Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/HksyXfk3ci31Qy393DystNt77OA.roa
File: HksyXfk3ci31Qy393DystNt77OA.roa (raw, json)
Hash identifier: QFTYJBgpV2tknjP3+ugBNfqUnbMSkuKOXa6evi30n4c=
Subject key identifier: 1E:4B:32:5D:F9:37:72:2D:F5:43:2D:FD:DC:3C:AC:B4:DB:7B:EC:E0
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0A86
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/HksyXfk3ci31Qy393DystNt77OA.roa
Signing time: Wed 06 Oct 2021 06:59:17 +0000
ROA not before: Wed 06 Oct 2021 06:59:17 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38843
IP address blocks: 124.150.132.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2694 (0xa86)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Oct 6 06:59:17 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=1E4B325DF937722DF5432DFDDC3CACB4DB7BECE0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:1f:93:ed:92:f2:c4:d8:81:24:30:43:99:d6:
31:26:4a:46:92:cd:6c:d0:e4:4e:71:e1:0d:30:83:
1f:4c:2f:94:4b:94:91:f2:27:a3:64:38:5a:54:13:
8a:1a:1b:14:8d:f5:a7:4d:fa:e8:d6:f7:19:85:65:
90:3d:b2:f5:09:be:a2:69:6b:80:a6:e1:45:22:50:
50:a1:ab:02:07:06:9b:98:83:52:73:00:5b:db:91:
23:1f:05:aa:ea:dd:f3:d3:26:38:bc:bc:1e:b4:f9:
ea:03:2e:16:90:bd:49:9d:27:27:00:21:f5:ba:06:
37:13:e4:cf:18:74:32:13:ca:b2:92:20:5d:4b:15:
17:06:1b:5b:43:08:1b:60:40:82:fe:91:f5:33:c8:
ab:7a:31:42:8d:a9:89:6a:22:49:1f:5b:ff:36:7b:
c4:73:94:bd:d4:e2:ce:08:82:f8:7e:bd:e2:dd:5c:
49:36:ec:7c:a5:87:49:4b:37:21:db:a3:6d:13:b7:
4a:15:16:fc:87:e6:8b:03:87:fd:d3:62:3f:0b:bb:
25:18:18:64:a1:0d:d3:05:13:e0:50:d0:95:07:a4:
38:59:21:e8:d5:89:90:f7:2f:63:41:06:53:c9:01:
91:06:9a:1d:94:08:39:65:58:04:ba:05:ee:ff:26:
54:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:4B:32:5D:F9:37:72:2D:F5:43:2D:FD:DC:3C:AC:B4:DB:7B:EC:E0
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/HksyXfk3ci31Qy393DystNt77OA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.150.132.0/22
Signature Algorithm: sha256WithRSAEncryption
31:5f:7c:60:66:b4:1e:b0:4c:db:01:20:b8:68:20:aa:e8:48:
4a:0f:2e:b6:07:c4:6d:aa:d9:90:52:c6:43:53:f0:51:a4:fd:
3e:5a:22:a7:6e:53:bf:6a:9a:26:4f:1c:0e:96:a1:ca:d9:cb:
91:c2:dc:3c:9c:00:cd:bd:68:08:54:a3:84:7c:9e:e4:8d:ac:
e0:d3:c2:a8:05:95:de:bd:47:88:5b:7c:3f:1e:e8:18:85:84:
f3:f7:85:cd:01:7f:72:05:61:33:29:7b:4c:2d:1b:bb:1e:e4:
bf:c3:10:63:11:1e:89:e9:05:4d:7a:10:62:a4:b2:0f:53:42:
bf:a7:9e:26:07:df:21:7c:a2:72:45:4d:f8:16:62:7e:fb:6c:
d8:a1:bc:bb:20:89:5a:62:4e:b4:44:0b:cf:7d:1c:b9:72:3c:
9d:5d:3f:2b:3e:af:c4:61:ba:d2:a6:90:70:c7:40:0d:3b:17:
7e:ae:48:67:0d:a4:56:6b:b9:44:db:d9:da:01:4a:58:78:82:
8c:0d:95:48:76:fc:3b:c4:c2:85:ea:44:fc:99:1f:10:e4:76:
22:df:1b:65:a7:56:85:b6:a7:64:68:6b:28:db:b7:59:6b:79:
6c:ba:be:77:cf:63:11:08:51:6f:aa:f2:94:12:d0:16:58:bd:
55:41:6b:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:36:16 2025 by rpki-client