Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/JNAYXdAGV2DkxLB12DxI8llMnoQ.roa
File: JNAYXdAGV2DkxLB12DxI8llMnoQ.roa (raw, json)
Hash identifier: GBxNBIPsTTm8HkbBn7wD26DRRsyir8vp1hSfBacE+kQ=
Subject key identifier: 24:D0:18:5D:D0:06:57:60:E4:C4:B0:75:D8:3C:48:F2:59:4C:9E:84
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0BA9
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/JNAYXdAGV2DkxLB12DxI8llMnoQ.roa
Signing time: Thu 15 Sep 2022 02:42:27 +0000
ROA not before: Thu 15 Sep 2022 02:42:27 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38843
IP address blocks: 223.27.45.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2985 (0xba9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Sep 15 02:42:27 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=24D0185DD0065760E4C4B075D83C48F2594C9E84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:1e:74:fb:eb:87:37:a4:6e:db:a8:29:a2:b5:
bc:3e:27:df:e8:2f:ab:2d:dc:e2:64:37:ec:e7:01:
d8:b3:6a:5f:ae:c8:d3:58:9b:04:dd:10:03:c4:c5:
54:00:30:e4:c6:31:0f:6a:27:f4:a9:df:d1:e8:44:
63:fd:f5:41:c6:b3:39:43:59:8c:80:aa:b8:6e:00:
5b:6b:60:63:b4:5a:df:47:78:eb:4d:a2:88:43:1a:
e8:f6:d1:fe:00:1f:9a:b4:ee:3d:db:b3:c8:9a:be:
26:64:9f:b5:a4:da:b3:fb:b3:6c:e9:e3:61:05:f5:
ff:49:68:4b:85:ba:35:38:59:89:21:2d:13:4d:53:
4a:8a:1a:6c:11:40:94:6c:6f:da:65:02:bc:c4:c1:
3e:f5:1b:3a:59:33:ff:93:44:a5:07:e7:7d:7b:89:
e1:8b:4f:f3:bb:b7:e6:a5:f8:5d:da:a3:63:8c:fc:
1c:3b:35:da:6f:a2:08:bf:b1:f2:b5:43:22:06:d5:
a3:ca:d1:35:b4:a5:11:c7:eb:db:d8:0e:cf:60:de:
8e:9b:ac:ec:bc:9d:13:c8:41:60:32:c0:16:71:94:
42:8e:9a:bb:d2:61:3c:38:07:db:70:fd:92:dd:b7:
b3:4b:ad:35:18:e8:2b:dd:67:62:6c:ef:00:54:32:
88:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:D0:18:5D:D0:06:57:60:E4:C4:B0:75:D8:3C:48:F2:59:4C:9E:84
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/JNAYXdAGV2DkxLB12DxI8llMnoQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.45.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:26:c4:ef:78:fa:6a:a5:6b:b8:4c:f3:13:c1:27:76:5a:54:
9b:a2:4c:47:14:8e:f2:0a:59:ca:64:2a:3c:3a:07:36:1b:5a:
c7:78:9d:e7:ec:86:e4:c3:4e:2c:dc:a2:2f:15:49:16:c1:eb:
07:45:33:be:28:ef:0e:c1:a4:01:af:5e:dc:be:3e:32:06:f6:
ce:57:59:c9:fc:20:d6:6d:8e:6b:78:31:b8:5d:6a:03:c9:fd:
b8:e7:86:40:3d:44:8c:8c:4a:bd:9a:aa:e1:f9:40:13:4f:5e:
44:0d:1f:96:03:9c:b5:c6:98:51:04:6c:fa:57:2a:82:3f:22:
07:94:79:a0:75:36:99:0d:04:eb:1b:53:ce:cd:e0:46:62:65:
cc:ac:16:13:eb:8a:30:e2:01:f4:11:36:5e:97:1a:cb:b8:6e:
10:a3:d2:1c:03:d6:85:ae:5c:3b:9b:1f:88:ee:e7:50:34:ba:
d3:04:5e:91:13:ff:37:a7:5e:70:6a:c8:b1:df:81:d1:cb:6f:
bd:18:42:70:52:ee:bb:b4:99:de:a8:46:3d:f0:64:79:b4:34:
09:24:d0:71:35:55:00:e1:c6:3c:50:00:33:0a:3b:4f:30:ed:
79:9f:ed:42:af:4c:42:9f:81:15:bf:8f:d7:29:e4:6e:b8:65:
83:5a:77:eb
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICC6kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzRE
RDQzMjk2MUFDNDJENjQ0QUVBRjM0QjE0QUVDNzAyNzVCMDZBMzAeFw0yMjA5MTUw
MjQyMjdaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDI0RDAxODVERDAwNjU3
NjBFNEM0QjA3NUQ4M0M0OEYyNTk0QzlFODQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC0HnT764c3pG7bqCmitbw+J9/oL6st3OJkN+znAdizal+uyNNY
mwTdEAPExVQAMOTGMQ9qJ/Sp39HoRGP99UHGszlDWYyAqrhuAFtrYGO0Wt9HeOtN
oohDGuj20f4AH5q07j3bs8iaviZkn7Wk2rP7s2zp42EF9f9JaEuFujU4WYkhLRNN
U0qKGmwRQJRsb9plArzEwT71GzpZM/+TRKUH5317ieGLT/O7t+al+F3ao2OM/Bw7
Ndpvogi/sfK1QyIG1aPK0TW0pRHH69vYDs9g3o6brOy8nRPIQWAywBZxlEKOmrvS
YTw4B9tw/ZLdt7NLrTUY6CvdZ2Js7wBUMojpAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUJNAYXdAGV2DkxLB12DxI8llMnoQwHwYDVR0jBBgwFoAUNN1DKWGsQtZErq80
sUrscCdbBqMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFVNTy9O
TjFES1dHc1F0WkVycTgwc1Vyc2NDZGJCcU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L05OMURLV0dzUXRaRXJxODBzVXJzY0NkYkJxTS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL1BVTU8vSk5BWVhkQUdWMkRreExCMTJEeEk4
bGxNbm9RLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAN8bLTAN
BgkqhkiG9w0BAQsFAAOCAQEAtSbE73j6aqVruEzzE8EndlpUm6JMRxSO8gpZymQq
PDoHNhtax3id5+yG5MNOLNyiLxVJFsHrB0UzvijvDsGkAa9e3L4+Mgb2zldZyfwg
1m2Oa3gxuF1qA8n9uOeGQD1EjIxKvZqq4flAE09eRA0flgOctcaYUQRs+lcqgj8i
B5R5oHU2mQ0E6xtTzs3gRmJlzKwWE+uKMOIB9BE2Xpcay7huEKPSHAPWha5cO5sf
iO7nUDS60wRekRP/N6decGrIsd+B0ctvvRhCcFLuu7SZ3qhGPfBkebQ0CSTQcTVV
AOHGPFAAMwo7TzDteZ/tQq9MQp+BFb+P1ynkbrhlg1p36w==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org