Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/-O9ILgJ9U9v4DB_Dn3dliOWMJqM.roa
File: -O9ILgJ9U9v4DB_Dn3dliOWMJqM.roa (raw, json)
Hash identifier: I/+MGUv8zxPQ2j1kPGSTzX8bE/slza2FecpzhRikGnw=
Subject key identifier: F8:EF:48:2E:02:7D:53:DB:F8:0C:1F:C3:9F:77:65:88:E5:8C:26:A3
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0975
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/-O9ILgJ9U9v4DB_Dn3dliOWMJqM.roa
Signing time: Sun 07 Feb 2021 13:09:15 +0000
ROA not before: Sun 07 Feb 2021 13:09:15 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 198949
IP address blocks: 223.27.48.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2421 (0x975)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Feb 7 13:09:15 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=F8EF482E027D53DBF80C1FC39F776588E58C26A3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:62:9d:63:b8:d9:be:c4:a3:a8:bd:86:0f:bd:
d8:14:9c:50:57:31:bc:34:bd:96:7b:33:75:ca:59:
c7:f4:7b:d5:23:91:20:44:e7:55:72:42:71:9c:54:
b4:40:d9:a4:4d:92:63:70:b0:23:1b:93:fb:0e:61:
68:00:92:c6:6c:ff:6d:2f:f8:58:3e:89:bb:9c:10:
71:dd:3f:5d:ea:94:bb:36:50:63:e2:ec:6e:47:5d:
e2:11:74:97:0a:58:22:61:64:ff:c6:6b:42:1d:f1:
4b:9b:44:bc:cb:80:0c:bc:d7:56:04:f3:df:b0:b7:
5b:5f:ee:5a:b1:3d:f2:83:ee:ff:a6:31:e3:42:d3:
0d:b8:ed:97:57:a7:c5:c0:44:19:d4:52:4c:33:06:
ab:e0:85:30:bc:2d:8d:e0:02:e9:5d:68:92:7d:ba:
67:27:89:32:c0:43:fd:a4:09:00:86:13:e7:e7:72:
14:89:5b:df:2f:97:04:89:fd:5b:da:39:97:61:f3:
d8:11:87:b3:14:02:d0:0d:4a:77:a9:c4:75:23:c7:
90:c2:41:f3:38:93:8c:74:88:02:2f:0c:15:ff:51:
04:d0:51:d2:6f:06:80:a4:59:58:31:a4:1d:82:d3:
72:04:23:3b:ea:71:5c:b7:24:fa:0d:91:89:21:0e:
a2:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:EF:48:2E:02:7D:53:DB:F8:0C:1F:C3:9F:77:65:88:E5:8C:26:A3
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/-O9ILgJ9U9v4DB_Dn3dliOWMJqM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.48.0/24
Signature Algorithm: sha256WithRSAEncryption
29:d3:3e:b1:0f:12:0c:c1:20:3e:2e:ed:a9:eb:28:a0:a1:1a:
27:aa:bd:7f:2a:d0:13:09:14:dd:1b:3f:5e:6f:1e:eb:03:a5:
88:15:df:d4:81:8c:c8:a1:50:35:9a:94:09:10:02:6a:93:df:
12:7d:9e:9e:9c:aa:06:54:a3:52:2e:d7:72:d3:7f:cd:69:6d:
75:ba:61:b4:ee:74:cd:4d:d3:7b:d4:6e:4e:f7:9e:7b:e3:9e:
14:60:d6:e2:98:f8:aa:c5:e6:51:54:fc:2b:85:b9:2a:d9:b7:
09:d0:b0:46:a3:dd:e2:42:5a:ab:b6:ed:1f:e3:51:76:b6:cb:
86:a4:45:e3:36:2c:8f:74:92:e2:2d:32:e3:ae:a1:c7:a2:a5:
d7:4a:8e:7f:63:98:f3:3d:6b:60:ab:58:ed:24:9a:89:1d:0c:
c9:44:f5:fe:83:81:da:73:a7:1b:b6:53:4e:01:d0:74:68:60:
b6:72:0e:ed:1e:16:e4:9a:aa:0e:06:94:98:34:02:c0:8f:a6:
18:6c:69:15:0f:8e:b4:22:d2:9a:88:c5:05:44:93:3f:75:ad:
9d:fd:d7:dd:cc:e6:b1:02:53:89:8e:3d:e0:f7:d7:ea:18:5a:
aa:54:38:0f:07:91:ec:b7:e7:8a:b7:2e:44:fc:1f:5a:62:da:
96:d2:3e:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:19 2024 by rpki-client on console-ams.rpki-client.org