Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/p7jBJoAoATsTBSJMfF1ezhmeld8.roa
File: p7jBJoAoATsTBSJMfF1ezhmeld8.roa (raw, json)
Hash identifier: F+XeW/A0uXxEzshXjo24CDH98wsgAaAEHrsdCewScVQ=
Subject key identifier: A7:B8:C1:26:80:28:01:3B:13:05:22:4C:7C:5D:5E:CE:19:9E:95:DF
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0CD0
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/p7jBJoAoATsTBSJMfF1ezhmeld8.roa
Signing time: Fri 01 Sep 2023 09:39:48 +0000
ROA not before: Fri 01 Sep 2023 09:39:48 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38843
IP address blocks: 223.27.54.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3280 (0xcd0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Sep 1 09:39:48 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=A7B8C1268028013B1305224C7C5D5ECE199E95DF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:7f:a1:c5:dd:aa:be:fa:ba:77:6e:00:b0:8e:
34:d6:de:0f:06:44:72:fc:2d:2f:d7:c6:d3:ea:0d:
07:66:f4:47:65:94:e6:51:0e:a7:c2:20:ef:21:7a:
58:d8:4a:58:97:f7:a6:bc:8a:e4:59:5e:77:87:34:
08:c3:60:00:dc:4c:c9:65:7e:e0:8a:94:28:ca:38:
7b:7e:da:b8:3b:8f:71:b9:db:ef:00:6b:60:a4:56:
fe:f1:ac:1e:87:e4:b7:66:7b:1e:11:85:b2:7d:d3:
fb:06:58:13:fa:67:f7:2b:a8:6c:28:d5:d6:a5:6c:
10:12:3b:49:84:d0:ac:16:a3:dc:12:12:0a:c1:b5:
2f:9d:0d:c6:98:cf:fa:91:0b:6f:61:d4:bc:48:e5:
a3:03:56:1f:8a:bd:97:24:c1:dc:07:99:94:6b:da:
f9:d7:c4:6d:dc:72:42:0c:a2:41:49:8f:50:5a:9e:
08:5a:36:27:31:35:3b:86:1f:5b:30:5b:e8:cf:09:
f5:91:e6:4d:4d:f7:7d:f5:0f:43:14:a3:c7:f6:1f:
ab:7f:05:c1:6b:27:49:29:c7:e3:55:17:05:dc:5c:
5e:da:fb:a1:18:e0:84:f1:4e:2b:97:af:f5:e6:89:
8e:86:cc:d6:1e:6d:ff:35:7f:7b:f7:94:bd:34:57:
4f:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:B8:C1:26:80:28:01:3B:13:05:22:4C:7C:5D:5E:CE:19:9E:95:DF
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/p7jBJoAoATsTBSJMfF1ezhmeld8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.54.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:f5:4a:63:a4:97:4c:bd:64:d2:17:27:0e:e3:f4:d1:f7:3f:
b8:21:d7:ea:92:f8:68:00:c8:ec:91:2e:dc:c4:ab:81:83:8b:
8a:54:a8:8e:01:e1:81:8f:a3:fa:7b:55:3d:5a:1e:60:32:cd:
f9:3d:54:ae:7e:34:d2:d5:55:6b:09:ad:bd:e7:23:5b:ba:16:
50:e6:b4:e9:e6:73:f2:0b:2a:25:3c:08:03:a6:02:ef:0b:0c:
1d:6f:04:3e:11:49:91:bd:a0:dd:c9:3c:80:ea:c9:1c:bf:7b:
42:26:4b:86:5b:ab:07:6b:ca:13:6e:3b:89:0f:72:a9:71:1d:
27:a3:7f:35:8e:85:8b:40:0e:2e:70:a9:d8:0f:ee:f5:a6:e7:
13:5b:22:0a:3c:cb:7d:0a:16:30:70:19:2d:ea:9b:ab:c1:98:
48:d2:56:18:8c:75:51:d5:94:e3:6c:b5:46:51:d3:da:22:d6:
84:3a:16:9d:68:90:05:e9:71:d9:a0:cb:89:e9:7e:70:f1:8d:
ff:7c:fd:40:c5:32:ca:db:9d:80:91:b0:38:6f:d8:58:b5:39:
2b:63:c4:2a:70:13:1b:f7:47:33:e9:1d:1b:0b:4d:bb:9a:0d:
dc:0c:fc:33:4b:16:61:18:5d:7e:48:77:1c:98:ff:df:93:ea:
32:28:13:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:16 2024 by rpki-client on console-ams.rpki-client.org