Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/0kLGHrO3JgvXFEHsA4nviB-BZ0c.roa
File: 0kLGHrO3JgvXFEHsA4nviB-BZ0c.roa (raw, json)
Hash identifier: ijlCXaeZeR2iDf8VRsS1sHlQpB64yhLWUCNHL7PArh8=
Subject key identifier: D2:42:C6:1E:B3:B7:26:0B:D7:14:41:EC:03:89:EF:88:1F:81:67:47
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 097B
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/0kLGHrO3JgvXFEHsA4nviB-BZ0c.roa
Signing time: Sun 07 Feb 2021 13:09:20 +0000
ROA not before: Sun 07 Feb 2021 13:09:20 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 198949
IP address blocks: 223.27.60.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2427 (0x97b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Feb 7 13:09:20 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D242C61EB3B7260BD71441EC0389EF881F816747
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:e2:f7:25:25:8f:9b:00:96:aa:7a:8e:a3:ae:
bc:ef:fd:d8:c3:45:97:1b:25:fb:13:de:db:cc:4e:
da:67:6e:7c:fe:84:04:93:0a:df:b6:db:94:c6:96:
4b:a0:25:b1:92:6d:3d:49:ab:ea:c3:73:4b:60:72:
20:8a:8c:aa:00:a2:cf:13:f8:91:ed:55:0c:f4:63:
4b:9c:f1:55:f6:a4:26:83:87:5b:2b:fb:c1:68:e5:
d9:d3:eb:a0:71:61:13:80:a3:69:dd:3b:8d:4a:f8:
95:3b:2e:d0:a3:80:15:5d:f2:9f:19:0f:ee:de:f2:
f3:f4:78:f6:54:fd:f9:7d:c4:0e:4f:83:80:6e:33:
7e:80:f4:b9:bb:06:4c:44:e2:5f:c3:43:06:ea:91:
9b:ac:4f:dd:c3:37:f5:07:91:96:fe:e0:13:ac:ad:
c8:c2:5e:2a:18:de:12:1d:12:3c:8f:49:95:a6:14:
38:2e:72:36:e9:97:c1:0c:43:09:cb:57:b8:5f:03:
c2:bc:85:ab:50:67:98:b3:74:14:6e:c3:74:73:4f:
a5:ba:41:a7:22:23:e9:09:89:f4:3b:38:9f:0c:31:
92:20:b0:81:53:96:97:d9:b9:84:ed:2d:fa:6a:57:
18:d5:e5:5d:8b:30:b5:12:44:60:63:04:02:b5:75:
db:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:42:C6:1E:B3:B7:26:0B:D7:14:41:EC:03:89:EF:88:1F:81:67:47
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/0kLGHrO3JgvXFEHsA4nviB-BZ0c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.60.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:9d:4d:fa:1f:57:b0:12:2e:85:95:87:69:ae:ce:dd:67:00:
d5:25:cb:51:1d:32:4d:8c:61:e6:53:e5:11:5b:c3:e6:8d:18:
c6:ac:8c:73:8e:3e:93:39:8d:e7:0e:a6:e7:75:28:3d:98:62:
e4:82:b3:cc:79:e4:fe:4c:c4:f4:92:7a:ba:d9:90:e2:f2:fb:
70:83:9c:16:a8:11:a9:9a:f5:99:3b:f5:49:e6:4a:78:2f:c8:
e7:1c:29:ba:84:73:65:85:33:fb:d7:2e:ac:10:82:52:5c:48:
4e:6e:34:a6:c5:af:cb:94:e4:b2:e3:44:71:c9:b7:2b:71:c7:
6e:17:65:90:94:9f:7b:e5:31:b2:9e:de:6f:c0:71:b7:04:a9:
85:4a:19:2f:63:ec:21:96:18:4d:f9:c4:fe:bf:bc:ae:83:0f:
7c:c5:65:f4:bd:30:2f:7d:e8:4d:44:9f:da:fc:21:aa:ce:f4:
04:32:6a:f8:dc:10:f7:2e:52:ca:c7:6f:82:ff:51:98:c7:44:
a1:0c:3c:2c:eb:ad:9d:72:c0:5d:9b:6d:9a:d0:cd:35:f8:2a:
a9:46:cc:8b:5a:d7:a6:6e:32:3b:3a:8c:ec:d3:80:da:e8:34:
d5:17:27:bd:00:3e:f1:5e:00:56:46:c8:50:48:33:07:bd:4f:
d5:fd:5a:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:16 2023 by rpki-client on console-fra.rpki-client.org