Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/-mkseG1zRBrOFpM0AkDH2RD_Lh4.roa
File: -mkseG1zRBrOFpM0AkDH2RD_Lh4.roa (raw, json)
Hash identifier: dASDQq9w+WuWsS3VGEDmqSDqLbs3xzL4dSa/Um5iyeQ=
Subject key identifier: FA:69:2C:78:6D:73:44:1A:CE:16:93:34:02:40:C7:D9:10:FF:2E:1E
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 08B8
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/-mkseG1zRBrOFpM0AkDH2RD_Lh4.roa
Signing time: Fri 11 Dec 2020 08:58:05 +0000
ROA not before: Fri 11 Dec 2020 08:58:05 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 198949
IP address blocks: 223.27.50.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2232 (0x8b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Dec 11 08:58:05 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=FA692C786D73441ACE1693340240C7D910FF2E1E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:83:92:17:a6:71:29:b2:fa:09:00:24:76:e1:
8f:63:f5:65:1f:59:7f:3a:db:75:67:d1:aa:4c:72:
11:d6:41:30:99:ff:44:20:23:ba:e3:60:b2:ae:85:
c6:fa:63:2c:56:1f:fd:d1:23:87:64:97:7d:45:4b:
73:9b:d9:96:df:66:87:52:08:b3:ca:ea:d4:61:b8:
b4:83:be:3b:70:fe:6e:29:ee:0a:62:0d:5e:ee:d5:
ea:0a:33:d0:e1:aa:f8:e8:06:84:fb:d4:5b:94:11:
e3:c4:41:fd:21:31:cb:f6:71:74:7f:54:e7:0e:8b:
b1:87:a7:f3:05:25:ee:f0:0b:38:e1:35:20:40:1b:
c4:a4:a7:7a:19:d3:1b:a4:70:22:e2:b3:97:33:15:
82:6f:87:d5:2b:4c:d4:86:cf:e0:44:01:a7:03:40:
ad:25:4e:d2:74:8d:30:99:9f:27:c3:43:62:af:6b:
78:a0:0b:11:48:7e:69:ea:db:6b:e8:4a:1d:ac:7c:
4d:40:59:28:ed:50:15:f3:e9:26:cf:53:17:f0:74:
a0:39:57:ef:b2:19:6c:d7:10:b5:79:45:83:c6:ee:
9b:16:6f:9c:72:6d:45:42:df:2d:e1:4a:ee:23:7b:
cb:47:38:45:73:68:93:d4:e8:b6:ea:fc:00:d8:1b:
fa:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:69:2C:78:6D:73:44:1A:CE:16:93:34:02:40:C7:D9:10:FF:2E:1E
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/-mkseG1zRBrOFpM0AkDH2RD_Lh4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.50.0/24
Signature Algorithm: sha256WithRSAEncryption
25:9a:07:32:72:d8:c3:49:5e:35:6f:ef:3b:d6:5a:b8:20:44:
fa:ac:41:8b:c2:5b:2d:55:bd:21:ad:50:a8:3c:07:cc:51:19:
a3:f2:d3:53:ed:5e:cd:a1:84:a6:77:6f:80:7f:8a:59:36:84:
c5:96:b7:6c:43:68:c5:47:64:0c:9a:d5:f4:d6:f9:1e:aa:08:
c9:a9:32:3b:1e:87:89:18:ef:4b:95:73:6a:83:5e:9a:94:01:
6c:65:ed:1a:42:3c:93:7c:c4:01:17:08:4e:d9:57:22:ff:35:
f3:28:a1:3a:d9:b6:53:ba:c3:50:e6:6d:1e:d8:3a:f6:d9:c7:
79:2d:2a:33:50:d3:e0:35:62:e6:fe:7e:0a:3c:9a:8b:f4:b6:
96:42:5d:06:eb:ad:4d:62:4a:60:f1:49:7d:10:40:ca:3c:d8:
10:c9:6e:f3:e6:ac:98:f8:7f:59:26:ef:1b:ad:b9:4b:cd:40:
ab:0d:a8:44:68:ea:02:63:68:f7:5a:8c:c9:1c:47:64:5f:13:
89:48:af:fe:fd:75:92:f4:69:e0:b5:bc:2d:97:9b:d9:2c:d2:
36:36:0c:6d:77:72:7e:fd:d5:9b:2d:ad:58:07:00:d7:87:fc:
0a:d2:3f:51:a0:b5:5a:94:09:ea:84:a1:2b:4f:15:3c:d3:62:
93:a0:33:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:35:57 2025 by rpki-client