Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/LZuu-NSIAyybaOytFcOQBg5D6GA.roa
File: LZuu-NSIAyybaOytFcOQBg5D6GA.roa (raw, json)
Hash identifier: vLD4u2vgQfkUjd5L1zeRo9ZIO0BxiTodONfbewH/0cc=
Subject key identifier: 2D:9B:AE:F8:D4:88:03:2C:9B:68:EC:AD:15:C3:90:06:0E:43:E8:60
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0A72
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/LZuu-NSIAyybaOytFcOQBg5D6GA.roa
Signing time: Wed 29 Sep 2021 02:42:48 +0000
ROA not before: Wed 29 Sep 2021 02:42:48 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38843
IP address blocks: 124.150.133.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2674 (0xa72)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Sep 29 02:42:48 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=2D9BAEF8D488032C9B68ECAD15C390060E43E860
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:09:27:85:6b:bc:ee:ae:dd:db:10:4d:d6:c6:
ce:e3:4e:24:2c:4f:68:ef:8c:3e:65:c1:d5:ef:aa:
2b:1d:72:7d:40:a7:1a:65:1d:8e:de:2b:37:17:55:
e3:b7:67:dd:50:e6:7c:fe:a7:8d:d8:d5:a6:d7:1c:
26:40:dd:7e:99:e1:6c:0b:ab:ce:33:a2:e9:22:a9:
d6:6d:41:e9:9f:c1:50:e5:d7:9e:3d:4c:58:be:ed:
89:87:55:a0:b4:fb:4a:a4:02:17:9d:00:e8:17:7c:
3a:2f:23:ba:46:d1:1d:66:67:b2:58:03:60:4b:f0:
ef:ef:6b:e1:4a:58:da:15:f7:1e:76:fa:37:90:f0:
a8:76:3e:a2:38:07:cf:3c:3d:23:a9:4b:00:bd:75:
86:56:79:f5:04:1f:42:c7:7d:85:e0:67:e1:a9:e1:
ce:61:e1:5d:d7:1e:e2:6c:10:72:5b:68:68:8f:27:
12:3d:47:25:f2:e4:9f:fa:02:f6:a3:a5:34:a3:3b:
85:34:3b:69:f2:06:dd:59:d3:d9:57:16:bb:e7:c1:
8c:8a:62:81:10:66:e4:b6:87:d2:51:4c:4a:91:c0:
eb:8f:0f:90:b5:e0:a3:e2:68:a3:33:69:0d:e7:d6:
d6:78:3b:dd:dc:ca:70:4b:39:09:9d:68:4a:dd:1c:
04:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:9B:AE:F8:D4:88:03:2C:9B:68:EC:AD:15:C3:90:06:0E:43:E8:60
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/LZuu-NSIAyybaOytFcOQBg5D6GA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.150.133.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:f3:8a:26:6e:29:d6:4d:e6:97:df:38:34:d1:a6:25:d4:f6:
ce:19:c8:58:36:df:05:a4:a3:60:2d:c3:6b:5e:34:2b:c6:c4:
e9:a4:0a:bf:0a:35:7c:1e:6e:bf:3e:ff:89:9a:84:68:3f:8f:
7f:6c:df:b5:9a:04:52:b6:9e:11:fe:e8:72:64:e0:c1:d5:50:
aa:a9:35:3b:33:dd:12:c4:82:8f:db:c4:40:2a:6f:de:e6:fb:
05:ca:f9:21:48:9a:f6:1f:31:80:8e:57:a2:0c:45:3f:13:34:
d0:2f:f8:6c:df:fc:31:9d:3b:ab:66:c2:66:59:6a:4f:4e:ec:
7b:a5:32:1f:e0:f6:87:fa:ec:ed:9c:9e:6b:a1:ef:ca:bf:f1:
2b:49:60:db:a1:c9:67:12:cb:cf:04:37:e9:2a:3d:dd:28:cf:
e5:94:1c:16:1f:63:6e:c3:bd:df:eb:11:92:52:99:56:f7:05:
0d:93:9d:80:0f:04:16:f3:e9:e0:bf:b8:f4:74:46:ba:7d:4a:
2a:0b:16:d9:0a:bf:7c:7b:55:76:74:a4:bf:1a:ca:dd:e6:22:
27:29:78:62:ec:53:4a:8b:20:2c:06:af:28:46:d9:b0:1c:db:
c3:66:ab:c3:cd:5a:a6:2e:2a:f2:87:fd:6d:67:e6:7c:b2:a2:
32:90:9e:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org