Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/9CvjbtUgP4H0Wi3WHogISN2v3jw.roa
File: 9CvjbtUgP4H0Wi3WHogISN2v3jw.roa (raw, json)
Hash identifier: /ttUqKmoj9cENMZ4MuIPC8CHNqmbxxoJgsWmPHgRQFI=
Subject key identifier: F4:2B:E3:6E:D5:20:3F:81:F4:5A:2D:D6:1E:88:08:48:DD:AF:DE:3C
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 08E8
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/9CvjbtUgP4H0Wi3WHogISN2v3jw.roa
Signing time: Fri 11 Dec 2020 09:07:14 +0000
ROA not before: Fri 11 Dec 2020 09:07:14 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38843
IP address blocks: 223.27.50.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2280 (0x8e8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Dec 11 09:07:14 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=F42BE36ED5203F81F45A2DD61E880848DDAFDE3C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:46:ae:9e:ab:20:27:bb:9b:3d:e7:f9:28:98:
70:8f:d0:ab:a9:1e:98:71:ee:1a:ac:6a:38:0e:24:
4a:4e:a1:cb:47:52:95:94:df:f0:62:00:35:0e:70:
14:4c:92:cf:ed:ae:c1:96:6f:1d:7f:ab:a0:d4:8f:
dc:5f:84:d3:21:b2:ca:73:9d:af:bd:cd:94:b3:91:
1b:73:e3:f3:6a:52:10:df:68:ba:2c:8b:44:18:45:
75:5d:7d:83:67:56:a0:7b:23:ce:30:2f:d2:19:dd:
46:8e:22:7d:50:e1:98:b4:cf:7c:bb:ed:7a:1e:2a:
20:df:ba:e4:76:44:84:ae:70:1b:06:01:ee:5e:47:
0a:27:91:81:e0:d4:bb:6f:64:15:5e:90:d8:62:81:
a6:32:12:32:9b:28:04:57:26:9e:e8:4c:92:56:ec:
38:a4:77:d7:0c:21:98:3c:e5:4e:3a:06:71:2b:f5:
7c:e1:db:e5:60:46:9a:a3:76:03:19:6f:76:1e:80:
fd:3e:ac:61:c5:5d:17:c2:b1:72:63:be:63:be:99:
f6:af:2e:5d:e4:e3:4d:9c:9a:2d:99:95:18:9b:f1:
f7:6a:4f:5a:35:d1:02:47:ef:b9:01:2a:15:00:79:
7a:f2:58:8e:d5:23:b9:5d:f9:2b:a9:7e:bc:a5:c4:
80:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:2B:E3:6E:D5:20:3F:81:F4:5A:2D:D6:1E:88:08:48:DD:AF:DE:3C
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/9CvjbtUgP4H0Wi3WHogISN2v3jw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.50.0/24
Signature Algorithm: sha256WithRSAEncryption
44:bd:d3:dc:50:29:80:56:a1:1f:23:85:60:2a:1c:63:b9:64:
f2:73:74:0a:d9:13:6f:e2:d8:9d:29:2a:b7:39:bb:74:72:73:
30:07:6c:a9:67:67:96:36:61:01:31:8e:bb:19:90:8a:c9:99:
7b:0d:ad:99:23:0c:40:c6:c9:d7:1d:d2:15:1d:eb:1f:3a:2d:
6d:5a:79:ce:8c:a2:89:04:4a:79:19:93:d3:76:7b:37:8d:35:
7b:6c:66:0d:51:85:69:a7:a2:c1:d5:69:c1:8c:05:55:f1:0a:
cc:07:f6:be:74:f1:98:40:6d:22:eb:6f:c7:56:37:a5:7a:1c:
7c:4e:40:18:4f:3c:19:5a:32:22:a9:5f:c7:11:e6:5e:b0:9f:
27:2d:58:02:24:ed:d7:99:ac:e0:e9:03:60:9b:27:c9:cc:da:
a5:ae:35:5b:1c:f6:a3:6c:bd:16:d3:45:f1:e4:be:e9:a3:bd:
5f:ed:76:61:36:6e:18:6c:5a:40:39:50:c6:44:c4:7d:1b:a0:
24:a3:93:30:60:5c:81:64:5f:13:62:d7:96:31:7d:47:8b:df:
f8:77:9f:f1:88:82:83:c5:fa:2f:9e:5c:db:53:2c:21:ba:09:
98:c1:72:9c:2a:d8:72:59:6c:08:c1:de:03:3a:ed:c5:ee:8e:
fc:69:e8:fe
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICCOgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzRE
RDQzMjk2MUFDNDJENjQ0QUVBRjM0QjE0QUVDNzAyNzVCMDZBMzAeFw0yMDEyMTEw
OTA3MTRaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEY0MkJFMzZFRDUyMDNG
ODFGNDVBMkRENjFFODgwODQ4RERBRkRFM0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC0Rq6eqyAnu5s95/komHCP0KupHphx7hqsajgOJEpOoctHUpWU
3/BiADUOcBRMks/trsGWbx1/q6DUj9xfhNMhsspzna+9zZSzkRtz4/NqUhDfaLos
i0QYRXVdfYNnVqB7I84wL9IZ3UaOIn1Q4Zi0z3y77XoeKiDfuuR2RISucBsGAe5e
RwonkYHg1LtvZBVekNhigaYyEjKbKARXJp7oTJJW7Dikd9cMIZg85U46BnEr9Xzh
2+VgRpqjdgMZb3YegP0+rGHFXRfCsXJjvmO+mfavLl3k402cmi2ZlRib8fdqT1o1
0QJH77kBKhUAeXryWI7VI7ld+SupfrylxICpAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQU9CvjbtUgP4H0Wi3WHogISN2v3jwwHwYDVR0jBBgwFoAUNN1DKWGsQtZErq80
sUrscCdbBqMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFVNTy9O
TjFES1dHc1F0WkVycTgwc1Vyc2NDZGJCcU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L05OMURLV0dzUXRaRXJxODBzVXJzY0NkYkJxTS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL1BVTU8vOUN2amJ0VWdQNEgwV2kzV0hvZ0lT
TjJ2M2p3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAN8bMjAN
BgkqhkiG9w0BAQsFAAOCAQEARL3T3FApgFahHyOFYCocY7lk8nN0CtkTb+LYnSkq
tzm7dHJzMAdsqWdnljZhATGOuxmQismZew2tmSMMQMbJ1x3SFR3rHzotbVp5zoyi
iQRKeRmT03Z7N401e2xmDVGFaaeiwdVpwYwFVfEKzAf2vnTxmEBtIutvx1Y3pXoc
fE5AGE88GVoyIqlfxxHmXrCfJy1YAiTt15ms4OkDYJsnyczapa41Wxz2o2y9FtNF
8eS+6aO9X+12YTZuGGxaQDlQxkTEfRugJKOTMGBcgWRfE2LXljF9R4vf+Hef8YiC
g8X6L55c21MsIboJmMFynCrYcllsCMHeAzrtxe6O/Gno/g==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:19 2024 by rpki-client on console-ams.rpki-client.org