Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/MBIoexyKkLVG-5nItezQ5UxNmnE.roa
File: MBIoexyKkLVG-5nItezQ5UxNmnE.roa (raw, json)
Hash identifier: VsW26suhpw6eQ6EiFT/0JKLprovXIcff3ThA7in3Jfs=
Subject key identifier: 30:12:28:7B:1C:8A:90:B5:46:FB:99:C8:B5:EC:D0:E5:4C:4D:9A:71
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 08C2
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/MBIoexyKkLVG-5nItezQ5UxNmnE.roa
Signing time: Fri 11 Dec 2020 09:02:38 +0000
ROA not before: Fri 11 Dec 2020 09:02:38 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38843
IP address blocks: 124.150.130.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2242 (0x8c2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Dec 11 09:02:38 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=3012287B1C8A90B546FB99C8B5ECD0E54C4D9A71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:01:a7:27:b6:27:ac:26:98:48:36:f5:19:b1:
54:14:b4:c0:ad:81:97:8e:d0:a2:6a:f1:1a:a7:09:
83:84:df:41:66:f8:54:f3:e8:5c:c9:eb:e1:06:c3:
96:e2:f4:4d:c9:ee:d7:08:34:c1:eb:20:07:20:a9:
1d:d7:03:2e:77:a2:77:49:51:60:cb:55:cf:1a:f8:
47:f0:e7:8d:bc:80:53:ca:7a:74:bb:b1:b3:34:98:
c5:44:63:26:91:74:59:ad:21:f1:ab:f3:3a:17:4f:
b0:c3:a1:bd:e4:11:df:b7:d6:58:fc:b5:d0:3a:f5:
6a:47:ac:c5:e8:11:f1:c9:ac:0b:87:ce:db:9b:63:
75:d5:a7:23:f0:40:b1:98:82:0a:b3:56:25:b3:82:
f1:c6:01:f9:6b:d1:47:32:28:36:30:e5:2f:45:87:
65:33:01:29:5e:2e:4f:ae:2a:30:db:55:6c:b3:06:
7e:04:3b:18:f7:2d:bd:86:70:a0:c2:10:47:40:90:
16:c1:c8:1f:f6:4d:af:9d:71:38:49:a1:53:91:49:
7f:98:01:5e:58:9e:8f:b4:61:60:8c:da:06:8d:23:
87:c3:7b:76:ba:59:1c:65:f4:4c:b6:60:c8:06:cf:
c9:3d:fe:3b:63:bf:8b:83:e8:4e:8c:2b:70:ee:36:
a0:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:12:28:7B:1C:8A:90:B5:46:FB:99:C8:B5:EC:D0:E5:4C:4D:9A:71
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/MBIoexyKkLVG-5nItezQ5UxNmnE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.150.130.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:71:18:7c:9b:0e:55:6c:39:e4:34:e1:f6:27:06:f5:2a:40:
cc:86:ec:78:87:a4:3d:9e:db:fd:da:e1:3c:ff:86:36:3d:9a:
40:49:82:58:50:29:40:d8:f4:f3:ff:f1:da:08:93:59:aa:54:
13:f3:60:ae:05:01:1e:12:14:84:c4:9c:cd:59:55:ba:c6:38:
f0:5c:62:1a:09:5b:8a:5f:7b:63:3d:59:42:77:98:63:1c:08:
4a:2a:a0:82:40:48:85:01:0d:85:04:31:60:da:24:5f:d1:61:
4d:97:69:bc:3a:d8:90:99:61:75:79:cc:12:01:37:4f:36:cb:
06:94:0a:df:cd:b9:f7:af:d4:e5:8c:ef:05:b3:50:aa:b5:04:
10:aa:77:10:c7:0d:87:98:07:a3:38:82:4b:14:fa:49:82:3e:
68:1a:99:72:6b:d8:4a:51:1e:b5:d3:53:d0:9f:55:92:e1:89:
a6:32:42:be:13:94:15:4b:e0:08:78:58:b8:36:ae:74:a7:f0:
ea:c8:af:48:7a:f1:2b:8d:b1:2f:27:ac:05:9d:4e:f9:43:24:
2f:99:f1:7f:07:6b:9c:74:fe:77:aa:3f:80:fc:9b:07:f9:a1:
24:cd:69:80:cd:fa:02:37:a4:64:14:01:ec:da:9c:ba:ee:be:
01:3e:06:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:04 2023 by rpki-client on console-ams.rpki-client.org