Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/Pp6k5z8fkWjoF67WIDtCQPkEHD8.roa
File: Pp6k5z8fkWjoF67WIDtCQPkEHD8.roa (raw, json)
Hash identifier: gR4ZWQmuw0LO54hjxSopwpy5qvhugaSxelHB6bS6D9E=
Subject key identifier: 3E:9E:A4:E7:3F:1F:91:68:E8:17:AE:D6:20:3B:42:40:F9:04:1C:3F
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 094B
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/Pp6k5z8fkWjoF67WIDtCQPkEHD8.roa
Signing time: Sun 07 Feb 2021 11:53:46 +0000
ROA not before: Sun 07 Feb 2021 11:53:46 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38843
IP address blocks: 223.27.32.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2379 (0x94b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Feb 7 11:53:46 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=3E9EA4E73F1F9168E817AED6203B4240F9041C3F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:70:e6:b3:aa:4c:ef:a5:51:ff:31:c7:37:50:
a6:62:79:4d:9d:17:86:cd:cf:1a:8d:53:4b:63:e5:
ef:1e:7e:4d:a5:c3:9e:76:af:6d:99:08:9b:5c:c9:
ff:5f:95:00:25:8e:2c:f9:3e:81:6b:eb:bd:67:5d:
38:36:99:5a:4a:88:68:f1:27:ea:5f:fa:e7:0b:7c:
8d:eb:b4:12:4a:64:f5:c5:7d:74:eb:c6:48:b8:42:
8a:34:06:b3:d6:59:5e:84:82:9f:ed:2f:85:d2:65:
3e:9a:5e:0d:4c:15:b3:b0:c0:f5:7d:6e:14:b2:14:
72:d4:ab:05:84:9a:22:bc:a0:07:18:85:f1:fa:be:
ed:5f:d5:8b:6d:46:d0:0c:30:0e:23:4a:6b:dc:80:
4c:0e:bf:1b:23:83:6e:1c:2e:6e:10:38:71:8a:57:
a0:61:a1:9e:86:ba:1b:ff:be:6d:4d:91:64:91:66:
45:50:32:fc:11:05:c8:7d:01:a2:9a:1f:0b:61:f6:
5c:2b:70:14:bc:e2:c2:04:a3:6f:d3:74:5e:e6:f6:
ab:51:3b:45:56:0d:e4:db:91:66:ef:72:d6:06:d7:
b2:e0:29:ab:32:04:93:49:42:bb:97:2f:6c:77:fb:
56:a6:08:56:27:ba:d9:c8:c0:5c:bb:90:6c:00:34:
f1:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:9E:A4:E7:3F:1F:91:68:E8:17:AE:D6:20:3B:42:40:F9:04:1C:3F
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/Pp6k5z8fkWjoF67WIDtCQPkEHD8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.32.0/19
Signature Algorithm: sha256WithRSAEncryption
b6:f9:2c:33:e0:d1:24:7a:0d:8a:75:c6:2b:94:3a:48:4c:bb:
5d:77:41:72:12:9e:22:2b:e9:12:3b:d6:16:a9:b5:05:b2:54:
55:64:b9:25:e5:1c:4c:dd:af:dd:af:14:4c:ec:dc:19:fb:c5:
f1:d3:c7:2f:ef:1e:95:fc:f3:cc:fb:15:a4:24:f8:46:9f:6d:
3a:6c:71:6f:a0:1c:50:ff:b8:71:f3:c7:98:5d:50:04:9a:46:
05:38:c2:9e:14:40:87:5b:17:39:23:b3:ba:c8:d0:8c:3d:8e:
ee:00:92:b2:b1:96:d4:4c:2a:7c:7f:52:06:f3:a7:f3:7d:fb:
f6:cd:e9:50:0b:92:f0:32:37:18:38:96:d4:a8:a3:ef:67:b4:
91:45:b5:56:4b:87:df:39:e5:5b:25:6f:cb:6b:b8:68:b3:32:
c5:79:be:98:e8:ba:a3:2a:5c:90:88:59:38:c5:77:85:d2:95:
ec:8c:97:a2:3a:6b:40:b2:9a:0b:ad:43:18:ac:85:c2:98:aa:
b1:b4:dd:3f:b4:52:1c:b8:7f:b9:25:25:a1:98:10:73:97:6d:
5a:20:a2:ae:02:b7:27:9d:49:44:05:93:87:cd:65:13:48:c3:
ca:4b:7d:88:68:d9:2a:7c:d7:ed:2f:8c:d8:f7:11:c0:0f:e0:
e0:78:44:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:16 2023 by rpki-client on console-fra.rpki-client.org