:20:12:90:4c:52:c5:6c:b7:02:
c5:47:cc:2d:55:8c:11:fc:8b:a7:7b:81:fb:26:1e:ee:e6:5a:
4a:63:d0:20:bc:2b:a5:27:06:7f:96:6a:a4:2a:be:c9:73:9e:
0d:fe:70:ef:43:59:16:10:24:ac:59:0f:39:81:d0:d9:01:83:
a9:f9:6f:80:85:40:25:24:98:5d:aa:8a:fb:50:a1:9e:10:13:
c7:2d:6f:22:d6:fb:66:1a:bb:4d:89:89:69:19:48:40:3c:43:
02:e2:61:87:6f:b5:a4:15:a2:e7:85:35:ee:67:52:f5:d1:a9:
a1:a2:7c:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:16 2024 by rpki-client on console-ams.rpki-client.org