Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/0G_Vnv3958rwjtpC-ONvNerDoV0.roa
File: 0G_Vnv3958rwjtpC-ONvNerDoV0.roa (raw, json)
Hash identifier: WCE6zqAMa75adrI+844WUjAyNhmF7W0FbBWW5ACVU04=
Subject key identifier: D0:6F:D5:9E:FD:FD:E7:CA:F0:8E:DA:42:F8:E3:6F:35:EA:C3:A1:5D
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0BA9
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/0G_Vnv3958rwjtpC-ONvNerDoV0.roa
Signing time: Thu 15 Sep 2022 02:42:25 +0000
ROA not before: Thu 15 Sep 2022 02:42:25 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38843
IP address blocks: 223.27.38.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2985 (0xba9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Sep 15 02:42:25 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=D06FD59EFDFDE7CAF08EDA42F8E36F35EAC3A15D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:4f:90:80:df:83:9b:12:56:50:ed:48:61:e8:
c2:3c:93:8b:ce:31:d2:88:f8:73:dd:1b:bc:c5:8b:
d7:7f:66:2a:d6:6e:87:02:b2:88:b4:fc:6b:f1:9a:
7f:e9:e0:d9:92:75:83:61:83:4d:21:4c:04:3b:47:
3f:25:67:56:75:54:e6:32:69:45:43:4b:0e:ba:a6:
29:81:3c:73:b1:67:c1:7e:0f:c9:a8:64:ee:69:58:
59:6a:ce:09:4c:6d:55:1e:48:6d:73:aa:c3:25:6c:
d8:cc:99:be:f8:70:98:ed:eb:0f:ab:c6:88:81:25:
ff:18:5b:8e:63:24:a3:1d:07:da:bd:54:f8:bf:a0:
51:a6:29:29:cc:d7:6b:a6:1c:c4:61:a8:93:ce:6c:
d5:c1:67:bd:77:f9:50:72:c7:0d:8e:df:91:8d:44:
a6:c2:c3:4c:0c:ae:d4:ab:57:25:c1:4f:25:fa:48:
c6:5b:90:a3:5b:fc:47:03:8a:2f:b4:35:d5:9a:49:
57:43:db:19:34:cf:73:6a:67:2b:af:51:3e:38:22:
70:d6:6f:7a:3b:2c:68:1a:be:64:75:e0:12:fd:81:
9e:c5:b6:2f:03:02:37:9f:89:38:3c:2f:e2:0c:83:
26:a4:d3:11:34:c0:18:4d:65:5e:68:43:62:ab:4a:
ba:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:6F:D5:9E:FD:FD:E7:CA:F0:8E:DA:42:F8:E3:6F:35:EA:C3:A1:5D
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/0G_Vnv3958rwjtpC-ONvNerDoV0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.38.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:e8:25:e3:2d:bb:62:8a:9e:68:ca:e8:ae:de:fb:10:7d:3b:
91:fa:8e:d2:0c:df:b5:d3:38:76:22:c6:77:e0:81:00:03:4b:
49:1d:82:39:7e:4d:b8:2a:42:5d:40:1b:1f:a8:23:73:42:aa:
ba:0b:fb:f3:b4:84:cf:34:6f:4b:28:6d:70:73:47:3e:3e:e2:
85:89:f1:65:08:4e:27:5a:19:f6:c3:d9:05:57:01:01:d7:c1:
5d:58:9e:75:f2:11:eb:3f:d5:5c:a8:68:96:ed:22:5b:fc:ec:
f5:2c:e3:86:66:b6:d1:47:5a:a6:c1:b3:bc:44:e7:bc:bc:05:
29:94:5c:93:f9:fb:2f:bc:9a:33:1e:14:3d:e3:bd:f2:eb:1b:
b4:29:4f:21:e1:1c:e2:99:3a:2f:9d:aa:5f:ea:c3:09:98:62:
65:f5:f8:59:68:da:c8:65:6a:7a:fc:fa:23:db:45:8d:29:87:
68:d3:92:1b:bb:b4:20:76:5d:49:63:79:2f:c5:bd:1b:d2:d1:
67:c5:f5:9e:51:d3:7c:30:66:3f:ad:fb:80:05:46:56:5b:5a:
1e:83:9a:36:12:19:2c:88:98:cb:eb:f9:de:0d:78:b4:e9:8e:
a9:82:61:14:81:d0:ed:68:d4:1e:d0:53:8a:7f:ac:a9:39:78:
f1:2a:6c:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:19 2024 by rpki-client on console-ams.rpki-client.org