Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/PVp5G5QnVHzVUk-JxJt0OeOMcKo.roa
File: PVp5G5QnVHzVUk-JxJt0OeOMcKo.roa (raw, json)
Hash identifier: +4G3orwf+eyMUREBiLhlDPIvWij0cMXJSv2Aiev9kTQ=
Subject key identifier: 3D:5A:79:1B:94:27:54:7C:D5:52:4F:89:C4:9B:74:39:E3:8C:70:AA
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 08BE
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/PVp5G5QnVHzVUk-JxJt0OeOMcKo.roa
Signing time: Fri 11 Dec 2020 09:00:32 +0000
ROA not before: Fri 11 Dec 2020 09:00:32 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38843
IP address blocks: 124.150.128.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2238 (0x8be)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Dec 11 09:00:32 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=3D5A791B9427547CD5524F89C49B7439E38C70AA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:a4:2e:8a:59:1c:87:f4:5b:7a:d2:d1:f7:72:
64:ee:50:5c:98:7e:a2:c7:07:5a:a0:84:3a:23:4a:
2e:b5:98:bf:6c:ad:72:d0:26:e5:46:60:9e:97:dc:
4c:4d:4e:83:9c:9c:27:e4:e7:00:d0:91:66:fc:9c:
bb:91:a5:f3:ae:eb:d7:cc:71:8e:ff:0c:0e:f5:b8:
bb:de:23:fc:aa:07:bd:6c:85:c2:ee:f6:70:81:cc:
14:b0:ad:17:7e:7a:2c:31:e4:06:1c:11:5a:aa:e1:
ef:f6:51:d1:c7:db:42:b3:24:c7:21:2e:56:5d:a8:
f2:96:b7:e7:df:d2:9e:52:85:24:8f:68:c5:b8:2b:
2b:50:ad:3d:38:19:c6:07:9c:af:e0:5e:01:c3:95:
d7:4b:de:ab:f3:86:85:e9:79:12:be:9c:d6:27:18:
0a:2a:1c:df:93:c6:4a:7d:10:c4:bf:98:3d:66:97:
e7:1f:07:e9:e5:dd:42:61:68:45:1d:02:07:86:0d:
37:3a:a5:61:c6:f2:6c:25:fa:bd:00:3c:24:33:92:
57:f9:dc:ed:f3:66:36:a7:fe:12:1b:a3:53:d2:1d:
5d:61:3f:cc:cd:ce:39:b6:09:b4:01:74:b0:46:36:
94:6e:96:01:dd:76:b4:fe:d6:43:f5:f5:76:36:9e:
e1:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:5A:79:1B:94:27:54:7C:D5:52:4F:89:C4:9B:74:39:E3:8C:70:AA
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/PVp5G5QnVHzVUk-JxJt0OeOMcKo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.150.128.0/24
Signature Algorithm: sha256WithRSAEncryption
15:0a:1b:99:35:a1:f9:48:7c:76:79:56:0b:ee:b9:de:f0:02:
b5:ae:74:97:88:11:fc:e6:7b:a2:1d:6e:f8:e1:ef:f6:b5:08:
53:b7:fc:85:fa:10:f3:6e:7d:03:bb:f4:ce:b7:52:66:b4:4e:
5d:6a:d0:34:2a:ce:ff:62:67:7c:33:ad:ca:ca:15:81:ed:31:
a0:9a:31:c7:73:99:a4:88:21:99:23:ee:48:0a:fe:d1:88:f8:
ef:be:01:ba:de:bf:50:33:6a:6a:6b:94:29:23:bd:38:57:96:
4c:29:36:b2:9b:40:d2:42:d0:38:f1:55:e9:0c:a2:f2:db:51:
90:01:f7:38:2f:7d:ec:fa:1c:b8:99:e0:67:52:06:e6:c6:ce:
01:87:e2:92:f5:08:55:15:64:13:56:29:b6:4e:58:3c:f3:ea:
64:31:9f:6d:42:9a:43:03:8c:7d:c2:fc:88:6a:70:8d:e9:62:
04:74:6f:47:6a:01:10:b8:61:aa:12:ab:e0:c8:b3:1b:fa:bb:
24:3f:5f:3e:fe:19:12:47:3f:0e:79:84:a4:0e:b7:53:03:2a:
d1:aa:b6:32:73:0f:da:b4:ff:ed:ca:04:ba:12:72:40:8f:51:
83:c5:a9:4c:a6:b3:21:5c:ef:7e:fc:5c:42:38:34:b9:7e:12:
6a:7a:41:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:22:40 2025 by rpki-client