Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/GIi_1tHYArs1hbNahIvbBFnpXc4.roa
File: GIi_1tHYArs1hbNahIvbBFnpXc4.roa (raw, json)
Hash identifier: phVTIB864sFQhHqY2/EVGrs1cVuzIed0v3JGAAQLc+Y=
Subject key identifier: 18:88:BF:D6:D1:D8:02:BB:35:85:B3:5A:84:8B:DB:04:59:E9:5D:CE
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0A69
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/GIi_1tHYArs1hbNahIvbBFnpXc4.roa
Signing time: Wed 29 Sep 2021 02:42:45 +0000
ROA not before: Wed 29 Sep 2021 02:42:45 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38843
IP address blocks: 223.27.38.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2665 (0xa69)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Sep 29 02:42:45 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=1888BFD6D1D802BB3585B35A848BDB0459E95DCE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:e9:ec:17:3f:5b:b0:5e:f8:f8:a7:e0:4a:29:
4b:4f:fb:eb:a1:07:f9:4e:3f:bc:ed:62:2c:41:f8:
44:8c:da:b0:c8:71:31:9c:0a:a0:61:0e:b7:e6:8c:
55:bb:f7:ac:93:c6:86:fe:a2:a8:53:28:7a:d5:34:
3f:ac:37:25:9c:fd:ec:79:0f:a0:41:0c:e7:9f:5d:
2b:d5:53:21:73:bd:b7:75:1f:c5:98:8a:e1:fc:8c:
bf:86:60:ab:bb:67:88:88:6b:bb:08:1d:af:98:cc:
38:ec:34:9f:1a:b7:70:c1:c4:f6:23:a0:de:c3:95:
49:22:1f:be:25:c5:81:e5:ba:da:df:1c:2f:ad:f0:
81:27:66:38:7e:75:8a:4e:6c:e6:a3:e5:50:75:2d:
ef:1a:09:87:59:97:9b:6f:f8:47:cb:40:85:f6:29:
66:33:40:ae:b7:c6:c3:e4:91:53:22:15:72:64:f8:
9d:38:b0:aa:90:f3:0a:aa:0e:2c:e2:97:b4:b6:eb:
56:7d:16:17:20:44:2f:fe:72:0e:b4:97:37:db:0e:
1a:75:ea:f0:f8:76:ef:0a:91:e0:c6:8e:d1:9a:9e:
fd:81:2c:cf:0d:1b:ba:c0:aa:b0:c7:10:5e:b1:2f:
9d:67:d7:02:3e:40:ec:33:2f:f6:d2:ef:13:72:c9:
4d:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:88:BF:D6:D1:D8:02:BB:35:85:B3:5A:84:8B:DB:04:59:E9:5D:CE
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/GIi_1tHYArs1hbNahIvbBFnpXc4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.38.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:5e:77:19:0b:20:43:aa:b5:2a:60:9e:aa:43:02:a9:48:97:
ac:2b:64:af:bf:d1:28:f3:d4:2b:8c:75:ad:8c:6e:a0:76:36:
39:18:c3:5c:69:49:e0:45:2c:12:43:27:27:5f:f1:8d:26:0b:
d6:81:b6:1e:df:f7:25:f6:e2:1f:2c:cd:85:34:f6:9f:2a:5b:
00:77:03:09:4f:61:4d:0c:e0:75:70:7b:29:cc:05:ba:1b:ef:
a9:b7:96:bf:62:c3:0b:7b:82:25:61:c7:c6:ef:61:b2:d5:89:
89:fc:07:34:e7:71:e7:6b:b9:94:4b:3e:8a:21:b4:81:cb:12:
62:c4:6b:5e:53:dc:30:d9:cf:ed:c3:1c:1e:13:b7:8b:01:a7:
06:cc:d6:55:2d:33:ae:1d:22:83:ba:fb:c0:4a:de:75:fc:50:
56:13:84:5d:ad:d9:52:f1:5c:16:12:38:5c:7c:73:01:e9:c8:
35:4c:12:fd:1f:bb:a3:7c:cc:46:f4:e8:29:ca:7a:f3:0a:ad:
f2:2d:5a:a1:40:85:ec:46:2d:ce:5b:c9:4b:79:80:3f:db:c7:
5d:7d:23:89:ba:ff:eb:df:52:58:8d:c3:4d:a5:3e:dd:14:2f:
66:2b:29:61:1a:69:bd:34:1c:4a:28:4c:6f:b2:41:d1:e2:d7:
a9:37:a9:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:16 2023 by rpki-client on console-fra.rpki-client.org