Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/O3bjk2GMNkikZ8DL24oZqp_qhMo.roa
File: O3bjk2GMNkikZ8DL24oZqp_qhMo.roa (raw, json)
Hash identifier: 46wIIIGsf8MLTYpN9yywU0wxyLuaZhS9fzCZ7QYYJI0=
Subject key identifier: 3B:76:E3:93:61:8C:36:48:A4:67:C0:CB:DB:8A:19:AA:9F:EA:84:CA
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 08D8
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/O3bjk2GMNkikZ8DL24oZqp_qhMo.roa
Signing time: Fri 11 Dec 2020 09:05:00 +0000
ROA not before: Fri 11 Dec 2020 09:05:00 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38843
IP address blocks: 223.27.37.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2264 (0x8d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Dec 11 09:05:00 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=3B76E393618C3648A467C0CBDB8A19AA9FEA84CA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:c2:60:7d:2d:36:b3:8d:92:81:7c:55:6c:72:
ac:5e:9a:ed:90:93:43:15:da:3f:27:c7:2a:a8:87:
1e:93:24:dc:db:9f:4b:3b:b7:87:b4:36:3a:0d:5d:
3d:55:5a:d5:10:35:72:73:9c:5d:14:4a:3a:04:d0:
a0:05:c1:9d:f6:00:77:13:3d:55:a6:7c:4b:5d:9e:
d0:df:d5:d0:98:a8:3a:f4:ed:f2:b9:eb:0e:9d:08:
00:7e:40:0d:60:8d:e1:d8:30:b3:a2:08:86:b5:a9:
d4:03:16:fc:84:9f:33:79:96:13:44:0a:72:50:24:
aa:cc:3b:51:7d:58:34:b0:91:89:e8:bc:af:bf:81:
cd:43:e4:10:a5:84:94:9e:79:15:00:79:35:6a:9d:
05:78:e1:35:e2:b3:49:90:8d:21:6f:20:52:8e:f6:
4a:26:4a:e3:a5:85:86:89:d3:5a:a5:08:3d:5e:10:
1f:b9:a6:a8:d9:50:f6:84:54:51:59:71:06:39:c1:
40:43:ad:b4:60:de:73:af:84:21:df:ca:56:e1:59:
49:4a:77:48:43:c2:3e:17:21:e5:ee:56:e1:07:4f:
82:4c:55:83:7b:98:5d:7f:f8:c5:81:43:45:3d:ee:
76:b5:5f:d9:18:4c:a4:2d:4a:07:ae:b1:4e:d7:f3:
bc:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:76:E3:93:61:8C:36:48:A4:67:C0:CB:DB:8A:19:AA:9F:EA:84:CA
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/O3bjk2GMNkikZ8DL24oZqp_qhMo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.37.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:04:ed:d2:21:26:d8:05:9f:f7:cf:ab:ca:9d:e7:02:8a:8c:
c4:2f:f5:e9:ac:43:ba:40:94:69:38:c2:28:52:09:c4:a0:48:
69:77:bc:07:fd:6c:a5:6d:58:88:1c:12:34:e9:3e:f3:64:a0:
27:cb:28:88:7e:ef:a0:d6:30:e2:19:b2:aa:f5:69:87:c3:9b:
32:6c:03:1a:9a:81:b9:6a:34:10:e8:0c:72:85:b0:ff:1c:c7:
c3:23:e7:5c:e3:4b:45:b6:90:29:81:1b:23:bd:8e:46:76:83:
78:3f:12:d4:51:f5:7d:46:ac:fd:ad:b0:a7:e8:70:ad:76:a3:
45:49:e1:f6:56:b8:b9:be:74:58:6c:b8:41:3e:4c:e5:54:ac:
65:f3:68:90:6a:d3:ec:2b:1e:d1:25:2c:d6:a1:fb:48:5e:75:
ee:53:a6:38:fd:be:9b:79:77:e2:4e:34:5a:48:5e:0b:ed:40:
78:dd:ea:24:fd:77:0e:55:a8:42:3b:ad:07:b9:af:3a:76:0f:
d7:17:d2:13:2e:c8:90:e6:a6:a2:24:5d:59:14:cc:45:27:1d:
37:0a:84:7d:e6:d7:91:14:dc:21:f8:e3:14:a0:c4:02:26:b0:
11:bf:c6:98:e3:06:76:8d:d1:08:e5:58:62:29:99:8c:6b:3a:
75:ff:b6:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:04 2023 by rpki-client on console-ams.rpki-client.org