Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/7xDh7BS_Xuepq5crpmWMCL42y0g.roa
File: 7xDh7BS_Xuepq5crpmWMCL42y0g.roa (raw, json)
Hash identifier: JHGISD5FjMJ42lIQXZbitlWWKusTcnL7ZVpTb4BA3Rw=
Subject key identifier: EF:10:E1:EC:14:BF:5E:E7:A9:AB:97:2B:A6:65:8C:08:BE:36:CB:48
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0CD2
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/7xDh7BS_Xuepq5crpmWMCL42y0g.roa
Signing time: Fri 01 Sep 2023 09:39:48 +0000
ROA not before: Fri 01 Sep 2023 09:39:48 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38843
IP address blocks: 223.27.48.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3282 (0xcd2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Sep 1 09:39:48 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=EF10E1EC14BF5EE7A9AB972BA6658C08BE36CB48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:15:5b:49:4d:51:87:06:09:fc:97:06:34:5b:
92:7b:42:34:69:26:a8:1f:95:4b:50:1d:4f:df:f4:
4e:a9:f8:e0:fe:a6:0e:34:66:86:79:d5:2a:e9:7d:
25:47:78:21:cc:99:df:7e:7f:8b:88:02:8d:8b:31:
20:e3:4d:b7:1f:95:be:b7:66:a4:7b:a5:ea:06:6d:
96:26:ee:2b:c3:24:08:4f:ca:61:ce:35:ab:b3:89:
2a:26:5c:51:7a:20:cc:6e:e8:f5:da:c9:da:9c:4f:
ec:ad:22:b6:18:e6:25:92:28:07:41:1a:3e:a5:99:
0a:fb:7c:c1:e1:c0:0d:1c:40:f8:cc:98:2c:8e:af:
99:04:7d:9d:2e:06:ab:a4:aa:6c:23:8d:ec:3e:e7:
9f:cf:b1:45:3d:66:3b:42:71:38:f9:81:6a:ba:ea:
c4:86:2b:10:7a:71:1c:91:6f:12:22:a9:aa:49:29:
0f:d3:0c:29:3f:37:51:a3:c9:30:9f:df:a0:2a:7e:
cb:1c:6a:62:83:74:19:c8:72:51:84:49:80:27:d5:
73:32:bb:d7:73:ee:20:30:f0:f5:aa:c5:03:89:c8:
5b:91:44:61:26:f8:03:51:f4:00:db:36:1d:a0:af:
ec:36:8a:b7:ad:e3:b8:ef:84:4c:81:1b:7f:f3:8b:
a4:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:10:E1:EC:14:BF:5E:E7:A9:AB:97:2B:A6:65:8C:08:BE:36:CB:48
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/7xDh7BS_Xuepq5crpmWMCL42y0g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.48.0/20
Signature Algorithm: sha256WithRSAEncryption
4b:96:31:40:b9:11:a1:dc:b7:99:d0:b6:6d:e7:2c:1c:e2:58:
6f:db:e9:8c:a1:e7:f2:91:d2:e2:c5:1b:0f:0f:00:c2:53:64:
5c:88:03:28:c6:40:5f:97:83:21:34:dc:3f:ee:07:65:21:a2:
6e:74:d8:6e:72:d5:1b:eb:b1:ae:b5:e0:f7:68:89:1a:92:2a:
d8:31:11:1f:f6:f2:3b:b9:33:1f:61:d5:2b:d2:2c:c8:b8:c7:
30:e9:2d:ca:2e:9f:78:33:aa:fc:85:e0:05:be:b0:8f:9c:f3:
75:c8:9c:42:ac:c5:09:6c:fb:8a:1e:76:49:45:4c:0d:f4:39:
f5:f8:8f:ba:7d:93:eb:3c:9e:b0:bb:5b:f7:9d:cf:cd:2b:70:
55:ab:8d:9b:55:12:d4:c6:a3:94:fb:01:c4:8f:f9:de:b7:15:
cc:1a:4f:a5:1f:0c:84:59:eb:76:77:dd:92:07:dd:78:63:56:
e8:3f:6b:d9:09:08:d3:bb:ee:53:bd:d8:ab:d1:b2:2e:a1:7e:
94:52:73:0c:f0:a1:05:55:bb:b3:61:23:56:ea:6f:81:4f:20:
de:8e:c6:de:0d:77:dc:28:59:23:e7:82:86:30:99:19:dc:44:
33:b1:89:47:79:21:67:47:e5:ea:72:78:6e:82:00:b8:3d:44:
d1:bf:84:b5
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDNIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzRE
RDQzMjk2MUFDNDJENjQ0QUVBRjM0QjE0QUVDNzAyNzVCMDZBMzAeFw0yMzA5MDEw
OTM5NDhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEVGMTBFMUVDMTRCRjVF
RTdBOUFCOTcyQkE2NjU4QzA4QkUzNkNCNDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCgFVtJTVGHBgn8lwY0W5J7QjRpJqgflUtQHU/f9E6p+OD+pg40
ZoZ51SrpfSVHeCHMmd9+f4uIAo2LMSDjTbcflb63ZqR7peoGbZYm7ivDJAhPymHO
NauziSomXFF6IMxu6PXaydqcT+ytIrYY5iWSKAdBGj6lmQr7fMHhwA0cQPjMmCyO
r5kEfZ0uBqukqmwjjew+55/PsUU9ZjtCcTj5gWq66sSGKxB6cRyRbxIiqapJKQ/T
DCk/N1GjyTCf36AqfsscamKDdBnIclGESYAn1XMyu9dz7iAw8PWqxQOJyFuRRGEm
+ANR9ADbNh2gr+w2iret47jvhEyBG3/zi6SVAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQU7xDh7BS/Xuepq5crpmWMCL42y0gwHwYDVR0jBBgwFoAUNN1DKWGsQtZErq80
sUrscCdbBqMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFVNTy9O
TjFES1dHc1F0WkVycTgwc1Vyc2NDZGJCcU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L05OMURLV0dzUXRaRXJxODBzVXJzY0NkYkJxTS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL1BVTU8vN3hEaDdCU19YdWVwcTVjcnBtV01D
TDQyeTBnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBN8bMDAN
BgkqhkiG9w0BAQsFAAOCAQEAS5YxQLkRody3mdC2becsHOJYb9vpjKHn8pHS4sUb
Dw8AwlNkXIgDKMZAX5eDITTcP+4HZSGibnTYbnLVG+uxrrXg92iJGpIq2DERH/by
O7kzH2HVK9IsyLjHMOktyi6feDOq/IXgBb6wj5zzdcicQqzFCWz7ih52SUVMDfQ5
9fiPun2T6zyesLtb953PzStwVauNm1US1MajlPsBxI/53rcVzBpPpR8MhFnrdnfd
kgfdeGNW6D9r2QkI07vuU73Yq9GyLqF+lFJzDPChBVW7s2EjVupvgU8g3o7G3g13
3ChZI+eChjCZGdxEM7GJR3khZ0fl6nJ4boIAuD1E0b+EtQ==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:13:11 2025 by rpki-client