Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/PyhU2icW0jm4qcUJmO2pfNc0Z58.roa
File: PyhU2icW0jm4qcUJmO2pfNc0Z58.roa (raw, json)
Hash identifier: hrlI846fZ3lUEt4e74+LG2Oca2xkRM03nBCIWFyejLc=
Subject key identifier: 3F:28:54:DA:27:16:D2:39:B8:A9:C5:09:98:ED:A9:7C:D7:34:67:9F
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0AC3
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/PyhU2icW0jm4qcUJmO2pfNc0Z58.roa
Signing time: Thu 07 Oct 2021 07:23:36 +0000
ROA not before: Thu 07 Oct 2021 07:23:36 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38843
IP address blocks: 223.27.48.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2755 (0xac3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Oct 7 07:23:36 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=3F2854DA2716D239B8A9C50998EDA97CD734679F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:10:34:d0:1f:0b:28:2b:61:7c:b8:ad:c4:50:
ba:9e:e6:64:ab:06:c9:16:61:58:03:1f:0e:4b:55:
fb:79:1c:f5:41:35:41:f4:b4:79:93:d1:db:30:72:
b2:a9:28:fa:19:0e:97:04:07:9d:0e:97:0c:9e:06:
0a:48:d1:2d:4a:a0:91:f0:3e:2c:8f:bb:55:be:8d:
38:af:de:c6:f1:0a:27:78:1d:0c:b0:d9:be:ee:ab:
94:f8:58:6e:4f:bb:03:06:7d:37:47:37:71:22:e8:
c3:1c:5d:68:16:ca:17:f5:72:05:ea:7e:ee:a5:86:
00:d8:6d:65:e4:70:62:d9:3e:3b:05:d4:ca:61:fb:
bd:1a:52:b8:cc:52:22:d0:5f:72:6b:a4:eb:4e:19:
4f:23:e6:15:6d:75:87:0a:06:f6:4a:2c:72:bf:49:
99:1b:c4:9d:8b:e9:f2:4d:3f:12:f2:bd:a1:d5:64:
d9:7d:ee:ff:ce:47:5c:9f:6b:b0:bc:b2:3e:34:a4:
46:8a:65:c0:33:54:92:e5:b1:c1:f1:85:d4:38:63:
89:55:f0:12:e0:45:35:3c:b3:17:44:94:99:e3:66:
49:a8:58:5c:04:28:f7:62:88:fe:62:70:81:c0:61:
38:b8:6b:9a:87:08:8f:c8:cc:19:ee:9d:70:a1:66:
49:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:28:54:DA:27:16:D2:39:B8:A9:C5:09:98:ED:A9:7C:D7:34:67:9F
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/PyhU2icW0jm4qcUJmO2pfNc0Z58.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.48.0/20
Signature Algorithm: sha256WithRSAEncryption
0d:c1:89:0a:61:a9:69:6f:af:4f:bf:64:b0:00:a3:a8:87:2f:
f7:e5:94:d9:ce:83:b2:1a:be:a2:98:55:d1:75:70:70:72:96:
b8:20:ab:75:29:bb:45:76:5d:23:3a:f4:8c:01:48:c5:e1:78:
6e:d5:72:64:9c:47:71:3a:78:af:d5:2f:8d:8e:21:86:38:c7:
18:7c:c9:20:f0:9a:ef:11:74:5a:c3:d6:55:18:24:e8:16:64:
bf:b0:3d:4a:8b:9d:20:a7:0e:33:4b:04:6a:47:46:84:f9:0c:
0e:52:62:77:94:75:ad:c3:70:dc:ab:41:de:e6:d4:b7:ca:8d:
56:5f:49:bf:05:64:0d:03:e6:b8:d8:67:de:55:5f:2b:3c:91:
84:5b:5c:b8:7b:e7:57:34:d3:58:2e:b7:df:80:eb:c8:64:8b:
d4:87:f7:42:4d:54:d5:6e:38:2e:a5:0e:2a:cb:cd:3c:7a:de:
b6:1b:2a:84:5e:91:f5:8d:61:10:15:4e:e3:3d:87:a5:d4:da:
68:dd:7a:96:c5:23:85:4d:9d:b1:3f:91:c9:d5:75:8c:7e:67:
b7:fc:f9:ea:73:1f:e9:7e:7d:eb:15:da:9b:ee:4f:62:f9:a7:
59:00:13:9b:e8:4a:7f:ca:da:a1:6a:b8:11:78:1f:2a:af:24:
bd:1f:60:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:04 2023 by rpki-client on console-ams.rpki-client.org