Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/3ZCYO6QOM9qGY4CG4czrbIOtSqQ.roa
File: 3ZCYO6QOM9qGY4CG4czrbIOtSqQ.roa (raw, json)
Hash identifier: hZdLbD/6SJs5OeSWXXjq0EsxHKQx0qYmyc0V31tvXQQ=
Subject key identifier: DD:90:98:3B:A4:0E:33:DA:86:63:80:86:E1:CC:EB:6C:83:AD:4A:A4
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0CC0
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/3ZCYO6QOM9qGY4CG4czrbIOtSqQ.roa
Signing time: Fri 01 Sep 2023 09:39:42 +0000
ROA not before: Fri 01 Sep 2023 09:39:42 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38843
IP address blocks: 223.27.32.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3264 (0xcc0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Sep 1 09:39:42 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=DD90983BA40E33DA86638086E1CCEB6C83AD4AA4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:36:ac:a5:47:70:89:04:a7:b7:c3:cf:1e:24:
d5:a5:5e:b1:92:8d:ae:75:e3:e7:3b:a3:dc:ad:99:
e1:2e:a1:54:2e:8e:96:0f:f0:00:ec:ea:29:90:20:
3c:7d:3d:95:1b:0a:4f:e1:0d:1e:af:e1:89:e7:44:
7e:83:90:4e:51:55:4f:42:d2:2a:d8:2e:26:84:62:
86:8c:e5:1e:41:fb:6e:c1:88:43:0d:71:c4:5e:84:
e9:8c:01:dc:07:71:2c:62:7c:31:83:62:e9:2e:c1:
79:3d:a8:a2:3f:de:28:98:97:d7:a7:26:76:f9:e5:
c0:1d:66:91:05:9a:a2:fa:95:1b:1c:b6:7a:0b:a1:
53:62:87:3a:57:8f:fc:8e:36:a6:29:f6:a3:07:28:
f0:98:f6:23:23:36:2a:8a:3b:2a:dc:70:4f:69:4f:
a3:bd:4b:3c:f5:6e:10:3e:d5:33:34:72:5e:16:dc:
1a:15:3d:5e:56:3a:b4:01:69:e4:62:b4:ae:87:56:
c5:af:23:c0:fc:a3:95:4c:cd:5d:a6:86:f1:be:e0:
06:48:f3:51:3e:04:bb:c3:b5:c0:c6:47:b6:11:3c:
e6:25:9c:a8:3e:6a:f6:b2:a3:19:98:6f:6a:28:6f:
80:2f:95:f7:e3:7a:16:24:de:f5:43:19:ca:3a:4c:
18:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:90:98:3B:A4:0E:33:DA:86:63:80:86:E1:CC:EB:6C:83:AD:4A:A4
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/3ZCYO6QOM9qGY4CG4czrbIOtSqQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.32.0/19
Signature Algorithm: sha256WithRSAEncryption
ba:4d:bc:d8:e3:3d:0c:65:b3:46:77:91:a4:46:43:9b:17:40:
f3:7d:d5:3e:1c:e0:c2:a6:e3:93:5d:76:b1:46:b3:47:56:d4:
c6:03:66:f7:74:44:ed:66:07:29:a5:34:c9:3d:35:17:f5:a7:
de:94:bd:27:d3:fa:0f:76:a1:a4:75:6b:63:59:48:aa:e2:8b:
f8:98:95:47:5e:cf:98:ee:11:62:9f:f0:0d:ce:4d:95:38:ac:
eb:a5:89:9c:9e:be:37:8d:d4:02:b1:33:ba:c9:0f:05:d1:df:
22:fe:07:ac:69:5b:7e:61:08:8a:bb:d3:d8:db:fd:51:24:a5:
45:d7:4c:45:56:58:c2:76:cd:44:83:6e:94:71:6c:b7:44:6a:
2e:ea:bc:79:b2:10:2c:57:58:c6:eb:cb:b9:25:56:24:e6:74:
2c:a0:cb:a3:3e:2b:fb:72:fa:55:69:7f:b8:5c:c7:e4:77:63:
06:0b:06:36:b2:31:32:76:dd:f0:a2:0d:1f:ff:64:0b:ec:3f:
89:b6:c9:d8:c5:fd:ec:b3:08:7d:a5:7d:68:cd:1a:bc:0d:aa:
24:31:1e:69:b3:69:fa:80:5c:54:6e:00:91:b6:a6:7d:33:37:
43:83:e1:9d:37:3a:af:e2:11:e0:5c:4d:f6:2e:77:38:25:ba:
90:06:b3:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:41:13 2025 by rpki-client