Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/5kRePi7vbc7Q7jWTLE4K1kzQScM.roa
File: 5kRePi7vbc7Q7jWTLE4K1kzQScM.roa (raw, json)
Hash identifier: d+jeJSk3uAfZjRb2GATJMO+J7Ky+ah9iimXoeyTJ2LY=
Subject key identifier: E6:44:5E:3E:2E:EF:6D:CE:D0:EE:35:93:2C:4E:0A:D6:4C:D0:49:C3
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 08DA
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/5kRePi7vbc7Q7jWTLE4K1kzQScM.roa
Signing time: Fri 11 Dec 2020 09:05:11 +0000
ROA not before: Fri 11 Dec 2020 09:05:11 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38843
IP address blocks: 223.27.38.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2266 (0x8da)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Dec 11 09:05:11 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E6445E3E2EEF6DCED0EE35932C4E0AD64CD049C3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:d3:3b:98:7b:1c:3f:7f:03:be:ad:93:2b:28:
de:cc:8c:7f:8b:c7:f6:45:48:14:a1:1c:b7:ff:ba:
c6:7b:42:57:c2:8e:a8:79:b0:a6:a9:02:ce:58:2c:
26:e4:b1:51:0a:96:8d:ee:da:e9:36:76:bf:d8:4b:
40:75:59:1b:c3:9c:b3:7e:f2:e5:bb:75:76:e3:6c:
a6:26:37:12:49:37:a8:ee:b7:9c:97:40:fa:42:22:
b4:f1:ce:83:ff:d7:5d:79:5c:94:fe:0b:f0:75:15:
cc:23:d7:87:7c:0c:1a:e9:73:aa:07:1f:77:9e:79:
cb:df:bf:42:f3:76:2f:39:4c:c9:52:5d:36:86:22:
a8:d6:99:63:cd:21:f2:67:45:28:31:2a:6b:7e:34:
1e:75:3d:16:bd:b5:02:0b:42:c8:5d:16:c1:ae:aa:
34:45:9b:70:d7:c6:54:b6:2e:c5:49:f0:07:4e:4d:
1a:ad:ee:df:f4:16:c3:a5:ea:4f:22:cb:87:42:33:
cc:a6:a8:41:6e:d4:2c:65:27:b7:e5:34:0e:04:cd:
e5:78:54:bd:8e:6d:5a:c9:42:54:f1:86:97:34:45:
5c:03:78:04:75:fc:13:a1:0f:ab:d3:63:75:86:87:
e6:0f:3d:26:f7:4f:7f:d0:70:86:a3:27:29:d9:76:
61:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:44:5E:3E:2E:EF:6D:CE:D0:EE:35:93:2C:4E:0A:D6:4C:D0:49:C3
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/5kRePi7vbc7Q7jWTLE4K1kzQScM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.38.0/24
Signature Algorithm: sha256WithRSAEncryption
38:9d:41:9a:1e:32:b4:2e:da:86:49:c9:30:c2:14:8d:d9:11:
ea:28:b1:37:67:30:2d:b4:9b:4e:94:18:79:ce:35:74:90:0c:
c0:da:40:3e:20:a4:1c:13:5d:de:2c:a7:df:1c:d2:bf:0b:bb:
da:c0:dc:09:07:05:03:e5:c3:a8:08:0c:15:a9:f4:98:7c:00:
ac:7e:1b:be:3a:1c:4d:36:aa:6b:d5:71:50:68:67:18:67:f0:
cd:72:ce:1a:48:5a:cb:e5:ba:50:c3:3d:73:9c:c3:3e:ca:5f:
0f:73:bd:43:a5:1a:48:73:41:47:bf:7c:25:95:bb:30:1b:d3:
21:49:b6:ec:3e:26:fb:03:04:d8:77:15:d8:08:54:3b:92:54:
6f:91:a3:9a:58:d7:35:7f:27:33:5e:3b:cf:48:d1:32:c5:e0:
87:43:44:47:48:8d:ad:d1:dd:e0:6d:28:50:35:cc:c2:6a:09:
38:71:30:15:3e:ec:7b:97:32:83:8a:96:39:1f:8e:79:45:a1:
cf:bd:d8:25:24:05:c3:44:a6:2e:c8:41:8b:47:d9:67:8e:a7:
4b:53:b6:71:42:38:82:ae:89:0f:fc:63:a5:4d:b4:1f:81:75:
57:1f:dd:ee:b7:84:d5:6a:03:fd:f5:01:cc:26:fd:c0:ba:11:
8f:fd:b0:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org