Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/ENEm5OlcPKM_LKdVmUWVS-o6Kyg.roa
File: ENEm5OlcPKM_LKdVmUWVS-o6Kyg.roa (raw, json)
Hash identifier: 3PyMTGsdu3tfk7s08d0sHEwYe6SiH+MR9QS2/9xAPRI=
Subject key identifier: 10:D1:26:E4:E9:5C:3C:A3:3F:2C:A7:55:99:45:95:4B:EA:3A:2B:28
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 08E0
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/ENEm5OlcPKM_LKdVmUWVS-o6Kyg.roa
Signing time: Fri 11 Dec 2020 09:06:26 +0000
ROA not before: Fri 11 Dec 2020 09:06:26 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38843
IP address blocks: 223.27.43.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2272 (0x8e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Dec 11 09:06:26 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=10D126E4E95C3CA33F2CA7559945954BEA3A2B28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:2d:f6:cf:5e:aa:c9:27:81:20:50:95:8b:d5:
b4:a9:c7:9e:a1:50:da:e3:ba:e0:df:dc:52:c4:96:
89:f9:47:c4:df:60:d9:7c:2f:65:57:5f:73:f6:f0:
5f:93:ec:9b:b1:a0:2f:8a:6f:68:73:7e:33:7a:4b:
0f:32:e1:29:0f:9c:01:eb:2a:8c:20:91:29:93:3b:
57:ee:90:f9:26:46:84:a2:04:be:70:e9:eb:49:d1:
9b:6e:f4:49:12:ca:bf:3f:99:95:8a:26:b7:54:e8:
65:8e:c4:9c:6b:ef:59:04:e2:5e:03:9b:d9:74:31:
0c:4a:c7:9c:b9:2e:d4:52:cc:c6:eb:6d:2d:ce:60:
c4:ac:9f:1b:b8:71:c7:28:88:d0:b1:f2:5c:84:5c:
1b:4e:e8:db:3f:c3:b2:11:6d:74:23:e0:ac:c8:b4:
4d:cd:db:e3:4e:c7:19:22:82:eb:28:a4:0b:a3:b6:
15:49:71:27:a1:21:51:20:04:66:0a:7e:f0:34:8a:
d3:5b:9a:ec:7a:fc:24:6c:80:00:b7:66:9d:0b:a9:
c6:1c:b1:36:81:58:e0:f7:26:51:3f:d2:31:dc:07:
d8:43:03:ac:2e:7b:d2:5b:2c:bc:88:82:22:44:96:
c9:d8:68:0c:88:30:6c:76:4f:06:90:69:e4:70:c6:
5e:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:D1:26:E4:E9:5C:3C:A3:3F:2C:A7:55:99:45:95:4B:EA:3A:2B:28
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/ENEm5OlcPKM_LKdVmUWVS-o6Kyg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.43.0/24
Signature Algorithm: sha256WithRSAEncryption
bd:12:a3:0c:45:26:af:f4:b7:b4:4a:d7:b5:fa:fb:c2:cf:25:
72:2b:bc:37:a8:37:ab:59:72:6d:86:1e:4e:e9:ec:69:71:b7:
b2:d2:bc:40:f3:0e:b8:71:d1:c1:ee:ac:68:44:b0:de:1e:d4:
53:3a:b2:d9:bd:07:1c:ea:49:05:9e:56:f1:c0:c2:32:1c:72:
fd:51:fe:ba:2e:10:89:30:44:f3:d0:16:1c:ac:cb:f2:80:47:
d3:1a:20:41:14:d4:40:75:35:4e:ae:57:84:cd:7d:f5:98:db:
53:89:df:9b:1d:15:3d:d2:be:d5:2f:3b:d3:98:c7:f1:59:42:
94:64:f0:c2:8d:5f:09:39:03:bb:c0:af:4a:64:99:54:76:f8:
b2:ee:ef:ec:ed:c5:25:7e:8e:f8:5f:58:88:ae:64:c5:23:bf:
58:db:57:53:3a:ea:c8:f8:ef:06:04:7d:f2:bf:a3:ec:39:f6:
87:35:2c:82:52:e7:4c:04:9b:a8:f0:d5:0f:55:c2:a6:cd:1d:
62:95:b0:6c:00:a6:50:66:5d:9e:01:21:d4:e9:3a:bb:61:9b:
55:66:09:65:93:6a:d5:de:d2:90:3c:19:a7:43:f5:a1:5a:6a:
43:79:52:bb:00:0a:ea:4f:08:a5:f6:cb:7e:f8:0a:4a:36:dd:
d0:e8:af:11
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICCOAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzRE
RDQzMjk2MUFDNDJENjQ0QUVBRjM0QjE0QUVDNzAyNzVCMDZBMzAeFw0yMDEyMTEw
OTA2MjZaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDEwRDEyNkU0RTk1QzND
QTMzRjJDQTc1NTk5NDU5NTRCRUEzQTJCMjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCaLfbPXqrJJ4EgUJWL1bSpx56hUNrjuuDf3FLElon5R8TfYNl8
L2VXX3P28F+T7JuxoC+Kb2hzfjN6Sw8y4SkPnAHrKowgkSmTO1fukPkmRoSiBL5w
6etJ0Ztu9EkSyr8/mZWKJrdU6GWOxJxr71kE4l4Dm9l0MQxKx5y5LtRSzMbrbS3O
YMSsnxu4cccoiNCx8lyEXBtO6Ns/w7IRbXQj4KzItE3N2+NOxxkigusopAujthVJ
cSehIVEgBGYKfvA0itNbmux6/CRsgAC3Zp0LqcYcsTaBWOD3JlE/0jHcB9hDA6wu
e9JbLLyIgiJElsnYaAyIMGx2TwaQaeRwxl7VAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUENEm5OlcPKM/LKdVmUWVS+o6KygwHwYDVR0jBBgwFoAUNN1DKWGsQtZErq80
sUrscCdbBqMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFVNTy9O
TjFES1dHc1F0WkVycTgwc1Vyc2NDZGJCcU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L05OMURLV0dzUXRaRXJxODBzVXJzY0NkYkJxTS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL1BVTU8vRU5FbTVPbGNQS01fTEtkVm1VV1ZT
LW82S3lnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAN8bKzAN
BgkqhkiG9w0BAQsFAAOCAQEAvRKjDEUmr/S3tErXtfr7ws8lciu8N6g3q1lybYYe
TunsaXG3stK8QPMOuHHRwe6saESw3h7UUzqy2b0HHOpJBZ5W8cDCMhxy/VH+ui4Q
iTBE89AWHKzL8oBH0xogQRTUQHU1Tq5XhM199ZjbU4nfmx0VPdK+1S8705jH8VlC
lGTwwo1fCTkDu8CvSmSZVHb4su7v7O3FJX6O+F9YiK5kxSO/WNtXUzrqyPjvBgR9
8r+j7Dn2hzUsglLnTASbqPDVD1XCps0dYpWwbACmUGZdngEh1Ok6u2GbVWYJZZNq
1d7SkDwZp0P1oVpqQ3lSuwAK6k8IpfbLfvgKSjbd0OivEQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:16 2023 by rpki-client on console-fra.rpki-client.org