Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/8wBWqQ-vL641KYwYdxsdsIQ29cQ.roa
File: 8wBWqQ-vL641KYwYdxsdsIQ29cQ.roa (raw, json)
Hash identifier: D7dASCOqdEgUiSMOJhNpsQKMm35qXgaB+ppMEiYBEbI=
Subject key identifier: F3:00:56:A9:0F:AF:2F:AE:35:29:8C:18:77:1B:1D:B0:84:36:F5:C4
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 094F
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/8wBWqQ-vL641KYwYdxsdsIQ29cQ.roa
Signing time: Sun 07 Feb 2021 13:08:37 +0000
ROA not before: Sun 07 Feb 2021 13:08:37 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 198949
IP address blocks: 124.150.128.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2383 (0x94f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Feb 7 13:08:37 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=F30056A90FAF2FAE35298C18771B1DB08436F5C4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:08:6d:36:cd:8b:87:0b:81:f6:42:bf:4a:a8:
a1:9a:cd:d6:86:37:f4:e5:5e:6a:ab:06:e9:47:d1:
6d:f9:aa:70:ef:39:71:87:10:ac:f1:6c:4d:4c:e8:
99:54:4b:43:83:17:e1:68:96:2a:aa:b9:11:b2:fa:
81:14:cb:d1:88:a0:ef:b2:da:51:d0:a5:72:61:84:
25:ae:8d:36:cf:5f:b6:63:08:e8:f8:ca:5d:da:63:
dd:2f:7b:59:58:f0:98:6c:d2:dc:b4:eb:4d:5b:95:
e0:7d:42:b3:17:82:33:9e:50:b4:55:6d:dd:60:1e:
e7:ef:f1:6b:6d:a3:28:e9:c9:70:cc:44:55:37:6e:
f3:40:4a:ba:38:c6:2d:4a:47:8a:36:0c:ea:36:d6:
0a:55:f3:5a:a6:fc:a3:77:5a:e7:38:0d:6b:99:75:
f4:62:93:04:7d:52:f9:7d:4f:e4:0a:05:53:f5:2a:
bf:38:59:58:a9:5f:57:1b:6f:f0:be:8a:05:9b:b2:
ca:36:e4:59:e0:3e:14:eb:63:56:26:28:35:58:34:
73:91:f9:fe:d1:08:ed:fd:ae:dc:72:6c:61:6c:5b:
30:cf:6e:51:89:15:be:4e:5d:37:65:b3:60:6f:9f:
4f:31:45:22:83:95:c6:f5:45:b5:7d:df:ed:e7:6f:
f5:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:00:56:A9:0F:AF:2F:AE:35:29:8C:18:77:1B:1D:B0:84:36:F5:C4
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/8wBWqQ-vL641KYwYdxsdsIQ29cQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.150.128.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:67:4a:af:bb:2f:12:5f:bb:40:40:7a:61:86:75:2d:90:75:
aa:49:12:93:c3:09:c3:58:02:80:54:a1:06:22:26:cf:b6:69:
bc:34:e1:e9:fa:25:91:e4:bf:29:08:c5:41:03:92:9a:b3:82:
19:ae:80:72:f9:7f:3b:f0:1a:4e:b5:ec:4c:b8:ce:e2:69:4a:
61:2b:8d:26:a2:e0:8c:b0:5b:0c:d1:42:28:b0:22:c3:15:88:
d4:58:f1:71:8d:1f:84:5c:09:35:cb:c1:ed:0c:7a:ba:90:de:
75:39:ba:86:d7:b1:77:5f:fc:3e:bb:6f:d4:ba:8e:3d:fb:df:
0d:bf:2b:ff:51:5e:1b:d7:57:1c:ab:07:5f:15:14:d4:5a:40:
00:09:47:05:92:9d:a3:54:3d:6b:c1:cf:a8:f9:a1:a5:5f:c6:
05:64:b1:d4:ef:4b:ce:09:92:81:95:5c:8c:fd:1c:ea:93:8f:
77:bc:93:36:3c:7f:bd:8f:5f:af:2a:22:72:e4:e1:17:26:4a:
9b:e5:50:32:30:4d:a6:94:cd:20:42:7f:f2:65:b7:d0:b1:18:
9e:44:1f:55:a0:2d:ce:ae:6d:95:c3:36:ea:d1:4f:ce:f9:06:
b9:63:8a:c7:9c:e9:a9:42:1b:19:44:fa:d3:c5:6b:99:5a:b6:
64:62:b9:57
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICCU8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzRE
RDQzMjk2MUFDNDJENjQ0QUVBRjM0QjE0QUVDNzAyNzVCMDZBMzAeFw0yMTAyMDcx
MzA4MzdaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEYzMDA1NkE5MEZBRjJG
QUUzNTI5OEMxODc3MUIxREIwODQzNkY1QzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCSCG02zYuHC4H2Qr9KqKGazdaGN/TlXmqrBulH0W35qnDvOXGH
EKzxbE1M6JlUS0ODF+FoliqquRGy+oEUy9GIoO+y2lHQpXJhhCWujTbPX7ZjCOj4
yl3aY90ve1lY8Jhs0ty0601bleB9QrMXgjOeULRVbd1gHufv8WttoyjpyXDMRFU3
bvNASro4xi1KR4o2DOo21gpV81qm/KN3Wuc4DWuZdfRikwR9Uvl9T+QKBVP1Kr84
WVipX1cbb/C+igWbsso25FngPhTrY1YmKDVYNHOR+f7RCO39rtxybGFsWzDPblGJ
Fb5OXTdls2Bvn08xRSKDlcb1RbV93+3nb/WjAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQU8wBWqQ+vL641KYwYdxsdsIQ29cQwHwYDVR0jBBgwFoAUNN1DKWGsQtZErq80
sUrscCdbBqMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFVNTy9O
TjFES1dHc1F0WkVycTgwc1Vyc2NDZGJCcU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L05OMURLV0dzUXRaRXJxODBzVXJzY0NkYkJxTS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL1BVTU8vOHdCV3FRLXZMNjQxS1l3WWR4c2Rz
SVEyOWNRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHyWgDAN
BgkqhkiG9w0BAQsFAAOCAQEAHGdKr7svEl+7QEB6YYZ1LZB1qkkSk8MJw1gCgFSh
BiImz7ZpvDTh6folkeS/KQjFQQOSmrOCGa6Acvl/O/AaTrXsTLjO4mlKYSuNJqLg
jLBbDNFCKLAiwxWI1FjxcY0fhFwJNcvB7Qx6upDedTm6htexd1/8Prtv1LqOPfvf
Db8r/1FeG9dXHKsHXxUU1FpAAAlHBZKdo1Q9a8HPqPmhpV/GBWSx1O9LzgmSgZVc
jP0c6pOPd7yTNjx/vY9fryoicuThFyZKm+VQMjBNppTNIEJ/8mW30LEYnkQfVaAt
zq5tlcM26tFPzvkGuWOKx5zpqUIbGUT608VrmVq2ZGK5Vw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org