Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/Gnm_ICZ215ltmQr0KIedjEhkKiM.roa
File: Gnm_ICZ215ltmQr0KIedjEhkKiM.roa (raw, json)
Hash identifier: wWJqoFVePLmd7Ffi+cxdftYYw5AGJZCnw4tA66M8QiM=
Subject key identifier: 1A:79:BF:20:26:76:D7:99:6D:99:0A:F4:28:87:9D:8C:48:64:2A:23
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0995
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/Gnm_ICZ215ltmQr0KIedjEhkKiM.roa
Signing time: Sun 07 Feb 2021 13:09:44 +0000
ROA not before: Sun 07 Feb 2021 13:09:44 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38843
IP address blocks: 223.27.36.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2453 (0x995)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Feb 7 13:09:44 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=1A79BF202676D7996D990AF428879D8C48642A23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:4e:6c:13:45:4a:e5:15:c7:d0:40:12:24:f4:
b6:ce:be:e3:b4:ea:b8:03:52:6f:f3:e8:28:dc:0d:
04:ea:fa:cd:54:48:62:36:ed:72:e0:5c:58:f0:b0:
a1:35:01:3f:6c:0c:40:b3:9f:24:40:f3:41:37:27:
05:41:2a:a6:a9:db:5d:d6:eb:2f:ee:a3:2c:05:30:
71:0a:53:6d:a3:97:45:f4:4b:5c:c1:46:d2:37:f1:
b4:9e:40:69:d3:44:b4:21:b7:6a:b4:b6:4e:03:2b:
6f:07:a0:84:ef:ea:3b:0e:14:d1:b9:d8:20:a1:db:
45:1b:7d:a8:20:9c:e6:02:b2:1e:a5:e9:12:fd:f1:
5d:c5:f6:eb:95:1f:d6:d4:73:2a:41:af:13:2a:c5:
83:0f:78:98:ce:ae:34:0e:bf:fb:ed:37:bf:81:40:
4f:6f:1b:5a:1a:44:e3:57:e4:66:9e:eb:ba:b8:d5:
f6:00:f0:77:ea:07:a5:90:ff:65:f8:12:dd:50:bf:
28:be:83:09:d5:c9:21:42:ad:c0:98:a2:72:11:e1:
5f:c5:9c:6b:c8:be:e8:29:78:7b:4b:11:8b:c6:e2:
32:89:33:5e:15:3f:4d:1d:7a:71:32:8b:bc:c4:0b:
56:00:1c:ef:18:5a:d7:1b:46:1c:ce:ba:63:c1:d3:
15:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:79:BF:20:26:76:D7:99:6D:99:0A:F4:28:87:9D:8C:48:64:2A:23
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/Gnm_ICZ215ltmQr0KIedjEhkKiM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.36.0/24
Signature Algorithm: sha256WithRSAEncryption
86:df:95:01:64:f5:60:e3:32:1f:8b:aa:e5:ba:ea:2b:45:9c:
64:e1:4c:0e:83:aa:2f:c5:49:5b:d0:e5:19:d4:9e:71:58:4d:
06:28:3a:3c:05:bf:fd:45:fa:60:2e:8a:68:1f:a4:31:55:fa:
06:59:9f:41:ac:d1:a2:95:0b:d6:a0:11:57:d1:1a:5f:99:dd:
f9:a2:67:df:68:aa:98:1f:32:39:fb:1e:ac:4c:00:9c:37:bb:
95:56:b7:50:96:b7:be:68:6a:eb:02:a3:c1:81:af:a9:52:95:
d7:7d:ca:7f:bb:8a:0d:22:16:b5:e2:70:c9:30:92:d7:72:50:
32:70:db:10:0a:1b:85:53:6d:62:3b:2b:cc:e0:c2:30:90:ad:
71:9e:16:b1:a0:55:84:32:a7:88:83:bf:0f:67:36:fe:ac:fa:
f3:31:f2:bd:ff:cc:62:66:a7:b2:7d:88:fc:af:d8:f0:e8:2d:
1d:32:61:ed:c2:e6:bc:b7:02:dd:ee:18:22:64:91:6f:60:1e:
88:a9:5f:fd:e7:d3:53:32:e2:f3:76:58:d7:8c:6e:0e:1a:d5:
71:69:08:a3:a4:24:72:a5:69:48:cc:43:17:40:32:8a:c3:b5:
f8:a2:df:99:8e:ef:54:ae:8f:d1:fc:07:4c:cd:23:7b:01:04:
4b:15:67:37
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICCZUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzRE
RDQzMjk2MUFDNDJENjQ0QUVBRjM0QjE0QUVDNzAyNzVCMDZBMzAeFw0yMTAyMDcx
MzA5NDRaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDFBNzlCRjIwMjY3NkQ3
OTk2RDk5MEFGNDI4ODc5RDhDNDg2NDJBMjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDHTmwTRUrlFcfQQBIk9LbOvuO06rgDUm/z6CjcDQTq+s1USGI2
7XLgXFjwsKE1AT9sDECznyRA80E3JwVBKqap213W6y/uoywFMHEKU22jl0X0S1zB
RtI38bSeQGnTRLQht2q0tk4DK28HoITv6jsOFNG52CCh20UbfaggnOYCsh6l6RL9
8V3F9uuVH9bUcypBrxMqxYMPeJjOrjQOv/vtN7+BQE9vG1oaRONX5Gae67q41fYA
8HfqB6WQ/2X4Et1Qvyi+gwnVySFCrcCYonIR4V/FnGvIvugpeHtLEYvG4jKJM14V
P00denEyi7zEC1YAHO8YWtcbRhzOumPB0xXDAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUGnm/ICZ215ltmQr0KIedjEhkKiMwHwYDVR0jBBgwFoAUNN1DKWGsQtZErq80
sUrscCdbBqMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFVNTy9O
TjFES1dHc1F0WkVycTgwc1Vyc2NDZGJCcU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L05OMURLV0dzUXRaRXJxODBzVXJzY0NkYkJxTS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL1BVTU8vR25tX0lDWjIxNWx0bVFyMEtJZWRq
RWhrS2lNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAN8bJDAN
BgkqhkiG9w0BAQsFAAOCAQEAht+VAWT1YOMyH4uq5brqK0WcZOFMDoOqL8VJW9Dl
GdSecVhNBig6PAW//UX6YC6KaB+kMVX6BlmfQazRopUL1qARV9EaX5nd+aJn32iq
mB8yOfserEwAnDe7lVa3UJa3vmhq6wKjwYGvqVKV133Kf7uKDSIWteJwyTCS13JQ
MnDbEAobhVNtYjsrzODCMJCtcZ4WsaBVhDKniIO/D2c2/qz68zHyvf/MYmansn2I
/K/Y8OgtHTJh7cLmvLcC3e4YImSRb2AeiKlf/efTUzLi83ZY14xuDhrVcWkIo6Qk
cqVpSMxDF0AyisO1+KLfmY7vVK6P0fwHTM0jewEESxVnNw==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:36:42 2025 by rpki-client