Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/INUGUkUl18rkMymB7fGcQeGcfQM.roa
File: INUGUkUl18rkMymB7fGcQeGcfQM.roa (raw, json)
Hash identifier: 9mgoMaaLZ9TPoTeY536kC9EmHB72+w5Zu6qE3cvj6fI=
Subject key identifier: 20:D5:06:52:45:25:D7:CA:E4:33:29:81:ED:F1:9C:41:E1:9C:7D:03
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0A64
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/INUGUkUl18rkMymB7fGcQeGcfQM.roa
Signing time: Wed 29 Sep 2021 02:42:44 +0000
ROA not before: Wed 29 Sep 2021 02:42:44 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38843
IP address blocks: 223.27.47.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2660 (0xa64)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Sep 29 02:42:44 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=20D506524525D7CAE4332981EDF19C41E19C7D03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:4c:95:0b:e8:b1:84:bd:3c:f3:76:2d:b9:b2:
a1:8f:fb:e9:cf:fd:56:cc:a8:d7:00:2f:3a:7e:1f:
ba:89:12:4b:b1:bd:01:04:44:38:e5:69:bf:a6:d8:
1b:e0:8e:a6:4f:47:96:f4:69:7b:15:e0:c9:7c:e9:
65:6f:b5:a8:70:78:4b:e7:b8:76:ab:0d:d5:16:ca:
0f:e9:9b:8f:3d:b4:d9:2e:4a:05:a8:bf:cd:47:e4:
b2:ee:c1:9c:c2:d4:a1:28:9a:b2:cc:2b:ab:85:2a:
f5:b2:90:6e:cd:ed:5c:09:95:01:40:ea:7d:02:7f:
75:46:94:85:f7:34:89:ba:cd:47:4a:07:c8:91:dd:
12:5f:cc:0a:cd:bb:bf:4f:34:54:c3:06:f6:a1:1f:
9c:67:42:50:9f:7a:f0:c9:19:b7:56:f0:7b:f1:71:
48:c3:1f:a1:33:d1:a9:11:2b:cd:93:6b:10:bb:a4:
a1:c6:de:72:c8:09:c4:4c:15:65:21:2e:eb:37:51:
da:c1:7a:4f:12:08:46:b6:6b:4f:7e:f0:78:32:3d:
89:10:df:38:a1:74:fb:f8:9b:02:24:eb:bc:87:2b:
b0:bd:15:21:c7:f7:15:c5:dd:fa:1a:3c:7e:cc:df:
05:9b:db:3e:5c:f1:92:57:75:77:34:14:e6:40:f4:
dd:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:D5:06:52:45:25:D7:CA:E4:33:29:81:ED:F1:9C:41:E1:9C:7D:03
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/INUGUkUl18rkMymB7fGcQeGcfQM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.47.0/24
Signature Algorithm: sha256WithRSAEncryption
42:5c:9c:df:f4:7b:e7:2a:78:77:66:8d:34:1a:ee:0b:51:89:
5b:3a:c7:b0:d0:5e:de:9c:37:3d:73:2b:e7:51:39:db:82:c3:
e2:a4:f6:db:f4:dc:ee:a3:3e:79:21:61:48:61:b5:fa:e1:f1:
b0:11:13:0f:79:ca:98:59:24:19:14:df:74:18:16:a2:a0:f8:
0b:4f:84:ca:91:b4:f2:44:e1:b2:a6:1e:8c:c1:79:09:e4:62:
b8:43:56:58:dd:83:9c:c3:ef:f7:2a:c1:a2:7b:bf:35:1f:6d:
ba:c6:48:06:68:f0:d3:1a:0c:f1:81:ce:a5:ba:3d:e4:27:8b:
96:fe:05:2b:eb:ce:a1:f7:e0:bf:49:47:0f:26:fc:b8:11:5b:
b8:ae:b2:5e:34:3d:d1:dd:a5:f4:00:91:89:8d:a5:1d:52:3d:
38:ff:a6:60:dc:be:5b:0c:46:a3:94:f4:b8:6a:40:fb:ff:57:
12:ca:46:f7:45:b3:de:73:09:07:cc:92:b2:e8:85:ab:df:4a:
ba:e0:35:d6:d6:6b:ff:cf:8b:ca:33:7a:f7:ff:3e:43:64:6d:
53:7a:4d:8b:0f:c0:e5:5e:e4:1d:6d:05:13:d7:0f:56:d4:7f:
15:24:4a:ae:61:3a:c2:25:77:a2:81:fa:2b:07:d6:06:49:f7:
97:78:8d:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:03:57 2025 by rpki-client