Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/6LJQ-VTD95XKt0UYJx0nHfhvnf0.roa
File: 6LJQ-VTD95XKt0UYJx0nHfhvnf0.roa (raw, json)
Hash identifier: DzguULxrZQVkRXDbg0nZ/hDaeGqYccJJhI3hD9+fjPA=
Subject key identifier: E8:B2:50:F9:54:C3:F7:95:CA:B7:45:18:27:1D:27:1D:F8:6F:9D:FD
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0BA9
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/6LJQ-VTD95XKt0UYJx0nHfhvnf0.roa
Signing time: Thu 15 Sep 2022 02:42:24 +0000
ROA not before: Thu 15 Sep 2022 02:42:24 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38843
IP address blocks: 223.27.60.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2985 (0xba9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Sep 15 02:42:24 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=E8B250F954C3F795CAB74518271D271DF86F9DFD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:5f:b2:03:27:55:39:de:17:50:6f:81:ed:fd:
59:b4:94:72:8d:f2:aa:d7:f7:9f:db:7b:5b:1d:e8:
72:14:a8:36:51:53:9a:d7:2b:26:04:da:75:dc:be:
26:d8:9b:87:66:5e:4f:ac:75:c9:96:20:e3:04:26:
c8:6d:9f:8a:d6:51:40:e9:c5:65:df:8d:78:bf:62:
2f:82:ab:04:f4:50:b1:0f:89:16:84:7d:61:9a:0b:
8e:b6:b8:d2:65:8a:6f:97:37:75:24:4c:a2:76:8f:
c1:e6:8a:58:ea:3f:c2:de:e0:7c:45:72:84:46:c6:
ac:80:40:bf:3d:cf:8e:a1:2a:fe:f4:f9:55:ed:9a:
9d:d1:43:b8:47:7c:d8:a3:61:93:ae:65:7e:8e:67:
cf:67:5e:44:e2:8d:a1:2b:3c:e5:00:03:b1:e1:59:
c2:af:66:cd:cb:49:7c:c5:93:ca:79:1e:80:b9:b7:
58:5f:64:2d:8d:c8:69:7d:0d:e2:97:ca:3e:6e:0f:
25:ee:df:43:5f:b0:93:c9:71:e3:82:8d:30:2b:ae:
46:b2:69:2a:0c:3e:b2:09:5a:04:dd:c7:28:fe:f0:
de:18:15:b0:1d:2a:91:81:a4:37:73:41:f7:22:a8:
78:cd:ce:e6:a0:41:9c:c5:aa:20:ea:f1:e8:54:ea:
84:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:B2:50:F9:54:C3:F7:95:CA:B7:45:18:27:1D:27:1D:F8:6F:9D:FD
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/6LJQ-VTD95XKt0UYJx0nHfhvnf0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.60.0/22
Signature Algorithm: sha256WithRSAEncryption
b8:e5:4a:e3:a4:6a:51:ee:43:5a:c6:cf:85:86:a6:41:8d:17:
ca:44:d2:55:82:20:99:33:1d:bd:7f:7f:4b:b2:a8:81:74:f0:
36:4b:2a:1e:e6:5b:46:f1:91:a6:c7:e0:bc:1f:b8:81:86:05:
ea:9c:af:4c:b2:52:9c:12:63:ed:45:c2:66:44:28:92:59:be:
59:b5:0c:18:56:90:e9:94:31:cf:c9:c7:80:73:ae:21:b4:ba:
1b:c6:cb:01:8e:7c:39:0f:73:4a:7a:c9:3b:b8:22:37:fa:7d:
d0:0a:6d:9f:e6:0e:dc:be:a6:9f:08:f6:ff:a5:54:c8:2c:7d:
df:24:8f:d1:6d:6a:3c:e0:36:97:86:c2:c1:7f:f8:39:57:dc:
5c:29:5e:cb:3b:18:14:dc:80:38:70:47:05:01:18:ce:fa:d9:
34:5f:13:43:11:73:4f:78:37:ba:40:0d:04:d5:ed:47:95:a8:
6a:55:c7:19:48:18:93:e9:b0:fa:cc:01:11:51:31:2e:bf:c8:
f3:1c:fe:18:19:08:31:ce:2b:eb:aa:a4:44:35:31:74:7b:2f:
f0:d4:6c:27:83:90:c2:28:e4:fa:b1:0c:bc:df:59:1d:fe:c6:
9f:04:23:8a:e6:0d:3a:bc:72:e7:bd:5e:ab:b4:15:67:c9:0b:
27:67:49:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:19 2024 by rpki-client on console-ams.rpki-client.org