Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/9p-A45FSJ_0gFC3Fb1hmB1GtkCo.roa
File: 9p-A45FSJ_0gFC3Fb1hmB1GtkCo.roa (raw, json)
Hash identifier: 5tPJvImjOPWIvXP94nmnNnt/N+Lq+jNt8E+ir61DqZY=
Subject key identifier: F6:9F:80:E3:91:52:27:FD:20:14:2D:C5:6F:58:66:07:51:AD:90:2A
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0AB0
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/9p-A45FSJ_0gFC3Fb1hmB1GtkCo.roa
Signing time: Wed 06 Oct 2021 07:17:11 +0000
ROA not before: Wed 06 Oct 2021 07:17:11 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38843
IP address blocks: 223.27.60.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2736 (0xab0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Oct 6 07:17:11 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=F69F80E3915227FD20142DC56F58660751AD902A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:ac:b8:84:61:24:8c:7b:47:04:9b:56:e8:9c:
5b:e7:30:c3:4e:b0:37:6e:ba:63:48:13:8a:06:7d:
9d:d1:63:cf:10:d9:e7:3e:3a:85:0c:86:50:7f:f1:
e2:19:26:03:8e:8e:2e:35:3b:0b:1b:9b:b2:f6:78:
8a:9b:1b:b4:40:ff:7c:51:91:56:9f:6d:14:74:cd:
56:e8:d2:f7:6b:b2:7e:01:a8:31:15:3b:e3:7d:66:
2e:0d:cf:33:b5:f1:40:7e:ac:84:5d:b9:d6:ca:6f:
b1:58:06:4e:d2:5a:5e:68:70:75:fe:da:b9:38:70:
e6:03:39:e0:ec:56:98:c0:b4:ab:ca:85:54:8c:0a:
2a:16:21:d9:ee:2c:20:c0:73:2d:f5:19:e5:4c:32:
7d:fa:ee:a7:d9:2e:7d:8b:7d:ba:51:50:0b:fa:22:
49:c8:3d:0d:26:8b:af:22:00:33:fd:75:09:c8:66:
9a:ca:06:99:ab:9a:76:9a:d6:ed:8e:75:e4:65:87:
29:43:81:39:42:bd:45:b8:43:3b:bb:1f:5d:45:d6:
02:d0:53:3f:4c:9e:a5:dd:99:6f:44:d3:59:4d:df:
8b:18:f2:ac:f8:3e:3c:3f:ba:75:7a:96:6a:b5:3f:
9f:aa:02:68:6c:81:04:f5:bb:fa:e8:d3:81:a7:c0:
ab:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:9F:80:E3:91:52:27:FD:20:14:2D:C5:6F:58:66:07:51:AD:90:2A
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/9p-A45FSJ_0gFC3Fb1hmB1GtkCo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.60.0/22
Signature Algorithm: sha256WithRSAEncryption
9e:d0:ba:72:b3:f8:c3:47:20:7d:b8:9b:21:5e:e9:d8:d0:7d:
bb:91:51:7c:5d:54:b1:6f:62:6d:ff:7f:8c:5a:73:7a:eb:60:
2d:f9:8d:0f:9d:b5:4c:68:4f:08:d2:92:df:9b:96:70:eb:4b:
f2:b8:6d:e7:81:47:38:c3:80:be:03:dc:38:7f:33:96:11:9a:
51:79:f8:b2:fb:c6:fb:87:fb:ca:7a:0e:9b:5f:08:50:be:d6:
93:0e:22:d9:3f:9c:da:c2:8c:f6:fd:01:3a:d4:92:04:bb:c2:
1f:fb:cb:7a:90:92:0a:4c:9b:25:4d:43:16:26:e5:e8:be:98:
e8:87:bb:a2:6f:df:ac:ab:8e:cc:15:d8:12:27:16:18:39:b3:
00:00:b4:76:cd:28:d7:32:b0:88:9d:29:77:a3:25:99:e5:3b:
0f:86:5d:81:83:fc:d7:48:cd:60:c1:01:04:74:d5:0d:8d:fa:
8c:3c:d2:ac:94:83:95:13:e7:e6:b6:3e:5a:22:f0:66:d9:d6:
d0:60:b6:0a:b4:74:3d:c5:d6:a0:ff:ea:bd:00:ed:90:43:8f:
70:60:38:26:e9:c5:34:4d:79:b1:a7:ea:1a:9a:12:39:66:67:
04:69:f8:b0:ca:d5:dd:18:35:c1:ce:26:ae:14:a7:d2:db:4f:
97:58:e0:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:04 2023 by rpki-client on console-ams.rpki-client.org