Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/A2vl1s2W_Wy38p9zWbU9ei_kDI0.roa
File: A2vl1s2W_Wy38p9zWbU9ei_kDI0.roa (raw, json)
Hash identifier: D6Snnj6tZzx9Io7EyUBeCKeA0zQFiRkf9qx5FONetGk=
Subject key identifier: 03:6B:E5:D6:CD:96:FD:6C:B7:F2:9F:73:59:B5:3D:7A:2F:E4:0C:8D
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 08A8
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/A2vl1s2W_Wy38p9zWbU9ei_kDI0.roa
Signing time: Fri 11 Dec 2020 08:56:20 +0000
ROA not before: Fri 11 Dec 2020 08:56:20 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 198949
IP address blocks: 223.27.37.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2216 (0x8a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Dec 11 08:56:20 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=036BE5D6CD96FD6CB7F29F7359B53D7A2FE40C8D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:95:f5:90:9c:97:f3:d1:0e:80:45:31:d5:3b:
4a:e5:4c:ce:08:7d:4a:d4:a3:dd:d7:fb:ad:57:3c:
ed:1a:93:d6:37:fa:ee:65:24:bd:a7:93:fc:50:30:
10:91:96:62:99:94:e9:94:72:b2:28:30:ee:b7:dc:
a7:55:76:b2:7c:0e:bb:4c:a4:15:d9:2b:da:a3:9d:
9c:c7:cd:1c:bc:1d:ce:f3:a7:3f:41:25:02:4c:17:
b4:df:eb:41:95:96:b1:d8:56:75:9d:0a:b0:dc:fe:
ab:a6:c4:8f:e8:7d:a6:f6:eb:90:da:d9:aa:25:57:
d1:77:c0:8b:28:25:25:3b:5a:39:52:da:e6:44:ad:
70:87:8b:31:95:9a:25:7b:0a:c9:94:a4:15:49:c8:
e0:9b:67:b5:db:50:d5:53:48:23:45:1c:11:68:68:
2a:8f:60:86:dd:42:46:35:c2:55:7c:df:e4:91:49:
c4:bd:53:9a:b0:d5:37:19:b3:35:16:70:1d:77:62:
40:24:c7:1e:50:6c:67:c2:ef:69:76:1e:15:24:44:
c6:0b:1c:1e:fb:b8:34:17:ca:25:19:21:0c:c8:2e:
5d:ac:19:a1:b1:8b:cf:d8:1b:2c:0c:88:da:e9:9c:
99:ec:ba:7e:e6:11:a4:9e:47:9b:75:25:7e:b4:fa:
6e:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:6B:E5:D6:CD:96:FD:6C:B7:F2:9F:73:59:B5:3D:7A:2F:E4:0C:8D
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/A2vl1s2W_Wy38p9zWbU9ei_kDI0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.37.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:02:d4:dd:f6:87:1a:83:11:07:2b:c1:7b:a1:f9:7c:de:18:
e5:53:f0:92:ae:1e:21:83:79:5e:35:66:3d:4c:3a:69:03:4d:
1e:86:22:a8:fe:25:da:eb:0e:b3:7c:62:2e:8c:e5:da:db:4e:
60:91:81:1e:c7:99:80:db:03:00:ff:a7:48:4e:85:07:d6:c9:
af:51:9f:29:73:a7:f6:d3:30:3c:70:63:36:49:cb:c5:d0:64:
66:5a:64:d5:51:6b:22:af:8d:22:4e:64:2d:e4:2a:e4:1f:90:
75:aa:07:3e:2c:94:47:0a:5c:55:fd:dc:58:78:35:0f:5b:db:
b9:84:8e:fa:b4:fe:30:6c:5f:ea:06:67:fd:7a:0a:f8:53:47:
4f:34:f6:a8:88:4d:ee:72:7f:19:b2:bd:d5:76:ce:99:f1:f0:
8e:6b:b0:6a:bf:b7:e2:ff:0c:48:0a:37:66:22:96:57:24:9a:
f6:d5:9c:6c:3f:e5:c7:88:ef:66:bc:13:17:7b:52:bb:87:de:
23:b7:23:25:e9:c9:dd:9b:d9:33:a4:36:36:21:4b:13:e2:23:
cb:ed:ac:a4:f3:53:1d:f7:b4:0c:0c:43:09:d2:44:a2:ef:9e:
67:b9:6f:d2:e1:14:eb:84:ca:dd:f6:62:9e:14:31:fd:ac:5b:
23:69:e9:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:19 2024 by rpki-client on console-ams.rpki-client.org