Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/OscR0iz4h-p1-kTm4LLFl9eWydI.roa
File: OscR0iz4h-p1-kTm4LLFl9eWydI.roa (raw, json)
Hash identifier: NUOKSsVR7YkzetMHCED0z1yIQKgiZ/Kdkw/r/Ofg+b4=
Subject key identifier: 3A:C7:11:D2:2C:F8:87:EA:75:FA:44:E6:E0:B2:C5:97:D7:96:C9:D2
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0993
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/OscR0iz4h-p1-kTm4LLFl9eWydI.roa
Signing time: Sun 07 Feb 2021 13:09:42 +0000
ROA not before: Sun 07 Feb 2021 13:09:42 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38843
IP address blocks: 223.27.35.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2451 (0x993)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Feb 7 13:09:42 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=3AC711D22CF887EA75FA44E6E0B2C597D796C9D2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:dc:30:99:f3:33:87:4d:00:a7:84:64:32:44:
16:63:d3:3a:dc:f9:f0:b5:b3:45:de:21:42:73:f7:
3b:1b:25:8f:8c:0c:f6:f0:f8:29:d0:b4:7a:f4:34:
4e:c5:45:40:62:dd:e8:bf:32:bb:ba:a7:99:17:8a:
84:b0:0a:57:a5:8c:4d:95:f8:f3:61:ca:5d:6c:a1:
f9:55:14:84:f9:cd:ba:88:c4:ab:ed:a9:c6:7e:06:
4e:da:b0:ee:34:9c:c1:6b:f4:2e:b6:63:70:e2:79:
bc:ad:7c:18:26:72:c5:5d:fe:27:9b:4c:dd:11:f6:
69:c7:f1:cf:73:c0:45:93:0d:2b:a7:7d:18:9d:10:
7d:95:e4:c9:38:74:82:4f:ac:2a:cf:0c:d7:f7:4c:
e3:32:3a:31:da:17:be:86:e4:3e:12:a9:eb:f1:4a:
e2:cd:b6:a0:9f:d3:f4:93:25:3e:38:7b:7f:14:cf:
8c:8c:3c:f2:d1:35:e2:6d:9d:ee:b3:11:85:9a:7e:
c2:91:c5:d2:cb:2b:29:6a:5e:c5:e1:e4:34:20:68:
35:67:8d:85:2c:5b:27:6d:b6:3d:f1:af:81:2e:2d:
55:7f:f7:ca:03:2f:e9:07:06:3c:83:67:bd:b5:03:
48:57:a7:36:cf:21:14:3f:72:97:fc:86:a4:45:2d:
2e:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:C7:11:D2:2C:F8:87:EA:75:FA:44:E6:E0:B2:C5:97:D7:96:C9:D2
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/OscR0iz4h-p1-kTm4LLFl9eWydI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.35.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:61:55:0b:84:4d:ae:86:b8:c8:82:ab:4b:3e:5c:86:8e:ea:
f9:5c:56:0a:58:43:1c:1a:e7:aa:b7:33:9b:b4:65:5f:ec:04:
e8:b3:0f:e5:be:ae:99:9c:2e:45:27:4e:16:d8:95:fc:c6:1a:
3d:bc:71:1c:1d:fa:2f:4e:fa:c5:37:4b:c3:4e:03:de:be:99:
d7:e0:55:c9:d1:93:e0:02:40:48:f6:15:ee:d6:ed:b3:1f:c7:
18:94:ed:4c:9f:58:fc:59:61:ea:31:c4:34:9b:42:ae:98:0b:
47:71:df:73:cf:a5:8c:7a:79:e2:31:20:e3:ee:a8:63:c9:23:
a4:f3:05:b2:de:cc:85:46:ad:22:76:65:7b:ef:f8:c9:4f:a3:
03:18:5a:c3:3e:09:43:1f:c3:49:b5:99:0b:1c:db:e1:5d:d9:
1c:69:b0:ab:9f:5c:73:0d:57:e0:fa:ab:7c:78:c1:44:9c:24:
5e:5f:9a:a7:fc:16:77:40:7b:df:ee:d4:97:03:24:f6:49:8e:
1c:57:39:8d:d1:9d:b6:d7:34:6f:a0:f7:de:94:18:1a:d7:6c:
d7:43:39:71:a0:e7:6e:7f:6e:ef:ca:70:ad:b7:cd:a5:24:3c:
8f:14:57:79:de:1c:56:36:b2:50:4a:cf:db:dd:9c:3a:fe:96:
cd:b8:72:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:19 2024 by rpki-client on console-ams.rpki-client.org