Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/MqISDNHkA650m2M0fNSq9G5SKrI.roa
File: MqISDNHkA650m2M0fNSq9G5SKrI.roa (raw, json)
Hash identifier: HHl/1MFioK2rZ/yJIWKxB/1QkwnyJTmVpC85u92QyhA=
Subject key identifier: 32:A2:12:0C:D1:E4:03:AE:74:9B:63:34:7C:D4:AA:F4:6E:52:2A:B2
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0BA9
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/MqISDNHkA650m2M0fNSq9G5SKrI.roa
Signing time: Thu 15 Sep 2022 02:42:25 +0000
ROA not before: Thu 15 Sep 2022 02:42:25 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38843
IP address blocks: 124.150.135.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2985 (0xba9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Sep 15 02:42:25 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=32A2120CD1E403AE749B63347CD4AAF46E522AB2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:26:7a:50:c9:08:ad:7e:74:bb:ca:14:a9:be:
84:89:f2:d6:0b:e1:38:d9:4d:00:83:93:5a:29:bb:
b0:9c:94:27:db:53:3c:38:bb:6c:ed:b5:5e:12:00:
a8:1c:4e:04:04:67:5e:cf:a1:ff:20:80:90:a4:c3:
78:0c:da:e9:39:a9:4d:98:9a:07:99:e2:74:94:11:
f8:47:88:57:9a:38:fd:8c:4c:28:65:ee:9d:20:93:
1f:cc:a1:a7:d1:71:9f:72:80:a2:de:62:5f:00:49:
54:fd:e8:f9:10:db:81:13:13:f0:48:4e:2e:dd:6d:
7a:50:69:ba:c9:51:a0:c9:7e:ed:d4:dc:a9:13:18:
c7:d9:87:27:64:22:19:3b:61:67:98:f5:a7:2b:97:
5c:ef:2c:bd:35:d5:70:d0:1d:11:2c:93:e5:bb:c8:
92:34:3b:63:c2:1a:bd:1b:33:4b:1d:f3:51:89:ed:
92:5c:05:07:34:04:63:fb:bc:0d:63:02:76:e6:f4:
8b:d9:05:63:d1:a0:15:21:19:84:8a:b0:9b:69:47:
e8:a4:9e:d6:e8:f5:3d:10:46:d1:e7:e6:b7:cd:ee:
38:a6:61:8a:ee:3f:7d:57:5a:72:7b:9c:a2:cb:6e:
18:23:ec:80:ad:01:68:86:8a:11:d5:17:20:22:72:
0a:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:A2:12:0C:D1:E4:03:AE:74:9B:63:34:7C:D4:AA:F4:6E:52:2A:B2
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/MqISDNHkA650m2M0fNSq9G5SKrI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.150.135.0/24
Signature Algorithm: sha256WithRSAEncryption
53:dd:ba:35:00:3d:52:46:2f:23:d2:59:59:71:50:98:de:be:
05:1e:69:3b:ca:56:f3:cf:a2:fc:d5:c9:59:c5:d9:60:59:2b:
8d:c2:4e:62:be:3a:42:39:9f:20:29:56:88:b3:43:e5:9c:e4:
41:9c:72:19:ea:0d:f1:48:f4:83:07:19:eb:06:ce:85:39:58:
c9:89:fa:ff:b2:ce:ef:de:9a:0a:3f:10:98:95:6b:60:93:e1:
83:45:49:3a:ed:f9:1f:24:01:8c:f1:5f:3d:7b:8e:11:fd:17:
ea:0f:03:75:83:c8:34:84:90:2e:43:ef:28:ef:52:c3:0e:8e:
2b:32:c0:a0:ee:ac:a2:24:72:38:d5:86:1a:1e:86:a2:37:fe:
5d:39:4c:07:9a:76:71:70:ca:8f:8d:96:3e:9a:a3:ca:a9:88:
ee:10:81:46:57:71:f0:75:e0:a5:2f:2b:61:9d:de:48:c8:0d:
56:1b:8d:6e:ab:50:b5:79:2f:4b:3e:d3:33:63:3a:f3:e8:7f:
75:ce:23:43:1f:17:c6:97:62:19:4d:32:f6:9e:85:bd:53:90:
65:dd:87:b9:56:f0:8f:c1:e4:ed:00:5e:d7:5f:f3:46:43:50:
36:51:fe:e0:f1:7c:8f:05:27:5e:19:25:14:8f:a8:77:c2:fa:
0b:9d:35:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org