Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/6g6IzZDWd9XLeLI30IXBN2YMrVc.roa
File: 6g6IzZDWd9XLeLI30IXBN2YMrVc.roa (raw, json)
Hash identifier: WoaPtPGPOkGiuAYJ5Ii9lYxf1yunOxj44uHqxE0a0rM=
Subject key identifier: EA:0E:88:CD:90:D6:77:D5:CB:78:B2:37:D0:85:C1:37:66:0C:AD:57
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0A62
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/6g6IzZDWd9XLeLI30IXBN2YMrVc.roa
Signing time: Wed 29 Sep 2021 02:42:43 +0000
ROA not before: Wed 29 Sep 2021 02:42:43 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38843
IP address blocks: 223.27.50.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2658 (0xa62)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Sep 29 02:42:43 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=EA0E88CD90D677D5CB78B237D085C137660CAD57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:c5:90:fa:78:80:bd:8a:a5:95:73:21:69:e6:
29:12:27:63:f9:db:43:6a:59:0f:7d:d4:da:4f:52:
51:d5:90:62:39:f6:09:6c:0c:85:d6:4e:46:27:b7:
57:e8:f8:84:b8:6f:44:57:d3:8d:19:69:f1:ce:55:
97:6f:d8:5c:8d:07:92:cd:26:63:51:43:eb:f0:6a:
fd:b6:f9:84:53:6a:bd:60:cd:44:a5:62:d3:b0:86:
e9:f6:fe:8c:80:a2:bd:8f:23:f6:c4:96:52:31:36:
3a:53:bf:f2:aa:72:20:cc:22:a6:ab:c2:60:fa:1c:
64:24:ca:de:5d:bf:67:f4:09:5d:90:08:67:7e:e2:
1b:9a:e3:73:01:18:b9:1e:25:da:5a:5b:48:d7:19:
06:f8:8f:bf:84:68:8c:11:9d:32:a1:66:e2:ff:14:
b6:37:d3:c8:af:b0:b5:2c:cf:a4:4d:03:16:52:aa:
a0:a9:9c:8b:61:a2:9e:64:24:00:6e:bf:c4:e4:94:
48:a7:3c:b2:57:91:e9:67:ce:74:b3:3c:18:f5:42:
9e:94:17:cc:54:a9:1c:8e:13:63:b4:0a:5a:d9:7b:
9e:0b:ee:98:55:00:37:3b:0c:0b:99:3c:da:22:56:
39:43:9f:05:14:d9:e1:36:13:93:b3:b4:dd:49:96:
c7:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:0E:88:CD:90:D6:77:D5:CB:78:B2:37:D0:85:C1:37:66:0C:AD:57
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/6g6IzZDWd9XLeLI30IXBN2YMrVc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.50.0/24
Signature Algorithm: sha256WithRSAEncryption
05:1e:16:de:9d:48:fb:00:2b:bc:43:a0:93:17:f8:ce:1d:89:
45:8e:cb:b8:28:dc:65:5d:8e:2e:7b:9d:37:e4:f6:0e:aa:8d:
58:b7:0e:ad:e7:a0:a2:ae:6a:df:aa:1a:91:47:5b:80:17:1b:
f6:66:43:4f:cb:dc:44:73:12:06:07:c7:96:34:16:9e:85:e8:
80:e3:c1:88:83:5c:48:2d:93:27:d1:e4:2e:9b:31:e0:a1:55:
c0:ba:cb:92:0c:3d:24:7b:3a:cf:0d:fd:42:cc:1e:0f:02:4b:
ec:cb:d6:52:3a:e6:29:63:fb:d7:4f:81:ae:c5:d6:69:19:cf:
f5:59:ee:f8:8f:e0:f9:1d:5f:68:9d:d8:ec:cb:00:ed:fc:e8:
78:df:ae:9c:49:43:80:a2:bd:4e:a8:19:3b:2c:4a:3a:99:3d:
ee:74:3a:6f:65:5d:33:99:2a:51:5f:36:54:7d:a8:54:76:2c:
2f:b7:24:3d:8f:85:7e:84:32:db:67:94:7b:ec:70:c8:0e:da:
dc:bd:92:ec:a0:07:01:e7:fb:7a:4c:d3:6e:06:eb:11:29:e8:
79:38:ce:4e:77:3d:af:ea:b6:19:f6:0c:b5:4b:97:0c:d1:ec:
e4:0f:3a:27:c0:f2:07:33:be:d8:2e:36:25:ad:0d:c2:25:8d:
c6:d3:f2:06
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICCmIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzRE
RDQzMjk2MUFDNDJENjQ0QUVBRjM0QjE0QUVDNzAyNzVCMDZBMzAeFw0yMTA5Mjkw
MjQyNDNaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEVBMEU4OENEOTBENjc3
RDVDQjc4QjIzN0QwODVDMTM3NjYwQ0FENTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDRxZD6eIC9iqWVcyFp5ikSJ2P520NqWQ991NpPUlHVkGI59gls
DIXWTkYnt1fo+IS4b0RX040ZafHOVZdv2FyNB5LNJmNRQ+vwav22+YRTar1gzUSl
YtOwhun2/oyAor2PI/bEllIxNjpTv/KqciDMIqarwmD6HGQkyt5dv2f0CV2QCGd+
4hua43MBGLkeJdpaW0jXGQb4j7+EaIwRnTKhZuL/FLY308ivsLUsz6RNAxZSqqCp
nIthop5kJABuv8TklEinPLJXkelnznSzPBj1Qp6UF8xUqRyOE2O0ClrZe54L7phV
ADc7DAuZPNoiVjlDnwUU2eE2E5OztN1JlsfrAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQU6g6IzZDWd9XLeLI30IXBN2YMrVcwHwYDVR0jBBgwFoAUNN1DKWGsQtZErq80
sUrscCdbBqMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFVNTy9O
TjFES1dHc1F0WkVycTgwc1Vyc2NDZGJCcU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L05OMURLV0dzUXRaRXJxODBzVXJzY0NkYkJxTS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL1BVTU8vNmc2SXpaRFdkOVhMZUxJMzBJWEJO
MllNclZjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAN8bMjAN
BgkqhkiG9w0BAQsFAAOCAQEABR4W3p1I+wArvEOgkxf4zh2JRY7LuCjcZV2OLnud
N+T2DqqNWLcOreegoq5q36oakUdbgBcb9mZDT8vcRHMSBgfHljQWnoXogOPBiINc
SC2TJ9HkLpsx4KFVwLrLkgw9JHs6zw39QsweDwJL7MvWUjrmKWP710+BrsXWaRnP
9Vnu+I/g+R1faJ3Y7MsA7fzoeN+unElDgKK9TqgZOyxKOpk97nQ6b2VdM5kqUV82
VH2oVHYsL7ckPY+FfoQy22eUe+xwyA7a3L2S7KAHAef7ekzTbgbrESnoeTjOTnc9
r+q2GfYMtUuXDNHs5A86J8DyBzO+2C42Ja0NwiWNxtPyBg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:19 2024 by rpki-client on console-ams.rpki-client.org