Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/5v_UQFzYYLy8nr0o5OdixnWDnIA.roa
File: 5v_UQFzYYLy8nr0o5OdixnWDnIA.roa (raw, json)
Hash identifier: TTkBHIveACK5mcCRF4dNMJpdkaPzI1SgQ2/+6bz9810=
Subject key identifier: E6:FF:D4:40:5C:D8:60:BC:BC:9E:BD:28:E4:E7:62:C6:75:83:9C:80
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0983
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/5v_UQFzYYLy8nr0o5OdixnWDnIA.roa
Signing time: Sun 07 Feb 2021 13:09:27 +0000
ROA not before: Sun 07 Feb 2021 13:09:27 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38843
IP address blocks: 124.150.131.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2435 (0x983)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Feb 7 13:09:27 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E6FFD4405CD860BCBC9EBD28E4E762C675839C80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:ca:5b:17:ac:e3:7b:d8:05:9b:69:90:1d:69:
a1:c4:2f:98:42:14:75:95:96:dc:69:68:30:6e:01:
7b:13:05:9b:3e:67:9b:2c:2e:ca:17:aa:41:65:74:
66:33:08:9f:47:af:ab:b8:82:79:d7:72:99:55:46:
17:ad:6b:4d:cc:89:c7:91:e3:12:7d:78:3d:0d:b9:
e1:cb:e0:1e:be:58:f9:5a:cf:70:9c:fd:2a:88:c3:
44:08:87:ec:fd:be:ce:b5:4d:70:37:04:de:7c:83:
0a:a6:e9:f1:12:e2:04:f3:36:5d:a4:73:74:39:e4:
09:aa:de:fb:bb:12:28:16:bc:86:97:80:ce:6b:04:
f6:d0:6f:73:51:15:97:57:44:83:aa:36:fa:69:17:
af:50:26:d0:b8:7b:11:40:ff:4b:32:b3:6a:5f:aa:
52:5c:35:c4:e4:6b:d9:63:5c:c4:4a:e4:24:dc:4c:
13:50:9f:6f:82:e4:db:c7:98:ee:41:f9:77:d6:89:
85:3f:47:ea:7b:11:b6:1a:b4:79:ed:43:74:49:35:
8d:2c:7b:fc:80:86:e5:bc:23:83:1e:8d:9f:2f:b7:
b5:d4:97:44:25:55:97:bf:4a:1d:fc:3c:49:72:20:
9e:dc:e3:63:3f:2b:1d:47:b7:6e:ae:ee:ea:bb:33:
18:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:FF:D4:40:5C:D8:60:BC:BC:9E:BD:28:E4:E7:62:C6:75:83:9C:80
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/5v_UQFzYYLy8nr0o5OdixnWDnIA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.150.131.0/24
Signature Algorithm: sha256WithRSAEncryption
74:d1:85:96:45:e0:28:d3:7c:f0:36:74:85:ed:db:b4:1f:ce:
86:76:e4:a2:d5:30:d9:fa:a5:07:8a:c1:c9:99:dd:32:d4:71:
0a:43:42:ac:05:8e:6c:97:9d:1e:d0:ae:ca:51:98:f4:f4:98:
6e:30:5b:15:a5:06:1f:42:ba:84:6c:d6:b5:a7:35:c5:7d:68:
79:65:26:7a:1e:7d:e2:28:8c:1b:01:82:13:c5:1e:e1:95:e2:
38:42:36:db:15:de:3e:74:c0:4e:5f:39:db:0b:47:ea:41:b3:
84:57:23:5e:bd:4c:eb:41:27:33:7c:66:09:6a:6b:f7:80:ec:
b7:26:f3:8c:12:6b:d5:8a:2b:4a:c3:1a:e1:e6:1f:5c:50:a9:
4d:b9:8d:78:ba:44:6d:38:54:5d:ac:4f:af:11:8c:6a:7b:15:
1b:20:a0:e4:20:79:7d:31:0d:4a:32:b8:e8:20:27:05:b5:72:
ee:c5:6f:e3:59:73:52:3b:56:8c:8b:c9:3d:e8:e4:74:61:0c:
37:c4:e1:b0:a5:36:ab:39:5e:29:45:70:47:e3:0a:fa:87:b9:
d0:9d:0f:44:8e:1f:f0:0f:7f:05:18:59:84:42:74:12:91:4f:
11:61:d8:9c:1d:46:a3:cb:bb:3b:40:b7:8e:6a:08:56:2d:54:
06:38:5c:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org