Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/EsenbSmhQnETRjSb_sjqP0ad9Lk.roa
File: EsenbSmhQnETRjSb_sjqP0ad9Lk.roa (raw, json)
Hash identifier: rgm3UwUwrIfJ766WQ2miiiqmM1XZ5gNbUsN0zYShSzQ=
Subject key identifier: 12:C7:A7:6D:29:A1:42:71:13:46:34:9B:FE:C8:EA:3F:46:9D:F4:B9
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 08E2
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/EsenbSmhQnETRjSb_sjqP0ad9Lk.roa
Signing time: Fri 11 Dec 2020 09:06:38 +0000
ROA not before: Fri 11 Dec 2020 09:06:38 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38843
IP address blocks: 223.27.46.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2274 (0x8e2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Dec 11 09:06:38 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=12C7A76D29A142711346349BFEC8EA3F469DF4B9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:d3:87:6a:41:d4:68:39:a4:ff:c8:c2:36:b1:
a8:54:05:20:b5:ba:3e:a8:f3:fd:54:cc:1f:5f:13:
84:47:d0:cc:27:58:9e:5a:e6:d4:b1:c9:d8:8f:70:
57:b5:28:44:d5:09:de:f6:3b:20:fe:67:6c:3d:63:
1d:57:f2:cd:63:b3:88:21:23:68:d7:6e:b4:20:c5:
66:43:3d:09:f5:80:97:c7:61:e5:f8:52:5e:8e:cf:
4a:b9:2d:99:6e:86:2e:b8:f0:3d:46:ac:7f:96:30:
c3:bb:bb:58:27:61:ab:bc:53:d9:a2:28:13:b5:c0:
56:fb:bb:97:4f:9a:4f:cb:92:4e:a7:de:42:19:6d:
d7:a5:00:b1:26:33:7c:bf:99:f9:56:2d:c1:37:d7:
a6:43:95:48:95:85:3d:8a:97:d1:54:03:d7:a2:5c:
f0:18:00:63:44:c4:5e:28:69:df:0c:7e:78:ae:51:
3c:af:0a:25:2c:b9:14:25:98:d9:ec:92:8a:35:2c:
34:c3:d5:b6:4e:c6:3f:87:03:8c:f3:0d:de:09:cc:
91:31:87:96:f5:cc:fc:f8:94:78:3e:26:d4:aa:64:
b8:06:8a:8f:c4:28:5e:9b:5b:90:75:08:e2:89:09:
72:92:3c:c6:8a:79:69:a6:a0:0b:55:19:54:d1:65:
c3:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:C7:A7:6D:29:A1:42:71:13:46:34:9B:FE:C8:EA:3F:46:9D:F4:B9
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/EsenbSmhQnETRjSb_sjqP0ad9Lk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.46.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:e2:fc:94:9d:ba:1d:ed:f5:1f:a4:95:90:85:7e:40:db:5b:
2f:ed:6d:54:4f:b8:a6:15:4d:37:e5:d4:3d:89:e5:df:e6:6b:
ef:6e:c0:c6:15:5a:cf:51:29:8d:b7:6c:ed:90:d5:1d:f1:74:
72:c9:1f:6e:40:49:71:1d:b8:d4:59:4c:60:6f:4b:25:8c:4d:
03:42:ea:ca:b0:75:ea:ec:a3:20:7b:7a:3b:5e:af:c9:4c:f5:
90:03:c9:f1:7c:68:60:e7:67:49:a8:74:6f:54:69:6e:53:c7:
4b:ea:99:ec:dd:07:3b:1e:d0:b2:09:ed:b2:65:f4:b2:88:8c:
e0:ee:1f:51:96:da:7a:e3:e5:62:16:6b:31:c0:6e:f7:09:20:
24:fb:c9:6a:2d:c7:68:2e:fb:e1:71:3c:ae:c0:06:cd:80:ec:
42:0d:21:33:dd:75:7b:fc:dc:b7:cf:49:a7:f7:5a:8e:fc:14:
83:36:dc:71:6f:be:25:2a:23:a7:33:4f:65:a1:56:3c:c6:d9:
db:4b:1e:d7:b7:80:c1:07:f6:62:88:15:7e:3d:36:4f:17:c6:
4e:e0:46:ec:f8:b7:1e:b8:da:91:53:0a:e8:2a:15:db:ec:e1:
35:cd:0c:b5:3d:55:a5:a8:f6:76:b3:48:5d:48:b7:bf:d1:5e:
c8:37:b0:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:19 2024 by rpki-client on console-ams.rpki-client.org