Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/PSGYTvC89V13vUiCGPDUjwxsgLI.roa
File: PSGYTvC89V13vUiCGPDUjwxsgLI.roa (raw, json)
Hash identifier: +eAXnj9WNJUYbUjpqadzwZfAvf9jUUPYV2Qmx9NUbQ4=
Subject key identifier: 3D:21:98:4E:F0:BC:F5:5D:77:BD:48:82:18:F0:D4:8F:0C:6C:80:B2
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 09A5
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/PSGYTvC89V13vUiCGPDUjwxsgLI.roa
Signing time: Sun 07 Feb 2021 13:09:59 +0000
ROA not before: Sun 07 Feb 2021 13:09:59 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38843
IP address blocks: 223.27.48.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2469 (0x9a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Feb 7 13:09:59 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=3D21984EF0BCF55D77BD488218F0D48F0C6C80B2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:7a:1e:63:e5:77:6f:d5:43:b6:e5:90:85:0c:
f6:fa:70:66:18:37:6e:01:40:dd:ad:59:9b:3d:9e:
85:23:fe:53:d9:bd:0d:62:bd:c1:47:5f:33:fa:b7:
88:b1:18:a3:cf:3b:df:59:88:e8:49:98:6f:78:a0:
80:f1:d3:bc:c9:c7:39:de:3d:fd:21:7a:39:fc:99:
e8:3f:82:9f:e5:db:79:99:00:a5:bb:e3:77:a4:54:
64:4d:5b:4c:70:73:3b:97:af:f5:c2:d8:d7:67:59:
76:19:fe:13:1c:31:70:9d:7d:03:74:d1:b6:f1:8e:
a0:da:21:4a:26:2b:71:f4:c7:14:f8:00:24:8a:b4:
1f:c8:24:f6:a9:34:8d:e6:53:71:43:03:50:3f:3e:
fd:33:82:05:78:05:c6:57:96:ab:09:66:9e:f9:8a:
f8:53:0d:df:13:76:b4:ef:27:4f:58:41:55:57:9f:
ca:c7:2c:54:0d:bc:40:2a:84:8a:ff:f1:7b:ca:40:
30:70:a0:0e:08:e1:c3:75:e6:6f:2c:6a:59:56:f2:
ad:87:dc:fb:e8:ba:c5:8a:d8:f9:19:af:91:64:83:
5c:d2:df:3b:1c:ce:e9:8c:1c:83:c6:3d:eb:fa:7e:
94:9a:a4:4e:5d:04:60:9e:33:87:6f:ad:e6:b7:b0:
52:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:21:98:4E:F0:BC:F5:5D:77:BD:48:82:18:F0:D4:8F:0C:6C:80:B2
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/PSGYTvC89V13vUiCGPDUjwxsgLI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.48.0/24
Signature Algorithm: sha256WithRSAEncryption
65:77:8e:36:8c:3b:64:f1:dd:d2:d4:87:b8:a6:a1:07:99:61:
f2:eb:52:df:70:e8:5e:4e:b7:7b:bb:90:26:3b:b7:97:36:4f:
51:4a:40:c8:b3:4d:4c:2a:92:42:23:85:a5:4b:6e:5a:98:44:
d8:7b:79:5f:71:08:a2:26:36:b9:4e:66:0c:43:ca:4c:48:8f:
a9:24:a2:14:c6:83:f9:95:65:e3:9d:20:ab:a5:07:ab:18:e9:
33:8a:1b:6f:6b:94:ce:5a:b2:22:66:4f:55:06:2e:8c:4c:5a:
06:2f:8e:13:47:b0:04:e4:b0:a8:9c:eb:cd:a9:09:19:42:1e:
53:41:86:9a:03:5a:08:67:ab:37:f4:d2:e4:9a:86:3b:62:7c:
03:40:ac:55:e1:dc:2e:d8:6f:6f:3d:01:d6:6e:bb:f4:35:ee:
a7:9a:d0:e8:49:4e:26:4c:0a:52:fb:0d:be:04:8e:af:05:ee:
54:ab:82:b2:f0:cb:a8:b4:42:28:c7:ed:68:8f:03:dc:24:7f:
f8:53:66:b2:53:8d:cf:47:a2:74:47:f8:95:d5:ef:d3:67:57:
f2:e4:66:c6:43:cb:04:aa:cc:2c:69:67:29:72:c8:7e:9f:62:
8d:e6:2f:c1:d5:54:db:af:e5:6d:d3:69:0f:ff:93:bf:9a:fa:
f6:ff:21:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org