Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/3CFV6BYZ7xIDM8ZPPIcYCVlt0qs.roa
File: 3CFV6BYZ7xIDM8ZPPIcYCVlt0qs.roa (raw, json)
Hash identifier: 4+yr9x3KBEKsHteKx+sYTt9MLqaNlPoxLHi8m8LvJBI=
Subject key identifier: DC:21:55:E8:16:19:EF:12:03:33:C6:4F:3C:87:18:09:59:6D:D2:AB
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 089A
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/3CFV6BYZ7xIDM8ZPPIcYCVlt0qs.roa
Signing time: Fri 11 Dec 2020 08:53:59 +0000
ROA not before: Fri 11 Dec 2020 08:53:59 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 198949
IP address blocks: 124.150.133.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2202 (0x89a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Dec 11 08:53:59 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=DC2155E81619EF120333C64F3C871809596DD2AB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:12:4f:ff:9b:9f:98:5e:e9:6c:ed:2d:cc:09:
41:2f:ca:3f:02:7d:ce:99:d5:df:02:dc:09:c8:fe:
bc:9f:72:c3:59:7c:4b:a5:5c:2f:e3:8e:b1:25:3f:
23:e7:2f:f9:0f:9f:ec:bf:25:f0:76:c0:48:80:59:
f7:97:b1:34:cd:13:18:8a:29:73:9b:31:69:b6:7d:
b6:6d:f8:9f:d4:79:07:ee:dc:18:a5:28:18:05:3a:
bf:00:75:5c:1f:c8:da:7b:ea:01:fa:ee:a9:92:fb:
aa:d9:e1:96:08:e0:e6:58:38:00:40:de:1a:cf:aa:
0a:d4:33:f5:2b:dd:f9:d4:00:da:62:40:fb:2b:56:
04:1d:1a:d9:3d:0c:94:a6:cd:78:c9:3d:54:83:d7:
9c:b8:ce:10:e6:89:2b:b8:05:fd:ae:9e:6a:c1:0a:
f3:52:2a:2c:92:65:01:e9:ac:ed:37:77:33:f0:f7:
8d:50:bf:f4:91:38:fa:f9:5f:2e:31:65:af:7a:fd:
17:32:d3:9f:f3:a0:ea:b1:fb:46:ea:4e:f1:3e:af:
47:4a:fb:4e:26:1f:cb:48:e4:41:4a:e2:b1:ae:82:
0e:2b:6b:98:d4:1c:7c:77:79:ef:35:8f:5f:54:ae:
19:aa:8d:7d:36:e2:f3:f9:7a:51:e8:54:a6:f1:fd:
4e:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:21:55:E8:16:19:EF:12:03:33:C6:4F:3C:87:18:09:59:6D:D2:AB
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/3CFV6BYZ7xIDM8ZPPIcYCVlt0qs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.150.133.0/24
Signature Algorithm: sha256WithRSAEncryption
02:a4:3d:7b:ad:78:88:1c:a8:e1:ec:a8:88:84:c3:d0:ab:0e:
5a:bf:e7:c4:5e:7e:94:d2:50:b0:da:eb:1e:fc:ea:78:d9:29:
42:54:35:d6:a7:12:19:06:81:24:68:3c:5d:92:55:b7:58:64:
89:5a:a9:c9:0b:44:3d:6e:88:b8:4e:64:3e:64:1d:dc:22:3a:
fb:c3:86:2f:1a:b9:be:fc:38:15:35:17:2b:1e:69:0e:81:ed:
e4:44:09:0c:bf:4d:17:ae:b5:87:13:3d:29:4e:b0:a0:eb:f5:
02:b4:ed:38:a1:71:52:04:90:f7:94:3d:d9:ef:fe:11:8e:82:
8f:76:43:3c:0b:8e:54:9c:fb:60:d6:3b:71:20:a3:ab:dc:db:
28:10:99:6f:cb:48:97:5e:17:57:ce:92:94:e0:2d:f6:da:81:
6c:bb:c8:1c:19:42:3f:c7:55:b6:2b:a7:60:bd:6c:d9:cf:b3:
61:d9:7d:68:02:50:73:27:5a:f0:eb:6f:32:17:01:7f:47:5e:
20:fa:52:85:a9:96:97:af:c3:f0:49:c7:d5:42:69:84:5f:81:
e7:de:2b:e1:f6:ae:0d:12:66:8f:4b:ca:9d:f5:b4:da:e8:39:
f6:5a:0c:bf:38:d4:c8:14:64:54:b7:c1:81:89:c8:81:5c:1f:
a8:65:4b:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:19:49 2025 by rpki-client