Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/EGpt6cfIbHLc4mKdQnF1bzyo6BU.roa
File: EGpt6cfIbHLc4mKdQnF1bzyo6BU.roa (raw, json)
Hash identifier: qqYCHRXPcCFUGtH00oX13qDstAAsYdDQ1w+O9SG53mw=
Subject key identifier: 10:6A:6D:E9:C7:C8:6C:72:DC:E2:62:9D:42:71:75:6F:3C:A8:E8:15
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0BA9
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/EGpt6cfIbHLc4mKdQnF1bzyo6BU.roa
Signing time: Thu 15 Sep 2022 02:42:24 +0000
ROA not before: Thu 15 Sep 2022 02:42:24 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38843
IP address blocks: 223.27.55.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2985 (0xba9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Sep 15 02:42:24 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=106A6DE9C7C86C72DCE2629D4271756F3CA8E815
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:64:5a:00:e6:64:30:4b:c6:39:e5:4c:ad:33:
30:27:55:bf:1c:8d:c1:ed:8a:f6:6b:57:52:6b:ef:
31:34:b3:b7:ab:dc:da:52:c8:ab:02:78:17:54:c2:
df:c0:6f:c0:e1:e9:da:fc:3e:84:fb:ed:01:7a:27:
04:63:6a:3d:2e:ed:d4:51:1c:65:46:95:4c:cf:df:
27:b1:05:de:2a:26:b5:9a:d8:b9:c9:c5:74:92:57:
c8:e9:28:a2:dc:b4:a8:f8:10:05:ca:09:35:bf:dc:
3d:8b:7c:5d:52:2b:02:19:0a:a5:54:ba:cd:99:5a:
21:24:e4:99:c8:3c:12:07:2e:b7:d1:16:24:ea:f2:
d4:82:68:80:11:04:4b:2b:b9:7a:25:ad:c3:09:24:
2e:22:83:07:3a:bd:c2:fa:4e:0c:49:eb:59:a5:33:
39:50:db:e5:d2:e0:e0:d9:c0:17:09:94:5f:b8:70:
93:e5:cb:4f:ef:cb:7f:6a:96:18:7e:ba:e5:07:11:
a4:c9:f0:66:24:9e:fb:f5:bb:65:62:22:46:2e:bb:
74:22:60:fa:24:25:b7:f6:00:b6:85:51:78:40:b0:
f0:fa:20:73:25:4f:43:7c:05:53:c1:91:51:68:fd:
67:57:c5:25:4f:d4:0a:a5:42:f7:5d:77:bf:16:85:
4e:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:6A:6D:E9:C7:C8:6C:72:DC:E2:62:9D:42:71:75:6F:3C:A8:E8:15
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/EGpt6cfIbHLc4mKdQnF1bzyo6BU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.55.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:37:15:b7:1a:a6:69:0c:d7:5b:93:93:af:63:03:f5:81:22:
be:58:90:88:27:96:c7:35:93:d1:0a:5e:07:bc:1d:56:62:39:
be:39:c2:9f:2e:f7:27:d7:ee:d2:76:ec:f6:63:0d:b1:1f:ae:
f9:c9:50:b8:86:2d:63:d1:40:34:5f:2e:0e:f1:25:3f:4a:b7:
55:22:0a:56:27:19:4f:e5:5d:00:69:67:16:28:97:56:6b:20:
79:5e:86:7f:d8:51:24:32:af:0f:86:40:ae:84:c1:de:1d:9a:
34:8b:2c:46:5b:87:26:34:4d:26:db:dc:4e:07:fb:ef:6d:cd:
8a:8c:22:1b:6b:ac:c0:47:e8:0f:80:fc:2e:da:e5:fc:be:53:
86:61:62:12:d7:b7:38:e0:8c:0e:7c:b1:db:b8:1e:7a:38:47:
63:67:9d:44:45:65:cb:82:7f:40:a6:78:46:8f:7c:e0:5c:7e:
1d:50:97:39:1c:34:4f:e3:db:51:5f:86:a6:dd:89:10:fa:71:
c0:04:8b:db:67:bb:4d:ce:7c:d2:aa:e7:29:ee:cb:54:5f:9a:
05:76:23:c2:91:f2:e4:55:e3:65:fc:9a:60:1b:8f:8a:06:60:
14:60:35:6c:5b:6d:a4:86:3f:6d:d2:d4:3a:16:0c:a5:da:df:
a6:b6:ac:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:19 2024 by rpki-client on console-ams.rpki-client.org