Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/8JRVn1-YRD3ZjvurCsfF3VXBn5E.roa
File: 8JRVn1-YRD3ZjvurCsfF3VXBn5E.roa (raw, json)
Hash identifier: g6xhDgG3OWByIgNENPjx5D+vlBwUhFWry5N3zyOz1SM=
Subject key identifier: F0:94:55:9F:5F:98:44:3D:D9:8E:FB:AB:0A:C7:C5:DD:55:C1:9F:91
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 08B0
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/8JRVn1-YRD3ZjvurCsfF3VXBn5E.roa
Signing time: Fri 11 Dec 2020 08:57:16 +0000
ROA not before: Fri 11 Dec 2020 08:57:16 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 198949
IP address blocks: 223.27.43.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2224 (0x8b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Dec 11 08:57:16 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=F094559F5F98443DD98EFBAB0AC7C5DD55C19F91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:e1:30:f7:fd:83:f2:11:fe:33:4d:76:18:fc:
41:24:08:e0:ed:a4:47:e5:35:3b:62:99:98:9e:ca:
12:65:c7:46:62:cd:49:bf:fe:26:42:1a:12:62:97:
f0:d1:10:ad:7d:d9:15:93:9a:ce:ad:3b:8d:45:a7:
b4:17:6b:d4:35:a6:70:be:bc:05:5f:f0:28:ba:86:
52:86:fa:62:05:35:a8:5a:13:ba:5f:4e:f4:d8:ad:
85:0f:c8:a6:f4:c1:04:c5:27:5c:74:48:83:c5:22:
1a:31:78:7c:87:cd:dc:37:4f:ce:49:e3:55:9d:8f:
6e:fc:d9:64:50:15:d4:5b:f4:54:46:5d:b0:21:cd:
ad:23:13:05:41:65:9b:89:87:86:a2:c1:5b:1e:06:
33:db:94:0b:d1:0c:9c:f7:6e:d3:f2:24:e2:73:cf:
07:9f:79:44:82:be:09:e2:d7:34:2c:30:2d:89:13:
1b:20:14:0f:60:6a:8e:4d:23:cf:98:fd:e5:91:7a:
13:8e:fa:b3:86:5e:a8:26:21:4b:e4:90:ac:ca:ff:
34:9f:19:c6:fc:90:01:df:da:38:2c:7d:9c:89:c6:
80:1b:b2:f9:d7:4f:77:90:f4:6b:a1:96:55:ab:3e:
d3:02:5c:d3:87:7d:7e:8e:2a:6d:87:66:99:b6:49:
66:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:94:55:9F:5F:98:44:3D:D9:8E:FB:AB:0A:C7:C5:DD:55:C1:9F:91
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/8JRVn1-YRD3ZjvurCsfF3VXBn5E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.43.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:2d:46:62:50:d6:cd:1d:c1:85:4a:e3:8d:fa:c5:c9:13:b9:
31:2b:de:5b:79:38:ad:e7:e0:6c:fe:33:bb:c3:9a:c0:58:81:
9e:18:89:20:4d:66:11:fa:c9:68:17:3f:5f:27:66:bb:0b:76:
b9:cc:7b:df:87:a8:d9:92:05:e3:93:56:3f:75:8c:e2:92:0e:
4a:45:be:f3:62:8f:48:22:4d:d3:86:be:f1:12:97:b0:ab:13:
35:35:b1:da:f9:13:57:29:8c:82:77:a7:1a:dd:fc:09:e9:41:
eb:32:03:70:f1:38:9b:99:05:3a:8b:cc:80:e6:aa:73:7d:78:
60:3e:f3:a3:08:ee:60:5e:04:25:d9:92:dd:32:04:96:7a:c6:
d7:e2:2d:16:ab:9c:84:0f:21:2e:f0:c5:48:48:c8:67:f9:22:
11:2f:ed:49:6a:55:27:30:9b:f4:ea:75:cf:cf:7b:dd:f9:8f:
23:c8:04:37:34:db:b4:06:7f:7e:63:d5:0b:35:9a:1d:51:ae:
37:9a:c3:0e:8a:4a:ab:d2:f2:3c:f5:6d:e2:6c:ab:33:44:10:
61:dd:60:1b:ba:21:6c:f9:c5:e5:78:89:c3:e5:da:c1:4e:56:
1e:e3:46:3e:84:d4:7b:13:80:4a:5b:56:66:ac:4d:1f:83:47:
40:3e:99:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:16 2023 by rpki-client on console-fra.rpki-client.org