Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/B25ZD-gcGTRhtkrABc1-PVkywLY.roa
File: B25ZD-gcGTRhtkrABc1-PVkywLY.roa (raw, json)
Hash identifier: FRFnnbXcvRfwb98U+R5gviTLRNeFzHKv0UrH/HA0YIc=
Subject key identifier: 07:6E:59:0F:E8:1C:19:34:61:B6:4A:C0:05:CD:7E:3D:59:32:C0:B6
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 08AA
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/B25ZD-gcGTRhtkrABc1-PVkywLY.roa
Signing time: Fri 11 Dec 2020 08:56:36 +0000
ROA not before: Fri 11 Dec 2020 08:56:36 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 198949
IP address blocks: 223.27.38.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2218 (0x8aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Dec 11 08:56:36 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=076E590FE81C193461B64AC005CD7E3D5932C0B6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:be:3d:fd:ac:7a:15:62:1f:1d:6f:69:44:74:
a7:e5:38:62:bd:b4:2a:c0:b5:b9:66:06:d7:7a:f1:
c9:e1:21:87:26:06:1d:d3:75:31:75:a5:ce:9b:4f:
ea:06:91:51:83:10:ed:3b:9a:9d:80:88:8b:f0:4b:
15:d6:b3:62:0f:2d:77:28:69:ce:30:c2:e2:86:fa:
3d:a4:c9:ff:60:d4:06:d3:da:ab:a1:13:01:58:a8:
03:cd:18:55:45:2d:86:97:81:e1:b5:07:78:57:3a:
7c:f8:94:ee:26:5f:78:75:ab:e3:d4:85:33:8a:d5:
fd:71:b3:fd:f6:54:1b:f7:43:67:46:75:21:12:0c:
03:7e:d2:28:99:4d:22:41:07:b3:96:f6:a7:35:ad:
65:9d:c6:d2:90:87:ee:cc:8d:7f:c2:5b:f7:5b:02:
3f:d3:80:e3:ce:58:cc:15:59:e2:00:1a:a5:a7:f8:
e7:2e:8f:78:f2:84:44:c2:5f:dd:da:c9:55:a7:8b:
26:a9:bb:86:f7:5f:08:c8:30:3d:fd:78:51:c2:b2:
c6:0c:c9:c5:a9:d2:09:d0:3f:1a:82:6c:b4:60:af:
7b:81:6a:c3:58:a7:f1:f7:6f:3b:ea:e3:61:04:7d:
23:32:2c:8e:9e:7d:48:50:44:28:ce:32:6d:d0:0b:
da:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:6E:59:0F:E8:1C:19:34:61:B6:4A:C0:05:CD:7E:3D:59:32:C0:B6
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/B25ZD-gcGTRhtkrABc1-PVkywLY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.38.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:32:a8:45:82:b9:58:8b:88:36:33:33:1f:18:f6:63:90:2a:
41:43:5c:b0:2a:58:c6:91:b0:f0:5d:37:e1:5d:e9:87:c1:5e:
5b:6e:8e:90:60:3f:23:12:a5:20:79:a4:98:04:27:6e:f5:78:
83:9a:1d:2d:09:0d:de:68:e3:03:ef:57:5e:7d:ac:54:cb:a7:
68:78:62:d4:fd:ed:1d:b0:ba:26:a3:a1:4f:6c:bc:1f:9a:0f:
ae:be:62:6a:1c:6c:37:b5:f3:51:1c:f0:5a:23:75:b2:09:83:
08:c2:db:c1:78:9b:72:6d:5e:e4:e7:aa:d3:5b:6a:49:66:25:
cc:0d:a2:d0:53:c0:78:1a:b3:6c:a5:4e:b8:0e:4a:6b:96:8c:
ff:ce:2f:97:58:e3:8c:29:82:f2:47:19:67:e1:e3:e6:1c:b0:
70:09:8d:5f:b4:bf:7d:e0:1e:03:cd:8a:92:4a:1a:06:cd:2e:
17:63:8e:1c:ae:dc:45:7c:16:95:86:e9:87:30:a3:8c:e5:4e:
80:b9:7a:c6:f8:75:9a:41:c1:ce:18:96:e8:dd:4f:44:ad:26:
2f:c5:12:4a:8a:c7:85:a3:6f:70:2b:7d:12:27:c9:a3:35:03:
f4:19:77:cc:cc:67:61:55:5b:e9:56:c1:97:06:40:c6:3f:09:
59:b3:1a:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:26:02 2025 by rpki-client