Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/AaBT4LbssKKQFVWxtPCyuUU-2FY.roa
File: AaBT4LbssKKQFVWxtPCyuUU-2FY.roa (raw, json)
Hash identifier: R13+6xcyeYXK+Sy0QPuW8rxK1kaJingd486VppJh9sQ=
Subject key identifier: 01:A0:53:E0:B6:EC:B0:A2:90:15:55:B1:B4:F0:B2:B9:45:3E:D8:56
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 088E
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/AaBT4LbssKKQFVWxtPCyuUU-2FY.roa
Signing time: Fri 11 Dec 2020 08:45:56 +0000
ROA not before: Fri 11 Dec 2020 08:45:56 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 198949
IP address blocks: 124.150.135.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2190 (0x88e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Dec 11 08:45:56 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=01A053E0B6ECB0A2901555B1B4F0B2B9453ED856
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:b1:1a:5e:61:2e:2b:f1:94:07:ba:f9:9b:60:
cf:da:a2:3a:fb:b0:63:d9:fd:8d:e1:6d:cb:8a:75:
8b:ca:3f:cd:9e:c7:88:67:d1:7d:3b:f5:9a:a8:2c:
4f:2b:d2:ba:ac:44:d4:39:a0:62:c5:d5:da:27:32:
49:ee:ad:6e:58:de:1b:18:6e:c4:32:f5:0a:37:2f:
ae:a7:19:16:96:b0:2e:93:da:d3:87:7a:13:c9:63:
9a:30:71:5f:43:46:89:b9:67:96:3d:60:9e:e4:55:
aa:33:f6:fc:74:09:25:75:5e:59:84:5e:7a:c4:ad:
ea:4a:cc:55:ad:27:2e:59:19:0a:c1:38:f1:24:da:
5f:1d:a4:59:d0:d0:00:7f:33:0f:88:b7:85:e2:a7:
43:a8:db:01:f7:eb:76:67:96:57:ee:54:8d:1d:08:
3f:4c:52:62:82:6b:41:e1:6a:6a:b8:a6:b4:cf:bc:
58:47:96:b5:84:fb:cd:fc:18:37:4d:23:a2:df:ed:
f7:92:55:76:5a:fc:3d:c1:aa:92:b6:44:fa:a2:ec:
96:e4:7a:c0:7f:b9:49:b8:e6:a8:ec:c2:07:6d:3e:
48:8d:cc:f4:b6:7a:81:92:cd:04:e2:6b:6b:52:e7:
af:b8:05:6d:d8:69:03:9f:93:3d:23:5f:81:f7:66:
f4:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:A0:53:E0:B6:EC:B0:A2:90:15:55:B1:B4:F0:B2:B9:45:3E:D8:56
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/AaBT4LbssKKQFVWxtPCyuUU-2FY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.150.135.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:a0:09:a8:96:46:e4:80:46:1f:62:a5:36:a3:10:1f:78:a7:
71:85:e0:82:16:4d:e8:f5:c9:84:25:95:7f:41:a3:86:1e:59:
c3:09:dc:25:9a:a1:aa:bc:b9:d4:c1:bf:b4:dc:f4:2e:4e:a3:
07:e0:a5:23:0e:bb:42:bf:0f:08:12:7b:a1:a6:a0:1d:1e:d8:
f9:e8:42:f4:01:c9:bb:9d:2e:4b:66:0f:cb:04:5d:5b:98:00:
f8:54:cc:c1:1a:36:23:bd:59:9b:3c:ea:85:dd:a1:cd:0f:36:
c3:eb:88:49:76:1c:25:0f:78:df:04:4f:e1:7c:3c:13:13:20:
14:b5:6c:82:6f:b7:aa:a8:c0:32:c7:9e:95:14:26:56:93:a7:
4e:e3:3f:d3:24:87:f8:47:7c:62:97:dc:66:3a:7e:cd:c6:cf:
ef:a2:60:2c:bd:f0:19:d1:92:0b:9f:88:e8:e0:3c:e6:a1:aa:
f4:d1:7e:ac:ef:44:fa:dc:87:7f:6c:d8:e9:88:83:ed:4e:22:
44:fb:03:dc:21:e2:7c:08:c1:d6:37:eb:45:83:a4:ce:46:99:
b0:59:b8:16:da:13:e7:ac:70:8a:34:60:5a:bd:79:ee:50:a7:
c1:cf:83:d8:1f:73:f9:5b:0b:a6:d2:bd:8e:54:47:56:c8:93:
1d:3a:18:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org