Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/1VMJIMQACaAgAEcjN0uO8oVCyao.roa
File: 1VMJIMQACaAgAEcjN0uO8oVCyao.roa (raw, json)
Hash identifier: us/DmBAf/pZuOI0kwR8GJ/MboBQUFcHlPmSgGrFS8FM=
Subject key identifier: D5:53:09:20:C4:00:09:A0:20:00:47:23:37:4B:8E:F2:85:42:C9:AA
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0989
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/1VMJIMQACaAgAEcjN0uO8oVCyao.roa
Signing time: Sun 07 Feb 2021 13:09:32 +0000
ROA not before: Sun 07 Feb 2021 13:09:32 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38843
IP address blocks: 124.150.134.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2441 (0x989)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Feb 7 13:09:32 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D5530920C40009A020004723374B8EF28542C9AA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:0d:e2:54:77:e1:81:0d:39:b2:cf:0b:a7:29:
85:e4:74:03:46:ee:65:fc:a6:6e:fb:1f:77:26:05:
07:00:0f:cb:93:2b:fb:ef:58:c4:3e:ca:b4:35:6a:
37:15:f7:35:86:db:ab:49:22:ba:36:b1:35:c2:23:
01:95:5c:e5:45:ca:47:79:9d:98:27:04:a4:f9:f3:
f8:bc:4f:77:ca:22:92:d5:84:3b:dd:ed:8a:91:87:
97:5a:1a:5c:42:77:1a:ed:59:a7:33:d5:88:a3:8c:
ba:61:15:62:3d:d5:4b:4a:59:8d:b2:f9:51:3d:9b:
dc:dd:99:82:c1:66:0a:24:71:b7:ba:e5:93:79:a2:
ba:9c:3e:40:a8:2c:17:ce:40:59:25:1b:e4:75:ec:
8e:7b:38:d2:34:bd:66:bc:31:74:bc:5f:94:05:f1:
33:1a:d3:4b:2b:34:b0:ed:5e:b8:68:fb:d5:b7:09:
ec:0d:3c:e6:52:ec:e2:63:c7:55:9b:dc:29:90:ba:
10:ef:ca:2f:df:36:7a:53:0f:f3:5d:d9:40:c6:43:
bb:39:31:eb:15:12:36:0d:48:b5:ba:e1:48:3a:68:
05:b2:39:03:54:71:18:53:5b:dc:3c:99:aa:b9:1d:
09:3b:b6:3a:94:fb:08:8c:76:50:3b:68:6b:a3:d6:
8b:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:53:09:20:C4:00:09:A0:20:00:47:23:37:4B:8E:F2:85:42:C9:AA
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/1VMJIMQACaAgAEcjN0uO8oVCyao.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.150.134.0/24
Signature Algorithm: sha256WithRSAEncryption
35:30:0b:78:83:51:08:65:1b:ea:19:8e:d3:13:2f:e1:7a:1f:
82:21:d9:1e:11:e9:61:00:d8:f0:8d:de:82:b8:1d:e5:72:11:
aa:2d:f8:9e:d3:e8:c7:64:f2:e6:1b:f5:95:bd:aa:fb:bf:c7:
50:38:af:ac:28:4b:7f:b1:ca:a4:b2:f2:6d:52:1b:0e:f8:45:
3a:69:44:94:74:c6:11:1a:b0:ed:f5:30:73:c4:41:3c:91:cf:
87:bf:fa:df:f9:ac:b4:fa:fb:48:7e:43:f2:66:a8:1b:0e:51:
52:f0:c0:a4:f0:60:74:28:3f:ee:ce:8f:33:f1:5d:0e:f8:56:
61:50:dc:26:dd:b6:2d:d6:d0:bc:be:86:eb:3e:60:3c:8a:fd:
fe:56:07:91:4b:16:54:24:37:da:61:15:ee:b1:3e:22:f5:9b:
f1:4b:09:eb:3f:87:71:09:52:7d:08:fc:bd:99:91:c2:ca:c8:
db:2d:3d:75:61:15:c7:7e:c9:d4:4e:32:1c:00:2b:d3:75:26:
0e:4e:b6:e1:5d:22:d3:6a:ed:f5:a6:a9:15:77:a0:93:90:b1:
30:87:91:07:31:14:f5:43:82:29:77:b2:42:cc:41:34:88:75:
e0:8e:d9:86:81:6f:0e:9b:30:57:fd:38:cb:b8:c4:43:ff:8d:
53:73:bf:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:16 2023 by rpki-client on console-fra.rpki-client.org