Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/uGBWGy1aWJaCh7l8omGgvgUbW7s.roa
File: uGBWGy1aWJaCh7l8omGgvgUbW7s.roa (raw, json)
Hash identifier: 91ManYkyTXGwftyQmGAsOZD61hzcZSH0AchgBMgnCV4=
Subject key identifier: B8:60:56:1B:2D:5A:58:96:82:87:B9:7C:A2:61:A0:BE:05:1B:5B:BB
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0CDD
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/uGBWGy1aWJaCh7l8omGgvgUbW7s.roa
Signing time: Fri 01 Sep 2023 09:39:52 +0000
ROA not before: Fri 01 Sep 2023 09:39:52 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38843
IP address blocks: 223.27.41.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3293 (0xcdd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Sep 1 09:39:52 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=B860561B2D5A58968287B97CA261A0BE051B5BBB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:0d:88:43:35:2b:ac:1e:14:59:4f:42:06:bf:
d3:91:ba:a7:29:8e:26:72:39:ad:6f:92:18:c4:85:
84:95:f7:d6:67:4b:8a:73:1c:de:0c:ed:b1:48:53:
51:01:22:74:39:40:5c:31:5e:e6:bb:a4:59:b7:e5:
43:a0:3f:62:48:71:fe:5c:fe:26:77:20:e5:62:7e:
1d:70:ed:0b:56:83:91:5d:5b:bc:6f:de:7c:50:58:
90:62:db:ad:63:c3:ec:fd:25:a4:be:ca:5c:7d:12:
75:ee:5a:c3:2c:81:cd:ca:af:12:f2:2e:ee:e2:e0:
80:fd:34:58:ed:23:89:17:ce:f6:f0:06:2c:3a:ab:
06:54:72:0a:08:37:e6:b6:9e:31:d0:20:c8:f6:1a:
6d:b6:4c:b0:2c:08:70:e3:4e:2a:35:cb:65:3b:b3:
60:5b:94:ec:6a:0d:60:58:fb:04:b7:ff:31:b0:0a:
f8:f8:8c:b5:02:35:21:f9:ca:b8:bc:71:c7:00:0e:
b0:4c:8d:db:38:21:d1:08:95:87:f9:36:91:f7:e3:
3b:e9:bc:ee:15:dd:f1:3f:0b:d7:0a:e2:11:50:d2:
3e:2f:9d:9b:27:9b:40:3f:4a:5b:05:23:ed:18:ab:
16:55:cc:6c:f9:c2:d8:a4:c1:6f:33:4e:23:29:5c:
1c:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:60:56:1B:2D:5A:58:96:82:87:B9:7C:A2:61:A0:BE:05:1B:5B:BB
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/uGBWGy1aWJaCh7l8omGgvgUbW7s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.41.0/24
Signature Algorithm: sha256WithRSAEncryption
02:2e:15:61:51:8f:69:f1:10:5d:d0:f4:8b:ac:0f:e3:e5:a4:
a5:64:b3:16:f0:18:cf:47:b6:f5:88:7c:80:64:25:d8:32:cf:
cc:c8:45:fe:19:8d:a0:ae:19:80:51:05:0a:5d:f4:7e:94:4f:
bc:ba:ca:4d:d2:cb:4f:c6:3c:8e:10:8a:cb:d7:16:a6:0f:5e:
4b:6f:4a:aa:72:b8:6e:fa:7b:d7:06:5f:d6:11:9e:d8:35:3a:
6a:06:27:5e:a4:06:5a:3d:12:1a:c7:f0:bf:52:53:19:ff:ef:
ff:56:d3:41:f9:4a:fa:9d:42:8a:09:f0:68:53:fb:40:69:75:
08:74:98:0a:f4:95:d8:e8:71:3b:91:a4:86:c5:54:7e:15:d0:
2d:21:1f:30:6c:27:ca:58:94:0e:de:6d:58:cf:13:5c:40:24:
79:f6:83:d2:64:fc:a6:89:d0:a1:db:5d:6a:4e:93:bd:7a:04:
23:fb:d1:f3:96:10:1c:a0:79:5a:de:ef:50:e7:ca:97:96:60:
f9:96:0b:e8:e5:e8:55:43:ff:69:72:ce:34:8c:ce:78:08:8c:
1f:44:7e:bd:78:7a:e4:b9:2e:fb:e9:2c:0f:a9:bb:3d:fa:a6:
bc:df:e1:1e:83:c2:2a:71:7a:56:ad:d6:92:e9:7a:c2:24:90:
c6:4c:45:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:22 2024 by rpki-client on console-fra.rpki-client.org