Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/AQNWQqF7JtJlfRHXXpV4chimfAo.roa
File: AQNWQqF7JtJlfRHXXpV4chimfAo.roa (raw, json)
Hash identifier: ldsd4opLR2JwAzBoOtFyYcrdiZEH7zp+/3Eo3nsbbOc=
Subject key identifier: 01:03:56:42:A1:7B:26:D2:65:7D:11:D7:5E:95:78:72:18:A6:7C:0A
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0A71
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/AQNWQqF7JtJlfRHXXpV4chimfAo.roa
Signing time: Wed 29 Sep 2021 02:42:48 +0000
ROA not before: Wed 29 Sep 2021 02:42:48 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38843
IP address blocks: 124.150.134.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2673 (0xa71)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Sep 29 02:42:48 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=01035642A17B26D2657D11D75E95787218A67C0A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:56:12:f8:c0:ff:51:10:11:e4:9d:cf:2a:47:
d4:4c:e6:74:d5:e6:dc:13:26:62:a8:2e:3f:3b:c7:
4a:fd:de:ec:f0:4e:6a:68:3f:7d:d9:4e:47:03:73:
ee:43:ff:08:4e:dc:d7:1c:7c:c5:04:48:17:f8:69:
97:aa:67:ec:bb:e9:af:43:9c:03:18:77:e4:a9:41:
b7:88:90:6e:ea:a5:e9:d6:92:9c:8a:e8:7e:2c:8a:
c2:c4:65:40:a8:63:15:37:c9:24:cf:1e:73:a0:33:
54:51:2a:4e:5f:1e:10:06:68:41:95:4e:00:a8:c9:
23:ee:6e:f7:04:75:45:c1:82:67:dc:08:55:28:a2:
16:53:ff:40:2e:4b:d9:52:1b:7c:a1:6b:f8:0f:6c:
bb:e8:5d:c9:2b:e9:b4:24:51:c0:fc:76:a2:fe:0e:
5f:bf:6b:12:fa:11:2f:a1:d1:18:8b:f2:09:b2:76:
09:29:8a:69:cf:fa:8b:be:fd:9c:fa:c4:eb:c8:c9:
8f:87:29:9b:1c:32:3b:63:05:bd:c2:08:ca:56:a1:
21:ca:94:56:7e:bf:0e:f6:4f:e2:78:00:f9:95:bd:
3f:8f:d0:3f:e3:1a:a5:77:ec:1e:bc:4f:88:ec:c7:
fd:0c:c7:37:1b:95:0e:65:86:37:d4:93:67:47:2c:
53:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:03:56:42:A1:7B:26:D2:65:7D:11:D7:5E:95:78:72:18:A6:7C:0A
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/AQNWQqF7JtJlfRHXXpV4chimfAo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.150.134.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:2e:3e:b6:9c:de:81:a9:b8:3f:59:97:da:e6:72:10:4b:86:
63:59:7b:4a:c8:58:08:d6:cb:48:f1:02:d8:e3:b5:32:cd:1e:
da:c8:64:a8:13:78:2c:e5:60:75:76:6a:84:69:3d:1f:92:3e:
12:ed:29:a9:e7:8a:6a:c9:9c:f0:30:67:b8:5d:3e:e9:2f:4e:
d5:78:4d:fc:50:de:28:2b:ce:ee:ef:9e:c2:bc:48:7f:cf:df:
fd:3c:3d:9c:e1:ab:d5:34:af:4c:1d:ea:bd:da:cd:e2:11:4c:
fc:e7:67:23:ef:47:1d:64:1f:f4:eb:8e:00:90:6d:22:55:29:
72:bb:9c:e1:2b:3f:af:56:3e:7d:6d:9a:0b:d3:ec:ea:cd:88:
3e:24:0d:96:60:c3:af:90:4f:a5:36:60:0a:cb:c4:81:15:f1:
db:e5:0b:ff:36:1d:ff:41:1a:8a:66:25:1d:d2:3b:c6:5f:cf:
d2:51:ce:4d:d1:31:d3:e4:2f:c4:d7:a5:18:5f:80:56:39:9d:
09:f3:6c:89:f2:59:4e:79:5e:66:96:a0:d3:53:4c:dc:a5:c1:
52:70:72:f7:ec:09:ba:90:51:e5:5c:64:54:f5:83:87:f3:fe:
e1:db:b3:2d:a2:24:ec:3f:e9:07:3e:e4:30:90:9b:75:46:3d:
a1:a2:ff:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:19 2024 by rpki-client on console-ams.rpki-client.org