Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/25_sNlRk0naSmOxWQYE8ndVNOjA.roa
File: 25_sNlRk0naSmOxWQYE8ndVNOjA.roa (raw, json)
Hash identifier: rpCydQ07ZgoL6Z/dNeiMNL4q4xTp8sT2FjKtisdh4RA=
Subject key identifier: DB:9F:EC:36:54:64:D2:76:92:98:EC:56:41:81:3C:9D:D5:4D:3A:30
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0A95
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/25_sNlRk0naSmOxWQYE8ndVNOjA.roa
Signing time: Wed 06 Oct 2021 07:08:39 +0000
ROA not before: Wed 06 Oct 2021 07:08:39 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38843
IP address blocks: 223.27.48.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2709 (0xa95)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Oct 6 07:08:39 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=DB9FEC365464D2769298EC5641813C9DD54D3A30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:09:36:fa:03:69:4b:fb:8d:2e:e9:85:e7:f4:
ff:38:b3:0b:62:d6:31:e6:86:d2:c5:f1:52:2f:d0:
ea:30:ef:93:0d:26:23:4f:5a:6d:2c:e0:3c:c2:4d:
12:dc:fd:42:8f:e3:9f:ba:bc:c4:53:4a:16:a8:71:
2b:22:0f:c9:d0:01:d1:a8:a2:92:78:6a:a0:d9:e9:
60:89:3b:f7:ae:13:50:c6:82:31:97:4b:b6:b8:c7:
7f:5c:b0:71:02:f6:4e:98:9b:e4:85:56:fe:76:31:
c2:79:3d:37:85:93:42:63:6c:d3:3c:52:0e:e1:de:
95:48:3e:2f:17:de:d4:8a:74:d2:f3:2e:df:a8:e7:
c2:fc:81:f3:ee:50:65:95:e6:96:c9:82:bd:07:79:
ef:bb:f9:91:d6:af:42:6c:fc:a7:10:21:2b:02:3b:
88:0b:04:32:b1:51:6e:5f:9c:94:ec:b2:e1:1f:85:
a6:89:ee:34:0a:ca:9b:72:af:66:90:f3:b3:21:7d:
b9:f6:69:17:37:88:dc:d6:03:81:b0:d4:c8:6a:2b:
f5:39:10:25:d8:aa:22:3b:39:cb:86:f2:be:62:96:
16:a5:b3:ab:71:ce:01:19:56:3c:1a:fd:3e:6e:da:
0a:ee:ab:98:ab:61:b2:f3:cf:0e:45:22:7e:9d:f0:
7a:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:9F:EC:36:54:64:D2:76:92:98:EC:56:41:81:3C:9D:D5:4D:3A:30
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/25_sNlRk0naSmOxWQYE8ndVNOjA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.48.0/20
Signature Algorithm: sha256WithRSAEncryption
11:99:6d:44:1f:4e:c9:25:80:8b:f0:c2:43:9f:b3:6f:8a:76:
98:10:39:06:16:a5:30:5e:1b:58:cb:13:5f:ab:31:ff:66:5e:
8a:15:50:25:ee:c1:98:4e:26:85:cf:f8:8d:1e:54:20:90:ed:
24:19:5f:27:89:9a:57:e2:b1:15:23:32:61:8a:fb:0a:a7:30:
ea:4b:c8:d8:11:30:d0:f0:dd:08:58:d0:64:51:af:71:16:e6:
ce:30:fe:21:69:3d:16:69:22:9e:e9:bd:0c:e4:47:6b:f2:1d:
7f:ca:b3:da:15:a4:d5:47:1d:d7:ef:26:86:a1:62:35:6a:0c:
fa:1c:6e:7d:12:72:2f:e2:92:14:2a:06:4c:7f:98:ab:9c:43:
f4:5d:e1:78:73:b8:4d:49:7e:52:f7:c0:55:97:4d:69:37:5b:
02:bf:6c:e4:ce:b2:0d:fe:1c:f1:f7:e0:3f:e2:1d:df:83:a5:
a1:f6:5e:3b:c9:39:9d:bd:5a:43:b1:a7:b4:16:bc:e4:a4:b8:
66:4f:05:21:cb:b3:35:e0:7f:e7:64:78:1f:0a:a3:54:23:36:
f0:32:b5:a8:eb:07:c4:bc:c8:e9:4f:50:57:1e:f9:7b:56:c1:
57:2e:67:3a:4b:4e:fa:53:bb:e0:81:93:48:e7:90:ba:86:d2:
c4:da:1b:70
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICCpUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzRE
RDQzMjk2MUFDNDJENjQ0QUVBRjM0QjE0QUVDNzAyNzVCMDZBMzAeFw0yMTEwMDYw
NzA4MzlaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKERCOUZFQzM2NTQ2NEQy
NzY5Mjk4RUM1NjQxODEzQzlERDU0RDNBMzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC5CTb6A2lL+40u6YXn9P84swti1jHmhtLF8VIv0Oow75MNJiNP
Wm0s4DzCTRLc/UKP45+6vMRTShaocSsiD8nQAdGoopJ4aqDZ6WCJO/euE1DGgjGX
S7a4x39csHEC9k6Ym+SFVv52McJ5PTeFk0JjbNM8Ug7h3pVIPi8X3tSKdNLzLt+o
58L8gfPuUGWV5pbJgr0Hee+7+ZHWr0Js/KcQISsCO4gLBDKxUW5fnJTssuEfhaaJ
7jQKyptyr2aQ87Mhfbn2aRc3iNzWA4Gw1MhqK/U5ECXYqiI7OcuG8r5ilhals6tx
zgEZVjwa/T5u2gruq5irYbLzzw5FIn6d8Hr7AgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQU25/sNlRk0naSmOxWQYE8ndVNOjAwHwYDVR0jBBgwFoAUNN1DKWGsQtZErq80
sUrscCdbBqMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFVNTy9O
TjFES1dHc1F0WkVycTgwc1Vyc2NDZGJCcU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L05OMURLV0dzUXRaRXJxODBzVXJzY0NkYkJxTS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL1BVTU8vMjVfc05sUmswbmFTbU94V1FZRThu
ZFZOT2pBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBN8bMDAN
BgkqhkiG9w0BAQsFAAOCAQEAEZltRB9OySWAi/DCQ5+zb4p2mBA5BhalMF4bWMsT
X6sx/2ZeihVQJe7BmE4mhc/4jR5UIJDtJBlfJ4maV+KxFSMyYYr7Cqcw6kvI2BEw
0PDdCFjQZFGvcRbmzjD+IWk9Fmkinum9DORHa/Idf8qz2hWk1Ucd1+8mhqFiNWoM
+hxufRJyL+KSFCoGTH+Yq5xD9F3heHO4TUl+UvfAVZdNaTdbAr9s5M6yDf4c8ffg
P+Id34OlofZeO8k5nb1aQ7GntBa85KS4Zk8FIcuzNeB/52R4HwqjVCM28DK1qOsH
xLzI6U9QVx75e1bBVy5nOktO+lO74IGTSOeQuobSxNobcA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:03 2023 by rpki-client on console-ams.rpki-client.org