Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/0Be_pRi4MdYbvEAI0-HeD9GeZ4Y.roa
File: 0Be_pRi4MdYbvEAI0-HeD9GeZ4Y.roa (raw, json)
Hash identifier: xbgASgpLK0/S4zeuxqbznFApXYBjUmnHNKbzPYBClXs=
Subject key identifier: D0:17:BF:A5:18:B8:31:D6:1B:BC:40:08:D3:E1:DE:0F:D1:9E:67:86
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 099D
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/0Be_pRi4MdYbvEAI0-HeD9GeZ4Y.roa
Signing time: Sun 07 Feb 2021 13:09:52 +0000
ROA not before: Sun 07 Feb 2021 13:09:52 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38843
IP address blocks: 223.27.42.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2461 (0x99d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Feb 7 13:09:52 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D017BFA518B831D61BBC4008D3E1DE0FD19E6786
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:4f:27:fb:0c:21:6a:c9:09:da:df:ae:ce:49:
14:01:e7:13:22:9d:8c:d2:41:7f:91:ea:8d:b5:ed:
b7:6e:72:38:ad:3c:91:5d:e0:f0:aa:95:2c:14:6e:
9f:af:31:22:b3:bf:a3:e6:bd:0c:ee:94:2f:6b:95:
dd:e4:cb:6b:ef:a7:f3:55:b4:f5:39:76:d1:af:2e:
4c:ac:3d:e8:69:af:90:92:07:c1:66:86:b9:52:c0:
22:73:7c:c8:72:1f:0a:63:1b:6e:e3:4b:d1:02:68:
c6:b1:6b:11:30:f4:5c:4e:67:59:06:e0:50:b6:c3:
99:dc:4d:32:7c:1c:b3:92:a5:0b:a2:e3:2c:5e:c1:
45:22:2a:13:5b:7f:b5:0e:6b:eb:e2:bb:d9:84:65:
1c:53:52:27:d7:a1:17:19:54:c7:a0:78:7b:3b:68:
6d:34:09:cb:03:48:8c:cb:65:9a:f9:94:0e:9f:de:
f6:11:dd:09:9a:ec:6b:a3:cc:7c:f0:5e:16:3c:69:
da:b1:a0:ec:94:49:7c:4f:01:77:a3:2c:6c:28:a0:
0b:e1:97:df:8e:64:5b:17:e8:55:27:2f:e6:de:1a:
49:43:4a:34:a9:11:c5:bd:e3:34:d6:7c:f8:3a:51:
03:01:aa:9e:93:29:0f:92:51:52:f2:94:b0:09:b5:
3b:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:17:BF:A5:18:B8:31:D6:1B:BC:40:08:D3:E1:DE:0F:D1:9E:67:86
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/0Be_pRi4MdYbvEAI0-HeD9GeZ4Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.42.0/24
Signature Algorithm: sha256WithRSAEncryption
55:91:89:4e:fd:71:bc:68:2f:4c:9d:b4:79:aa:3d:5e:fa:95:
6e:bb:d0:6f:4a:a9:8c:f7:f6:d0:78:ec:f9:ba:93:0c:45:9a:
e5:ee:9e:b9:a0:59:53:fb:4f:69:4e:f4:b9:0c:93:86:19:40:
0e:6f:c3:fa:cf:e5:21:f7:81:22:8c:ea:39:28:da:79:3a:fc:
f3:5a:34:f1:39:e3:80:23:8f:80:8a:5c:5c:b9:7c:cc:65:1c:
01:9b:95:dc:10:a6:b2:77:90:f8:84:1a:b7:89:5e:58:76:87:
1f:44:e2:b6:77:11:fa:1a:9d:a8:44:f9:3a:0d:38:d9:73:1e:
9b:1d:ee:6b:a2:b3:be:ae:5b:2e:5c:fb:76:19:d9:5a:6d:e4:
ff:35:16:68:6c:02:8d:b6:82:62:4f:70:45:78:d3:2b:d0:6e:
d1:fe:1d:bb:e4:f3:e2:e6:d6:08:77:88:74:a6:a5:ea:1d:bf:
7f:69:5f:87:12:64:89:c5:4d:93:d4:0b:51:06:d5:8f:31:db:
41:14:c9:c5:dd:7d:87:75:e8:6d:53:b3:fe:de:59:d0:56:c5:
58:9c:88:9d:33:e2:8b:0c:c8:75:f6:25:f2:e7:23:99:bc:e7:
23:c6:26:41:47:97:e9:93:ca:d8:48:18:1c:ec:b5:fb:dc:7f:
ab:a8:cf:c1
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICCZ0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzRE
RDQzMjk2MUFDNDJENjQ0QUVBRjM0QjE0QUVDNzAyNzVCMDZBMzAeFw0yMTAyMDcx
MzA5NTJaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEQwMTdCRkE1MThCODMx
RDYxQkJDNDAwOEQzRTFERTBGRDE5RTY3ODYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDNTyf7DCFqyQna367OSRQB5xMinYzSQX+R6o217bducjitPJFd
4PCqlSwUbp+vMSKzv6PmvQzulC9rld3ky2vvp/NVtPU5dtGvLkysPehpr5CSB8Fm
hrlSwCJzfMhyHwpjG27jS9ECaMaxaxEw9FxOZ1kG4FC2w5ncTTJ8HLOSpQui4yxe
wUUiKhNbf7UOa+viu9mEZRxTUifXoRcZVMegeHs7aG00CcsDSIzLZZr5lA6f3vYR
3Qma7GujzHzwXhY8adqxoOyUSXxPAXejLGwooAvhl9+OZFsX6FUnL+beGklDSjSp
EcW94zTWfPg6UQMBqp6TKQ+SUVLylLAJtTu9AgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQU0Be/pRi4MdYbvEAI0+HeD9GeZ4YwHwYDVR0jBBgwFoAUNN1DKWGsQtZErq80
sUrscCdbBqMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFVNTy9O
TjFES1dHc1F0WkVycTgwc1Vyc2NDZGJCcU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L05OMURLV0dzUXRaRXJxODBzVXJzY0NkYkJxTS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL1BVTU8vMEJlX3BSaTRNZFlidkVBSTAtSGVE
OUdlWjRZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAN8bKjAN
BgkqhkiG9w0BAQsFAAOCAQEAVZGJTv1xvGgvTJ20eao9XvqVbrvQb0qpjPf20Hjs
+bqTDEWa5e6euaBZU/tPaU70uQyThhlADm/D+s/lIfeBIozqOSjaeTr881o08Tnj
gCOPgIpcXLl8zGUcAZuV3BCmsneQ+IQat4leWHaHH0TitncR+hqdqET5Og042XMe
mx3ua6Kzvq5bLlz7dhnZWm3k/zUWaGwCjbaCYk9wRXjTK9Bu0f4du+Tz4ubWCHeI
dKal6h2/f2lfhxJkicVNk9QLUQbVjzHbQRTJxd19h3XobVOz/t5Z0FbFWJyInTPi
iwzIdfYl8ucjmbznI8YmQUeX6ZPK2EgYHOy1+9x/q6jPwQ==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:30:45 2025 by rpki-client